Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/ULZzJxx_BiWWbt298C-cn0BHUpI.roa
File: ULZzJxx_BiWWbt298C-cn0BHUpI.roa (raw, json)
Hash identifier: 3Y3oSICx7Yy7x/01KRNZjXP8HChs6jXfSuh7pmBgiyw=
Subject key identifier: 50:B6:73:27:1C:7F:06:25:96:6E:DD:BD:F0:2F:9C:9F:40:47:52:92
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 44
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/ULZzJxx_BiWWbt298C-cn0BHUpI.roa
Signing time: Thu 02 Jun 2022 00:07:12 +0000
ROA not before: Thu 02 Jun 2022 00:07:12 +0000
ROA not after: Wed 08 Mar 2023 06:55:31 +0000
asID: 38047
IP address blocks: 2400:61a0:a054::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Jun 2 00:07:12 2022 GMT
Not After : Mar 8 06:55:31 2023 GMT
Subject: CN=50B673271C7F0625966EDDBDF02F9C9F40475292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:61:d4:14:3d:b2:94:b1:44:c1:50:62:4e:66:
84:3b:ac:0c:a7:61:e5:27:a6:24:41:06:11:cb:f2:
7a:4c:07:04:fc:61:42:b9:2d:58:b8:a8:ea:18:36:
44:49:56:2e:25:db:96:94:de:45:bd:a1:0f:b7:57:
82:1f:54:1f:ed:ba:db:bb:a2:51:15:5d:71:66:b0:
e7:77:f9:5c:f2:6f:93:ff:bd:91:91:2e:83:c7:a4:
5f:f8:0a:fd:5d:9f:e1:af:d6:4e:05:40:ad:b7:fe:
6d:08:2d:54:b7:29:49:59:55:59:46:85:10:1d:79:
0b:f0:8d:7d:72:47:69:49:0c:39:73:24:88:f5:63:
e1:00:3c:43:fa:ec:9b:70:69:c2:b6:8d:a9:56:97:
34:f2:d4:39:c2:4a:ca:0a:1c:50:e8:bf:1b:1d:31:
2f:89:12:e5:9e:68:4e:c9:99:eb:ba:ba:8e:8d:a0:
d9:7a:24:6f:33:41:dd:ff:00:95:29:dd:d3:6d:7a:
a1:bc:b9:bc:52:f3:f5:1d:22:03:ce:8a:fa:5d:da:
7c:ce:ee:de:d9:8e:ef:72:c9:f3:49:fb:f8:ed:cc:
40:c5:de:6b:92:04:6a:70:85:fa:67:98:14:db:64:
df:9f:88:62:16:65:76:fa:fc:7b:55:d4:47:7b:03:
0a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B6:73:27:1C:7F:06:25:96:6E:DD:BD:F0:2F:9C:9F:40:47:52:92
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/ULZzJxx_BiWWbt298C-cn0BHUpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:61a0:a054::/48
Signature Algorithm: sha256WithRSAEncryption
6c:b4:78:22:ad:85:1c:ba:b7:44:e3:49:52:c0:33:91:5b:00:
ca:1a:dc:95:a9:88:76:13:2d:75:eb:7f:62:e0:93:5f:c9:58:
94:4b:50:30:f7:5d:b1:b6:22:3c:f3:04:8c:6c:61:c2:e0:40:
96:f5:f8:46:13:5d:c9:b8:6f:75:02:4e:dc:71:08:a2:50:83:
1b:13:3a:98:03:da:a2:56:77:bc:a7:aa:04:a7:50:4e:45:6c:
d9:c3:18:27:ff:56:18:90:36:fd:66:e9:cb:b2:a2:c2:e2:09:
21:2b:43:12:6b:3b:26:fc:38:46:b0:8e:bf:36:78:17:36:12:
af:47:0a:b5:f0:34:82:fa:d5:c2:4b:36:f0:fe:3e:40:57:ed:
39:b2:54:dd:16:b2:4d:7b:a4:5b:9d:14:62:f9:23:b2:c0:9c:
72:b1:92:01:d5:e1:6b:16:1e:df:46:c2:95:d9:7e:08:6d:1c:
0b:21:1c:27:e6:7d:58:dd:f0:ce:ff:24:d4:2c:1e:28:77:5b:
01:3c:1e:1c:14:a4:0f:66:60:aa:85:ba:ef:c1:40:78:4b:ad:
fb:c2:3f:c5:b6:c3:c6:99:49:48:d5:a0:7c:db:24:c7:a9:a3:
21:5c:20:51:2f:d2:eb:57:9a:1d:73:96:17:cb:9b:e2:95:04:
6a:50:70:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org