Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/ljmG9qA9pUwcR2CEIQtYo8O_jrk.roa
File: ljmG9qA9pUwcR2CEIQtYo8O_jrk.roa (raw, json)
Hash identifier: De37httxfVH9PhYE2DyhUJzEAE4rtloP3aJx5Q24ytM=
Subject key identifier: 96:39:86:F6:A0:3D:A5:4C:1C:47:60:84:21:0B:58:A3:C3:BF:8E:B9
Certificate issuer: /CN=F72B8D549DE8BBC6DE02456C670D1B1A05AFE80E
Certificate serial: 24
Authority key identifier: F7:2B:8D:54:9D:E8:BB:C6:DE:02:45:6C:67:0D:1B:1A:05:AF:E8:0E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9yuNVJ3ou8beAkVsZw0bGgWv6A4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/ljmG9qA9pUwcR2CEIQtYo8O_jrk.roa
Signing time: Fri 08 Apr 2022 13:05:55 +0000
ROA not before: Fri 08 Apr 2022 13:05:55 +0000
ROA not after: Tue 21 Feb 2023 08:34:15 +0000
asID: 63893
IP address blocks: 2400:50e0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F72B8D549DE8BBC6DE02456C670D1B1A05AFE80E
Validity
Not Before: Apr 8 13:05:55 2022 GMT
Not After : Feb 21 08:34:15 2023 GMT
Subject: CN=963986F6A03DA54C1C476084210B58A3C3BF8EB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:aa:83:1b:6d:80:5a:1d:0c:f8:5c:93:95:cc:
7f:c6:42:7e:b3:91:6a:0e:b1:8b:4b:7a:26:78:4a:
42:27:31:6d:98:60:ab:95:d0:e9:ea:20:eb:71:15:
37:26:00:6f:8c:b0:98:b8:6a:52:2e:e4:94:61:f3:
b0:93:cf:77:fe:21:e0:7f:29:2e:ab:20:07:5a:12:
c9:8f:27:72:8e:ae:d0:06:d6:f5:01:6f:10:09:f1:
a0:8b:26:4b:0c:27:a5:48:0b:30:09:19:06:2a:fd:
13:be:16:d5:57:28:fd:8d:d8:f5:2d:87:9a:06:b9:
56:f0:62:02:26:19:05:bf:ca:c1:52:66:e3:79:8f:
a5:7a:93:17:ff:53:c6:66:e2:47:d3:ff:d2:5f:c8:
79:02:ca:d7:0d:13:56:66:a3:0a:cc:51:f4:83:9d:
5b:4b:b8:ce:b9:a7:d1:29:f7:fb:06:f7:14:41:93:
9c:4f:61:97:d5:ce:3a:b0:b7:85:58:9f:16:7a:c8:
af:a4:30:87:9d:81:fe:03:d1:8a:6b:eb:05:ff:c4:
a2:5d:47:11:96:5f:ae:7b:f8:d5:b8:58:a8:a1:db:
06:7f:e7:e0:fb:0f:54:f3:eb:af:cb:18:4a:f5:4d:
4f:4b:40:4d:77:36:3b:06:7f:3c:5a:32:a5:42:31:
4c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:39:86:F6:A0:3D:A5:4C:1C:47:60:84:21:0B:58:A3:C3:BF:8E:B9
X509v3 Authority Key Identifier:
keyid:F7:2B:8D:54:9D:E8:BB:C6:DE:02:45:6C:67:0D:1B:1A:05:AF:E8:0E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/9yuNVJ3ou8beAkVsZw0bGgWv6A4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9yuNVJ3ou8beAkVsZw0bGgWv6A4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCC1223342/ljmG9qA9pUwcR2CEIQtYo8O_jrk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:50e0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:9c:fd:26:c6:5a:63:1f:80:9d:4c:dc:eb:33:96:b0:c5:57:
09:6f:d5:fe:ac:6e:eb:a2:e3:21:db:10:de:7b:81:b0:ea:4f:
bc:fa:b3:7e:94:9c:64:a6:2b:f6:07:66:90:e1:28:12:1f:39:
8d:cb:3a:0e:14:8c:14:1d:56:10:8c:fb:d6:63:61:5f:74:e0:
cc:89:bd:94:28:3f:4f:1e:9a:5a:97:f9:48:e4:33:c0:ee:1f:
b7:08:5f:8c:93:ee:9a:29:a8:d1:9a:24:11:ce:c1:39:a9:32:
8e:72:8f:14:bb:a1:5c:ad:66:be:b0:f2:b6:87:a5:4f:1d:c0:
86:bb:94:48:7b:60:77:5d:c3:d8:74:b8:c0:c7:3a:d3:6b:ad:
e6:51:40:ef:51:a5:70:3a:00:dd:8d:d2:00:fd:e9:63:d0:9c:
9b:27:37:7c:f7:1f:c1:71:d4:80:c1:dd:51:f7:96:3b:b8:2f:
46:d0:c8:16:0b:fd:fc:e0:e6:59:ef:87:b7:c1:d3:ab:ca:4d:
e7:10:9b:5a:9d:2b:d6:32:ea:5d:87:3d:bb:76:e2:f1:33:a7:
44:6e:b8:ac:a7:da:94:b6:60:2a:d0:a2:02:09:c4:49:91:f8:
eb:6d:3d:f3:19:ef:a1:b3:43:92:a6:92:f3:4a:97:e4:ae:12:
1a:54:ac:76
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org