Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/fIkWb6rH0KfgQIw-tqgdkxFWWjI.roa
File: fIkWb6rH0KfgQIw-tqgdkxFWWjI.roa (raw, json)
Hash identifier: thbuYOy99znBrD+xyGV4KIVsnQvHY1RASzYz8c0a2FU=
Subject key identifier: 7C:89:16:6F:AA:C7:D0:A7:E0:40:8C:3E:B6:A8:1D:93:11:56:5A:32
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 072C
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/fIkWb6rH0KfgQIw-tqgdkxFWWjI.roa
Signing time: Tue 29 Sep 2020 09:59:34 +0000
ROA not before: Tue 29 Sep 2020 09:59:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131143
IP address blocks: 2405:3300::/32 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1836 (0x72c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 09:59:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C89166FAAC7D0A7E0408C3EB6A81D9311565A32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:4d:cf:cc:94:8f:e3:84:29:64:80:fc:c3:
c2:8d:27:54:cb:bc:51:64:47:d1:c6:ad:d0:84:99:
a9:bd:1e:f7:31:76:b4:ac:ae:58:2c:61:ce:d0:19:
ac:42:d1:cd:78:c3:b8:d0:e4:4d:71:97:f8:08:85:
d0:53:ce:cc:d2:27:31:c8:b8:2b:b1:9d:bf:13:16:
a4:5a:2f:f7:d9:21:c5:97:40:8b:91:da:3f:20:c8:
a4:29:55:72:34:3c:d2:4f:d9:e1:df:0c:6b:d7:1f:
ea:48:90:0b:c0:54:18:4c:13:76:9a:0f:76:33:40:
fe:1b:26:6f:b7:9a:3e:01:19:1b:77:43:88:2f:f8:
24:f6:38:c9:ac:70:72:eb:8f:41:87:67:04:cc:3d:
65:f7:ff:12:3d:37:26:c9:cf:0c:4a:60:89:e8:e5:
4e:db:63:76:32:03:41:08:4b:a5:2d:46:96:49:93:
b7:23:6b:9d:13:f8:4b:79:54:04:32:24:9e:f9:9a:
65:57:ba:d1:75:b5:9f:0c:0f:0c:ab:eb:9c:ee:73:
ee:9b:84:22:6e:79:c6:95:d7:57:42:7c:5b:45:8e:
54:1e:85:15:ab:7f:c2:8a:76:3f:0a:3f:be:9d:05:
40:26:a6:be:94:c0:f8:54:c2:e9:94:ff:91:f0:cc:
02:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:89:16:6F:AA:C7:D0:A7:E0:40:8C:3E:B6:A8:1D:93:11:56:5A:32
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/fIkWb6rH0KfgQIw-tqgdkxFWWjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:3300::/32
Signature Algorithm: sha256WithRSAEncryption
a1:ee:a0:6a:aa:c8:4d:1c:19:84:c3:58:1b:04:1b:56:b8:de:
1b:b6:ce:a6:d8:2f:2c:50:5c:03:8c:d6:6c:3a:cd:72:87:ae:
6e:55:0e:50:79:71:a0:d9:d0:ad:cb:16:98:b1:14:41:d8:c1:
ba:9a:46:28:55:9b:3b:a4:70:c0:80:c3:b1:9d:1a:a1:7f:64:
0d:e9:91:0f:74:ae:f5:cc:83:41:1e:74:79:b7:2a:fa:4c:14:
b5:95:d5:d9:e7:88:82:45:99:45:c4:74:f5:41:11:3b:29:e4:
e8:aa:51:3f:8c:fb:93:a2:4b:32:78:9d:fb:2e:df:55:62:5d:
9b:0e:26:86:aa:39:dd:1e:29:ec:0d:90:71:2e:ee:f8:ff:a3:
cb:1f:cd:81:de:18:da:bc:35:ea:bc:3b:5b:e7:d5:97:b9:63:
30:d9:95:78:cc:77:6b:e4:ca:d5:de:21:93:d2:d6:f5:34:a4:
72:70:83:f8:aa:db:2b:5d:80:39:bc:74:26:98:87:74:d8:ec:
60:0b:bf:59:54:3c:bd:be:20:c3:9b:05:09:44:5a:b4:43:c4:
97:30:06:57:65:a1:01:ae:4a:89:b8:99:65:fd:db:76:4e:58:
9d:86:03:30:81:51:b3:72:68:30:9b:27:61:4c:68:55:96:e1:
49:19:a5:07
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org