Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/MeqP4r5rf_CtPPt5veENVBdqf9E.roa
File: MeqP4r5rf_CtPPt5veENVBdqf9E.roa (raw, json)
Hash identifier: IW6uTm2cyi2aoKEYi4JlJo/zYjuiDRpMBmLz2q9Xftk=
Subject key identifier: 31:EA:8F:E2:BE:6B:7F:F0:AD:3C:FB:79:BD:E1:0D:54:17:6A:7F:D1
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0906
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/MeqP4r5rf_CtPPt5veENVBdqf9E.roa
Signing time: Wed 29 Sep 2021 02:52:12 +0000
ROA not before: Wed 29 Sep 2021 02:52:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131143
IP address blocks: 2405:3300::/32 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 02:52:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31EA8FE2BE6B7FF0AD3CFB79BDE10D54176A7FD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:13:0d:20:98:54:7e:70:51:ac:33:7b:d5:86:
27:21:17:22:c4:e8:c3:7f:cf:56:b7:91:ae:0e:47:
9d:5b:b2:89:0c:62:4a:c8:af:43:7a:aa:a0:30:59:
d5:42:2e:4e:d9:da:b6:27:1e:b6:e6:e2:95:97:6a:
6b:23:07:0f:fb:d1:a2:3d:04:c6:f0:dd:6a:86:99:
f9:60:7d:88:1b:b9:4d:b5:9c:5c:a9:95:b6:93:e3:
d7:63:32:5e:8d:b2:e1:e0:b2:3b:f3:f9:01:a4:2a:
be:70:b4:7a:22:9e:e5:44:eb:fc:89:92:c5:77:19:
a1:5b:13:52:59:d3:53:eb:eb:f9:48:4a:73:3a:e6:
8a:34:fe:b5:a6:3c:32:2c:a8:bb:0c:f9:3c:b7:76:
20:1b:81:4a:a4:bc:c8:8d:6a:93:dc:2b:35:f1:1b:
1a:b4:8c:a4:4d:d5:b7:7b:30:12:bd:80:f2:ca:e6:
f7:e5:3b:19:98:78:59:cf:bb:5d:b3:dc:24:a8:8a:
cd:a8:06:95:33:b6:e9:d7:12:ec:2f:a2:1b:bd:3f:
c8:02:80:42:3c:3c:2a:89:72:d3:c4:ad:a2:19:b2:
a4:73:4b:a2:66:60:44:47:f3:34:75:8f:98:db:56:
32:a2:17:10:1c:84:81:ee:d6:0c:8a:41:2b:c1:53:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EA:8F:E2:BE:6B:7F:F0:AD:3C:FB:79:BD:E1:0D:54:17:6A:7F:D1
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/MeqP4r5rf_CtPPt5veENVBdqf9E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:3300::/32
Signature Algorithm: sha256WithRSAEncryption
79:f5:2b:e4:d9:89:45:5b:70:77:4f:2f:72:c8:19:d6:f0:fd:
a9:e2:e2:f0:93:82:9f:ef:85:8f:3d:b8:d2:8e:75:18:d2:8c:
10:40:47:94:ba:7c:5a:5f:1e:58:51:cc:a3:9a:e8:66:a0:ed:
80:26:d6:9b:eb:52:89:73:c3:f6:07:7a:75:5a:c6:9c:fc:0b:
23:70:45:d1:a0:fa:1a:33:08:59:35:60:ad:94:e5:8d:30:55:
bc:90:ea:c4:c3:1a:da:65:d5:cc:15:57:e8:be:3f:ad:1a:7f:
24:e4:1a:40:3e:7e:21:72:ff:1c:27:01:82:fe:b9:dd:0b:d6:
a6:08:b1:e4:8a:9d:f2:8b:6a:a4:ca:c2:62:5d:b5:26:f3:28:
a0:a6:cd:c0:89:22:d7:ca:de:fa:33:31:9a:39:dc:0a:aa:c6:
32:44:8e:c3:90:76:7d:ea:af:0c:20:09:bd:90:cb:6b:31:f7:
79:ff:da:b7:cf:0e:71:09:27:90:96:99:6d:5d:85:5b:08:fe:
7a:2f:09:e0:25:f6:dc:ef:34:f2:a8:19:a0:b8:93:cc:60:85:
3c:e5:9b:e9:f3:6d:2e:9a:b7:b6:92:ac:fc:78:41:65:19:75:
2e:69:fc:4b:ad:b5:68:4a:7c:aa:a9:f5:cd:62:1c:8a:5a:ee:
6c:77:10:f4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org