Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/ZPu9HJemGgbC2xEvV5lDepdPZ7U.roa
File: ZPu9HJemGgbC2xEvV5lDepdPZ7U.roa (raw, json)
Hash identifier: crzbrCweA3zpd+nCCDFOsj9mBT081dCfZaWWeeYkWeo=
Subject key identifier: 64:FB:BD:1C:97:A6:1A:06:C2:DB:11:2F:57:99:43:7A:97:4F:67:B5
Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3
Certificate serial: 01BE
Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/ZPu9HJemGgbC2xEvV5lDepdPZ7U.roa
Signing time: Thu 15 Sep 2022 02:49:08 +0000
ROA not before: Thu 15 Sep 2022 02:49:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38839
IP address blocks: 2406:d7c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446 (0x1be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3
Validity
Not Before: Sep 15 02:49:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=64FBBD1C97A61A06C2DB112F5799437A974F67B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:e7:19:8f:80:a0:dc:e2:da:26:87:0a:2c:
d3:5b:96:ac:a9:5e:ee:65:2c:84:59:0b:02:ab:0a:
cd:7a:f6:43:6b:35:d4:9a:74:db:87:a7:45:9a:11:
b8:90:2c:fe:f1:9b:b8:43:a4:6a:a8:4e:4c:d4:35:
87:86:60:1e:12:3f:26:f9:61:7f:b8:31:10:da:a2:
ae:ab:06:7b:46:33:7e:19:85:a6:6a:98:75:34:fc:
5e:c3:4b:74:f2:8e:ff:30:0b:21:e0:e4:2e:72:de:
68:b5:39:35:89:ac:a4:27:65:a2:21:75:85:2c:83:
6e:82:85:1a:b3:57:6e:f5:f5:93:ff:4b:22:d7:89:
a0:34:f3:92:8e:20:0c:c2:e5:48:50:45:2c:02:4b:
92:46:7f:5c:86:23:77:29:a9:00:6f:10:50:48:25:
31:be:28:64:66:e6:bb:88:60:e0:db:c3:8e:e4:e5:
00:70:dc:ba:eb:95:e1:6b:7b:b4:a2:68:75:f5:a6:
a7:3a:ce:72:7d:8a:c6:49:f0:8d:50:cf:2c:b1:72:
cf:db:0b:d1:ca:ca:a4:5c:e5:31:d4:a9:5c:31:0e:
47:22:b2:9c:9a:2f:0e:d6:e2:49:ac:6d:8e:c4:fb:
3a:f2:7f:32:d0:31:1e:2d:86:e7:2d:fa:02:7f:da:
c4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FB:BD:1C:97:A6:1A:06:C2:DB:11:2F:57:99:43:7A:97:4F:67:B5
X509v3 Authority Key Identifier:
keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/ZPu9HJemGgbC2xEvV5lDepdPZ7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d7c0::/32
Signature Algorithm: sha256WithRSAEncryption
5f:e0:32:95:fc:6b:1f:e8:ce:d8:30:5a:2b:78:8b:61:c5:d4:
e6:bf:ed:f8:9b:7b:64:9d:92:5f:b1:46:01:9f:49:c7:54:f3:
a1:ed:22:d6:36:39:56:80:36:34:b8:03:86:c7:8f:9f:1e:17:
35:42:42:86:f5:59:e9:67:d4:b8:4a:95:50:f5:50:b6:6b:15:
82:ed:ed:4c:c4:78:2c:e0:28:67:29:80:e7:56:7f:68:e1:17:
f6:47:8f:8d:2f:55:1c:81:74:19:8d:a1:cc:31:b9:9f:dc:51:
c9:5f:6c:e1:98:ce:10:e0:56:7b:02:c9:88:4c:68:e6:06:78:
26:27:43:c9:bb:ae:98:ba:47:e1:96:f7:38:0e:19:a8:09:fe:
9e:39:00:77:63:d0:3e:19:34:ca:be:94:92:f0:45:e8:1f:b7:
d2:a5:51:b8:22:7a:10:3a:90:e6:e4:95:c9:86:eb:0f:79:7e:
bd:d5:07:27:1f:39:15:96:dd:db:24:a9:2d:a2:10:a2:d8:87:
67:b2:d2:8e:e2:50:a4:54:32:5a:c4:d3:c7:3c:b8:2b:93:23:
17:83:22:a1:c0:b7:a2:31:1b:b8:ba:bc:53:e0:0f:6c:c6:58:
b5:ce:6b:e3:7e:b2:fd:83:b2:fb:90:eb:78:22:84:0a:7c:1f:
1e:cb:c2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org