Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tm_yc5DG8l1Ux6WvXhcw3u_34iI.roa
File: tm_yc5DG8l1Ux6WvXhcw3u_34iI.roa (raw, json)
Hash identifier: 4bU45PLSZd4Dl6uSQ+Il79L5Lk7U9AUC4C5gAq8zO3c=
Subject key identifier: B6:6F:F2:73:90:C6:F2:5D:54:C7:A5:AF:5E:17:30:DE:EF:F7:E2:22
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0780
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tm_yc5DG8l1Ux6WvXhcw3u_34iI.roa
Signing time: Tue 29 Sep 2020 10:02:55 +0000
ROA not before: Tue 29 Sep 2020 10:02:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131662
IP address blocks: 2403:a2c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1920 (0x780)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 10:02:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B66FF27390C6F25D54C7A5AF5E1730DEEFF7E222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:69:35:88:ca:5d:8b:5e:16:e7:95:65:e0:ca:
5c:c6:27:bd:40:96:64:2c:84:a5:71:d0:e8:25:19:
0e:fb:47:58:9a:cc:2d:9c:24:94:6d:33:f8:ee:1d:
5e:cc:0f:f7:81:c1:ee:ca:40:19:f3:18:f7:7a:e3:
c7:01:ad:36:37:27:37:47:6e:bc:95:ef:61:1c:6c:
23:58:d8:d6:28:58:11:b6:87:09:fd:2e:c0:78:ec:
ec:a0:50:86:6d:f8:26:e9:f1:ee:bc:3e:1a:76:91:
60:f9:82:c3:67:31:2f:f6:ec:c0:8f:93:ed:56:f9:
b8:18:cf:10:fd:73:18:41:69:8b:12:f7:b0:b3:49:
53:48:62:41:1d:23:fa:1c:eb:73:e0:66:21:0e:49:
9a:be:55:42:70:41:36:11:33:37:c2:25:19:6e:c2:
03:d5:a4:cf:39:f3:a5:cd:38:34:2e:03:3a:60:e3:
2f:f4:4f:5b:e7:bd:91:1c:29:0e:75:bf:f3:6b:4e:
98:e6:f7:14:55:6e:32:a4:71:c3:83:ef:6f:c0:e6:
bc:ac:de:ac:7c:90:4e:f3:02:57:76:3c:31:db:83:
d4:38:1d:1c:87:c1:6b:af:d0:28:3b:c0:7d:f8:18:
37:f4:9d:df:5b:cc:49:52:dc:4f:b8:ee:e0:ea:50:
68:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6F:F2:73:90:C6:F2:5D:54:C7:A5:AF:5E:17:30:DE:EF:F7:E2:22
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tm_yc5DG8l1Ux6WvXhcw3u_34iI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a2c0::/32
Signature Algorithm: sha256WithRSAEncryption
9d:5d:57:e4:3e:1b:9a:da:70:5b:5d:e8:12:26:be:18:46:cd:
fe:67:cd:09:7e:df:85:5c:66:37:14:e7:ce:5a:f7:74:b4:fc:
58:e5:f6:96:0b:85:69:0e:0e:c3:66:e0:e0:5c:fc:28:2f:09:
ee:45:b4:1b:45:40:60:c7:d4:a0:73:82:cd:7f:32:49:ed:0c:
31:75:e0:0e:c4:ff:e8:bc:78:cb:15:ea:f3:2c:87:d2:bc:ad:
4c:6f:7b:f1:9c:32:6e:68:35:6a:b8:90:23:08:37:ba:12:b9:
c9:9d:e5:98:2a:48:ff:68:09:15:8f:e0:fc:ef:54:7f:5d:71:
0a:32:1a:16:d2:61:22:b5:7a:97:a4:2c:3d:2c:02:14:a6:a9:
15:ee:df:14:31:b8:bd:c9:a7:05:41:89:e1:fb:1e:f2:96:37:
f6:32:1d:cb:3a:77:e7:e6:5c:c7:1c:47:5e:9c:b4:1b:e1:ad:
46:57:50:cd:ac:81:10:4b:0f:26:86:c9:db:66:52:61:c7:1b:
d5:15:67:50:62:7e:6f:a7:49:63:41:ae:fa:26:9d:54:0c:b0:
b2:8d:a7:5e:43:3a:7f:76:51:f0:f2:e3:a5:eb:5e:0d:a5:4d:
87:80:46:7e:82:8e:a1:b0:90:68:16:36:16:de:bd:f9:15:76:
6b:26:91:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org