Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/ddvHI8Uto_PHLvnkAjf9bfNoiJI.roa
File: ddvHI8Uto_PHLvnkAjf9bfNoiJI.roa (raw, json)
Hash identifier: jL82Yqv0eyl6vujzrtrCQxEsDmeLkGEaQUqOF6crZFc=
Subject key identifier: 75:DB:C7:23:C5:2D:A3:F3:C7:2E:F9:E4:02:37:FD:6D:F3:68:88:92
Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial: 09
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/ddvHI8Uto_PHLvnkAjf9bfNoiJI.roa
Signing time: Tue 11 Apr 2023 07:41:58 +0000
ROA not before: Tue 11 Apr 2023 07:41:58 +0000
ROA not after: Wed 03 Apr 2024 15:30:09 +0000
asID: 63910
IP address blocks: 2400:f420::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Validity
Not Before: Apr 11 07:41:58 2023 GMT
Not After : Apr 3 15:30:09 2024 GMT
Subject: CN=75DBC723C52DA3F3C72EF9E40237FD6DF3688892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:aa:99:26:32:93:5a:f3:ef:5e:29:26:35:0c:
32:ec:15:3e:2f:57:c0:ed:27:be:88:85:c2:bc:1d:
68:32:d1:24:7c:22:cd:58:ee:15:83:5e:7e:9d:eb:
43:92:8c:62:d0:c1:2d:01:9c:6d:2e:ab:19:28:c8:
ae:6f:9f:6a:31:50:64:80:93:8d:06:c4:82:e4:e2:
57:8b:02:de:48:c9:a6:9d:12:53:a4:d5:a1:6d:44:
0a:9c:b9:bd:39:8a:35:20:28:1b:28:7f:d8:3e:a0:
cc:22:fb:26:9e:b3:1d:47:bf:71:67:1f:19:0d:a3:
91:e0:e1:d0:e7:7a:9d:b6:d8:be:e0:15:2f:5f:fb:
55:a7:eb:93:45:23:02:02:66:4b:f1:0e:8f:ee:6c:
42:d4:7c:c7:1b:f6:4b:55:bc:40:9c:62:fd:2c:41:
71:1b:f1:ac:7f:04:12:37:5a:22:73:f9:b7:3b:c2:
6c:3d:3c:6b:a1:99:8b:07:db:c8:48:c1:27:93:7c:
50:35:97:7c:4f:56:83:ab:41:80:b1:5d:ed:a7:e3:
d7:f9:1e:55:75:94:1c:f5:de:45:4d:d9:c1:0a:3e:
44:e4:2c:3a:aa:48:1d:28:12:6c:b5:39:4c:62:1c:
05:f6:45:70:ad:ae:d7:43:53:f1:46:49:ca:d4:18:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DB:C7:23:C5:2D:A3:F3:C7:2E:F9:E4:02:37:FD:6D:F3:68:88:92
X509v3 Authority Key Identifier:
keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/ddvHI8Uto_PHLvnkAjf9bfNoiJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:f420::/32
Signature Algorithm: sha256WithRSAEncryption
62:61:2d:80:d9:00:00:56:6e:15:35:e8:65:a2:20:56:65:63:
d9:b3:21:15:ae:d6:34:24:cc:44:c0:fa:d8:29:e3:d7:ae:3f:
ef:d3:59:ea:68:a2:36:40:39:ad:fc:57:de:bb:64:8b:33:84:
55:94:72:20:1d:20:8c:d2:7c:3a:2f:54:41:1a:04:de:7a:96:
8e:31:89:41:b5:ab:85:c5:db:6a:d1:5e:21:18:5c:68:a8:e5:
f9:b5:17:c8:7d:20:91:3f:0c:ae:52:69:7b:d1:73:61:cf:6a:
ea:90:55:47:42:47:f6:66:ef:70:ad:9f:37:63:c1:53:4a:fd:
12:58:b9:5b:49:35:16:04:5e:53:8d:99:31:8c:20:de:b5:c6:
d3:80:37:d1:d1:ca:4c:fa:d1:d6:d0:72:b1:b6:89:6e:69:98:
59:f0:2e:7c:db:1d:3d:42:b1:69:ee:4c:a1:5e:37:92:7f:49:
7b:e9:c7:22:80:7d:2b:17:d2:b2:e2:f6:b7:b8:6b:4e:64:f6:
a8:9c:10:fd:ed:0d:2d:01:1d:21:d7:3b:fe:70:ab:13:f5:ae:
f6:d8:41:39:33:e1:29:6f:63:17:c1:a4:6f:b1:c0:af:15:cc:
21:fb:55:6e:1a:f6:aa:d3:6a:3e:89:00:67:f7:31:03:ce:09:
da:a4:bb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org