Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/81_jQUEa7jr_JK7Q974vrPA0gqw.roa
File: 81_jQUEa7jr_JK7Q974vrPA0gqw.roa (raw, json)
Hash identifier: fjYrqK4TwuaWEOSCF84p24n6oJMRBec6os17PvDO3L0=
Subject key identifier: F3:5F:E3:41:41:1A:EE:3A:FF:24:AE:D0:F7:BE:2F:AC:F0:34:82:AC
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C17
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/81_jQUEa7jr_JK7Q974vrPA0gqw.roa
Signing time: Wed 29 Sep 2021 02:36:30 +0000
ROA not before: Wed 29 Sep 2021 02:36:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F35FE341411AEE3AFF24AED0F7BE2FACF03482AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:1f:41:2d:49:66:f1:e9:00:6e:29:54:3d:
7e:03:08:7c:28:c9:c2:11:1f:2b:ca:e7:22:e5:ec:
7e:c0:3c:e8:39:4a:b1:d3:de:6c:2b:9b:02:c0:4c:
57:c5:b0:2b:76:9c:b5:2f:94:27:7c:dd:ea:6f:88:
68:b7:4b:e9:81:68:45:c4:90:67:bc:41:0d:b9:d5:
4e:53:d9:96:f6:20:f7:ff:16:4f:31:75:a6:8e:d9:
c0:43:81:6f:26:6c:ff:24:72:a3:dc:1b:b8:c0:2d:
34:59:b9:80:2e:8e:18:67:a4:1a:a8:0a:91:aa:31:
0d:81:c8:52:a2:63:f8:e6:72:94:b0:08:a2:58:8c:
99:1d:5f:6c:5b:93:92:e0:da:ce:86:f4:90:f1:6b:
cd:b4:05:76:f2:81:e4:5a:35:52:64:27:b5:f9:8f:
34:58:e6:90:03:0d:41:9a:72:2f:64:a4:59:0d:3a:
2b:17:d5:ef:de:bb:6d:2c:bf:81:12:07:03:20:3f:
2b:ab:a6:0f:8d:59:7b:73:86:7c:19:fc:56:b4:c9:
15:a3:c9:d9:97:e4:55:84:d5:02:eb:b4:2f:81:46:
d6:81:0e:67:58:78:61:13:3b:72:a5:39:73:8a:c2:
17:47:ff:46:75:79:92:2b:cb:ef:4b:10:c0:b9:4a:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5F:E3:41:41:1A:EE:3A:FF:24:AE:D0:F7:BE:2F:AC:F0:34:82:AC
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/81_jQUEa7jr_JK7Q974vrPA0gqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
55:42:11:ac:36:07:e3:9e:ff:76:0c:9a:72:64:c5:f9:bf:4d:
ad:0c:e9:30:21:57:3a:7e:01:14:06:3e:dc:11:0d:0c:d7:a8:
cb:e7:23:7b:45:0b:25:92:f0:b6:37:b7:03:b1:7b:39:38:5a:
3a:2b:c2:19:19:2a:94:03:09:49:e1:30:34:14:d1:d2:9e:c3:
35:10:f3:04:44:05:f4:79:ee:43:5b:52:13:c1:59:ce:df:fc:
84:bc:23:ca:96:a8:dd:dc:84:ce:a2:6e:30:7d:83:4d:c3:e6:
07:68:12:a3:57:8e:67:fc:ee:8d:d3:f4:f5:f5:9a:aa:a2:3c:
50:5d:9e:ed:b8:20:13:92:d4:7f:e2:d8:68:ff:76:02:ed:9a:
6d:cb:1e:80:09:29:6e:20:f9:46:7c:67:06:b1:14:3e:06:73:
9c:38:f9:00:6b:0b:f1:40:4a:e2:88:01:dc:b0:b6:9e:cb:8b:
16:ed:e6:96:7a:dc:69:38:96:2b:53:72:06:39:f0:4a:7e:6d:
b2:c6:bc:2b:b7:6e:68:58:13:31:c1:6d:b6:e9:2e:39:f6:fc:
2f:c4:4b:66:ac:04:93:53:9d:b7:87:f0:20:e0:ff:dd:6c:ef:
d1:79:87:a1:ce:07:c0:7c:a0:e9:35:76:00:f7:74:bc:b8:ce:
09:e4:64:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org