Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/UoTk84vIKgXj11DL5YydJQhqBdI.roa
File: UoTk84vIKgXj11DL5YydJQhqBdI.roa (raw, json)
Hash identifier: 8teO2rhVQoEhYJN31FpeRCFxJVQPq4etS87yqCatmvo=
Subject key identifier: 52:84:E4:F3:8B:C8:2A:05:E3:D7:50:CB:E5:8C:9D:25:08:6A:05:D2
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0A52
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/UoTk84vIKgXj11DL5YydJQhqBdI.roa
Signing time: Thu 15 Sep 2022 02:38:37 +0000
ROA not before: Thu 15 Sep 2022 02:38:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131662
IP address blocks: 2403:a2c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2642 (0xa52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 15 02:38:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5284E4F38BC82A05E3D750CBE58C9D25086A05D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:d2:31:4e:7e:db:87:1c:67:21:b9:8e:98:
92:42:33:01:ca:26:55:97:3b:82:b1:ec:c7:a8:85:
9f:67:c0:c1:09:de:79:2c:c9:f0:f6:43:67:d7:4b:
db:33:89:1a:ac:96:8f:b7:05:c9:28:ff:ae:99:99:
a8:4e:ff:6c:73:6b:f1:28:a2:34:8b:f5:08:1f:06:
ec:c7:48:09:6c:c7:6b:bf:bb:bf:c5:83:75:a9:96:
de:ea:ee:b7:5c:a4:05:bf:fa:f1:eb:22:8f:46:d1:
3e:36:b8:6a:26:08:21:6b:ab:76:1a:a0:34:a3:d0:
1a:b8:38:39:16:6d:1b:13:3e:95:c1:85:d8:22:4d:
08:e7:c2:58:29:c3:4b:05:9d:fe:2c:f2:a8:d3:f3:
20:a3:d4:98:13:d9:0e:9e:7e:7a:bb:9f:7d:ef:75:
5e:39:78:7a:bf:52:48:09:84:21:92:42:47:48:31:
52:d5:96:6e:4b:e4:62:47:39:3a:a9:e6:3a:a8:9f:
71:05:3c:fc:a9:47:5c:08:be:ea:8b:6e:d8:50:13:
3c:4a:6f:b6:f8:d1:ac:24:62:6c:aa:43:c2:29:a6:
4d:b9:8f:9e:39:5e:f2:10:54:b4:e6:51:71:5e:71:
8d:04:40:17:8c:2e:09:10:00:a7:2d:3e:17:95:4d:
48:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:E4:F3:8B:C8:2A:05:E3:D7:50:CB:E5:8C:9D:25:08:6A:05:D2
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/UoTk84vIKgXj11DL5YydJQhqBdI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a2c0::/32
Signature Algorithm: sha256WithRSAEncryption
69:66:18:a0:5f:dd:22:91:a0:f7:e9:24:56:7c:69:a6:a3:a3:
70:13:cb:aa:42:01:e2:6c:69:71:be:79:0a:ce:ca:ce:df:68:
f3:3f:da:47:5a:4b:3e:3b:41:fd:85:aa:0e:4e:da:90:6e:20:
ef:8d:29:38:d2:d4:92:4b:58:90:a2:17:88:9e:8f:c8:1e:25:
6d:ae:7a:93:a5:7b:ed:6d:1d:b7:42:80:0d:a1:54:95:94:e6:
cf:ac:ad:a4:0a:59:3c:3d:ec:e7:da:f5:e8:7d:21:bd:ce:df:
b9:3b:8a:b4:40:01:a3:8e:2a:22:5e:e1:29:6f:71:d9:7b:e6:
e1:a7:33:c1:bc:1f:33:05:00:a6:c4:6a:64:63:81:05:34:e2:
c7:91:04:2d:c5:96:92:f2:3f:b4:b2:84:b2:e4:84:00:43:a4:
4a:af:bf:15:33:91:30:41:09:f1:ce:e9:34:39:04:0e:a5:27:
37:42:5c:77:24:15:15:50:41:f2:4e:c2:b4:99:7f:bf:58:15:
8e:dd:7e:c4:15:75:9c:ec:20:b6:e5:f3:c7:17:de:65:ad:b9:
68:07:9d:c2:c2:dc:ae:ed:8b:69:cb:24:5d:fc:b8:91:00:47:
e5:92:5e:e1:19:78:08:62:2a:2d:b4:34:79:3e:4a:79:97:db:
de:af:a2:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org