Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/O0EWz01BkXcHlrY0jXb7PY47ltE.roa
File: O0EWz01BkXcHlrY0jXb7PY47ltE.roa (raw, json)
Hash identifier: ZKQPCgLPJ7zM44A/nzuh0vwRSN2M7KeQpxbFcTo/Gkg=
Subject key identifier: 3B:41:16:CF:4D:41:91:77:07:96:B6:34:8D:76:FB:3D:8E:3B:96:D1
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0D05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/O0EWz01BkXcHlrY0jXb7PY47ltE.roa
Signing time: Thu 15 Sep 2022 02:37:06 +0000
ROA not before: Thu 15 Sep 2022 02:37:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131641
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 15 02:37:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B4116CF4D4191770796B6348D76FB3D8E3B96D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:88:79:f7:7a:10:65:16:6f:2b:ca:61:1e:
db:be:a3:40:36:bf:da:e0:72:7e:60:bb:f7:8c:f8:
b6:17:5e:0f:b8:ae:ab:f1:38:15:9b:e6:2a:ce:93:
56:59:5a:75:df:e7:6b:b7:80:e6:ff:dd:9b:f2:bd:
0a:cc:b0:18:44:a6:8b:11:fd:21:55:0c:d8:77:de:
67:9e:bb:02:ae:31:58:2e:ee:cf:1e:16:dc:3f:1b:
1b:81:4c:3f:76:80:2c:ea:c1:9f:3e:9c:e0:37:c4:
39:14:6d:31:67:86:dc:2c:76:64:d1:51:8d:4e:39:
4a:e4:a9:34:09:84:68:45:7f:80:d1:d9:12:60:75:
8a:8c:f5:5a:9f:17:a7:36:bf:6b:7e:af:33:20:d3:
19:27:b9:8a:fe:77:ae:65:a9:e1:10:34:ad:8e:67:
2e:f2:e9:69:ee:34:0f:77:3a:6f:d2:f0:e4:f5:8c:
43:f5:1b:f2:66:9a:ae:51:9c:ae:f7:7b:f2:80:29:
01:4d:d4:e8:e7:13:d9:77:1b:25:1e:20:96:7d:9f:
83:00:bd:38:5c:b4:ed:e2:5e:77:84:1a:8a:ae:e9:
a4:25:d4:d0:a8:ab:57:16:5a:83:f0:a2:94:b3:d8:
4d:e9:24:24:f7:ee:06:f7:7e:aa:27:4b:49:eb:07:
83:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:41:16:CF:4D:41:91:77:07:96:B6:34:8D:76:FB:3D:8E:3B:96:D1
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/O0EWz01BkXcHlrY0jXb7PY47ltE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
31:70:7c:c2:40:f3:8a:7e:c2:f0:65:73:22:8a:2c:9c:63:ab:
1c:7c:d0:89:7a:96:92:7a:5a:15:37:55:12:ef:b5:0b:12:af:
45:1f:06:73:f1:d9:37:e1:d7:9a:5f:01:27:73:09:5a:d8:67:
75:86:e7:8e:68:25:b3:6e:5b:54:80:31:85:a3:fa:e3:a0:9d:
79:c4:a1:2f:b2:b6:41:a1:9d:13:8c:a1:06:81:0b:0a:e6:6c:
0d:1f:ce:c2:cd:bd:bf:52:a2:b7:97:bd:a5:b5:f7:cf:94:cc:
1f:2f:47:b3:9a:23:73:93:79:30:5d:28:3d:e8:0f:2b:6e:91:
f7:b4:21:33:8f:3a:dc:ad:47:f3:d9:87:8c:36:cd:6e:1b:f5:
b5:f4:7d:99:eb:35:de:3c:45:69:2f:83:cb:3c:bd:cf:3b:e1:
ec:15:dd:73:67:25:63:9c:fb:9c:b8:cd:19:f1:41:e1:0e:5f:
e2:d3:5c:67:09:02:97:ec:e8:18:8c:6e:7d:82:9a:89:cc:6d:
29:ef:91:85:3b:d4:29:59:68:7b:cb:cf:81:18:53:b2:2f:74:
53:0c:7f:5a:cb:bc:ed:90:5a:9f:f8:fa:f4:4b:74:ab:40:ff:
92:41:12:c4:6e:17:87:7a:4b:3e:88:bd:92:c9:85:67:4b:8f:
a5:06:fa:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org