Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/bpNyfJ-wv6kkH3Rdolm6C2lZ8uQ.roa
File: bpNyfJ-wv6kkH3Rdolm6C2lZ8uQ.roa (raw, json)
Hash identifier: qzsaY18eqDaNwHKMkRWgnUHrSVG4hJaZbFpnlfp4w8A=
Subject key identifier: 6E:93:72:7C:9F:B0:BF:A9:24:1F:74:5D:A2:59:BA:0B:69:59:F2:E4
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A0A
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/bpNyfJ-wv6kkH3Rdolm6C2lZ8uQ.roa
Signing time: Tue 29 Sep 2020 10:03:09 +0000
ROA not before: Tue 29 Sep 2020 10:03:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2570 (0xa0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E93727C9FB0BFA9241F745DA259BA0B6959F2E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:25:ad:c1:77:a4:af:dd:3a:93:0b:17:9c:e7:
5f:19:1c:8b:77:31:24:9d:c5:35:56:1d:1e:11:07:
f1:b9:96:73:5e:05:4f:e9:f4:32:41:be:c3:c8:a6:
8a:43:3a:0d:b1:79:04:f7:f7:2e:a5:3c:a9:7e:12:
96:63:33:ae:bc:57:40:2a:63:31:a2:c4:f6:9c:2e:
b0:86:98:80:b0:7f:cf:82:b7:53:d3:cf:a7:77:90:
2b:fc:76:11:ba:4f:8c:9f:8a:aa:97:6e:e4:4a:fe:
1b:b0:ad:91:4d:f2:62:16:05:b7:c5:0b:c9:3f:89:
bc:e1:bb:76:e5:c1:1c:97:64:5e:bc:70:66:12:96:
47:a4:51:c4:ea:9d:da:ed:62:eb:c7:13:e7:ab:8f:
cf:ee:15:a6:3a:e1:e2:5b:11:2c:f7:c1:c6:f1:37:
9b:40:84:38:2e:0a:e4:ba:10:c8:af:16:a6:d2:fa:
dd:63:5f:1f:e5:b9:a6:f1:cd:e1:5d:70:34:79:0f:
26:e8:74:d7:08:04:12:ab:df:38:8a:f8:1d:80:16:
0c:90:d0:ef:2d:d6:4a:5d:ab:91:48:7d:43:39:1e:
a1:45:0e:e4:0d:47:86:42:b3:ed:9b:71:38:75:44:
71:5b:d2:ae:b9:f4:e3:45:90:cd:0b:93:6e:79:8f:
d0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:93:72:7C:9F:B0:BF:A9:24:1F:74:5D:A2:59:BA:0B:69:59:F2:E4
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/bpNyfJ-wv6kkH3Rdolm6C2lZ8uQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
b7:29:ed:80:68:98:3f:63:94:5b:99:19:8e:af:f6:20:32:c6:
53:bc:8e:b5:0d:4a:58:49:e3:6f:2c:3f:f4:20:d8:e2:fd:f5:
06:a3:f2:46:ee:12:1c:75:0c:64:03:81:1e:6d:ec:41:ea:60:
f4:18:85:20:f1:49:79:97:7d:72:71:41:91:32:9c:cd:51:99:
49:b2:62:a3:a8:a9:ac:20:8d:2d:ca:c1:2a:5c:ca:ef:33:65:
0a:85:90:af:5f:6f:e5:db:39:78:5b:ed:1e:92:ec:24:b5:64:
4f:9b:53:a1:c2:5a:25:cc:b2:1e:51:01:cb:23:18:ac:4c:c8:
f7:c8:cd:c5:2e:5c:21:62:65:d3:72:2b:98:4f:ab:4d:f2:57:
da:d7:14:81:50:15:68:32:ed:0e:22:53:f1:5a:ee:33:dd:fb:
b2:f5:97:fa:85:a2:ba:63:ac:a7:21:df:ee:97:50:75:36:86:
c9:c4:39:0e:c8:8b:bf:09:9a:f0:6d:7e:39:f9:5c:2f:9e:7a:
36:58:11:7b:a2:4a:06:05:ca:63:27:ac:6b:da:ba:9b:9e:8a:
d2:54:b7:60:21:37:a8:37:60:56:be:35:a2:58:de:7c:de:6a:
16:d6:86:1b:83:74:c7:8c:e6:75:4c:c0:dc:9e:8f:86:fd:49:
b2:80:38:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org