Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/VR8Lo14IjcAQUfXTMS4NWPnq3f0.roa
File: VR8Lo14IjcAQUfXTMS4NWPnq3f0.roa (raw, json)
Hash identifier: sVk5MVBaEKANxtDsvtzX0lBJEyzCg/x6GOA5is681BM=
Subject key identifier: 55:1F:0B:A3:5E:08:8D:C0:10:51:F5:D3:31:2E:0D:58:F9:EA:DD:FD
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0D05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/VR8Lo14IjcAQUfXTMS4NWPnq3f0.roa
Signing time: Thu 15 Sep 2022 02:37:07 +0000
ROA not before: Thu 15 Sep 2022 02:37:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18424
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 15 02:37:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=551F0BA35E088DC01051F5D3312E0D58F9EADDFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e8:d9:67:9b:96:6b:3f:98:fb:60:7f:46:0c:
8d:9e:34:57:7d:17:93:d2:b9:eb:49:1f:d9:cc:fa:
85:fd:2a:f0:88:57:3f:52:00:26:29:58:68:da:a8:
ec:52:9d:4d:b7:8b:24:aa:3b:1c:a0:20:ab:05:95:
8a:2f:8a:1b:d5:0b:52:3e:65:78:65:19:96:80:ad:
3a:54:86:dd:3c:ca:ed:97:48:c4:86:6d:f0:ad:ad:
98:72:85:51:f9:e6:d4:37:14:bf:f9:27:07:4d:dd:
c7:3b:b2:fb:9c:1a:59:2a:71:87:8c:9e:26:84:25:
52:df:bc:4a:e3:80:12:ed:72:b6:14:15:eb:a4:38:
ae:38:08:c0:19:7e:2e:1a:ae:5e:e9:60:33:ac:a3:
97:8f:f1:f2:df:17:29:d3:92:65:48:ec:16:03:e8:
59:2a:6e:82:8a:bb:5e:3b:64:ff:57:dd:81:90:71:
14:f7:0c:f9:56:49:dd:45:4d:da:3b:07:ee:39:8a:
bb:c0:4b:70:a6:90:17:1d:f4:90:da:e5:48:ae:6d:
c4:3f:77:ed:22:a7:13:3c:9d:ef:c3:e3:98:bb:1d:
02:13:73:05:46:8e:c4:70:d1:d7:32:73:89:c2:2f:
bc:07:15:ed:c3:3a:55:5d:dc:cc:eb:71:51:32:87:
38:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1F:0B:A3:5E:08:8D:C0:10:51:F5:D3:31:2E:0D:58:F9:EA:DD:FD
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/VR8Lo14IjcAQUfXTMS4NWPnq3f0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
62:53:fe:a1:8a:3e:34:e9:dd:e4:eb:09:8f:3a:91:73:8e:eb:
93:4a:a0:b2:8c:af:16:79:87:fa:87:8e:f1:a0:34:78:70:5d:
e9:eb:14:b2:57:b0:50:43:96:96:51:f1:3f:d1:95:c2:5d:8d:
74:a9:5c:80:bc:01:b2:e1:85:8a:bd:e5:61:b1:61:b5:4f:8d:
da:84:19:db:d9:17:f8:3a:4b:e2:cd:d8:8d:08:c9:b9:1e:b0:
41:ab:49:05:23:bf:9b:8e:10:bb:13:6b:a8:00:80:31:83:d5:
2c:ae:1f:a9:85:7b:8d:80:26:da:03:91:bc:71:1c:d1:d8:2c:
6f:61:fc:f6:10:17:49:49:27:44:f3:fd:c2:af:5f:e9:2c:96:
95:9f:97:44:da:91:45:1b:1f:72:51:5f:88:6b:2b:a3:bb:bf:
3f:2e:5b:c5:e3:bc:44:1a:5c:0a:aa:47:68:15:00:d4:a6:56:
62:1e:5f:32:a4:df:3b:ad:25:6b:11:aa:3b:0e:44:e8:8d:24:
c2:70:c5:a5:55:6a:c5:82:df:4a:3f:b4:33:0c:13:74:08:e7:
d8:ab:05:62:e4:08:3c:8c:46:d7:36:97:a8:24:1b:38:16:fc:
ed:6f:a1:c5:e1:ca:9a:88:83:a1:00:d5:18:df:fa:64:4a:16:
21:1a:ba:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org