Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/0UtPP39_zbLTJ3q06s9rqZ3Ip80.roa
File: 0UtPP39_zbLTJ3q06s9rqZ3Ip80.roa (raw, json)
Hash identifier: vSYBNQg6ijJljlttQ33vzw3ez2lCExn1ah+Y2fc5Ctc=
Subject key identifier: D1:4B:4F:3F:7F:7F:CD:B2:D3:27:7A:B4:EA:CF:6B:A9:9D:C8:A7:CD
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 061B
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/0UtPP39_zbLTJ3q06s9rqZ3Ip80.roa
Signing time: Tue 19 Jan 2021 02:30:59 +0000
ROA not before: Tue 19 Jan 2021 02:30:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131671
IP address blocks: 2405:a0c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1563 (0x61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Jan 19 02:30:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D14B4F3F7F7FCDB2D3277AB4EACF6BA99DC8A7CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6d:08:7e:5d:fc:bf:e2:f0:db:be:d3:3e:19:
71:43:b1:da:ec:29:b5:45:9a:ec:74:53:c4:bc:12:
fd:0b:e0:e0:00:57:b6:b4:7a:28:18:b1:9a:2e:07:
be:f7:54:c3:31:2f:68:87:5f:14:5d:72:23:46:c3:
95:1f:de:a7:ca:b4:94:f8:25:0f:4f:3e:a9:0e:6d:
a2:c1:87:06:ff:97:0a:bb:1d:a8:78:3e:9f:a7:c1:
26:2b:9a:04:d0:44:13:c2:6e:dd:a8:ba:db:bd:13:
40:48:9d:f4:4f:7d:26:c4:92:cc:3e:13:e8:db:8a:
52:7f:26:57:19:9d:83:53:58:e2:41:9b:a1:db:92:
ca:9d:a4:ca:88:58:7e:3c:59:11:4e:43:05:88:0e:
f7:40:e5:3e:ab:ad:83:11:0e:8b:2a:30:df:a6:ac:
59:8a:13:7d:c9:5a:9d:06:13:24:32:56:e1:16:a8:
a7:a8:6f:65:c1:4c:bd:f4:ce:10:6e:40:bd:c0:42:
fd:be:e0:a8:fe:f0:4f:6b:0b:9b:8d:88:ab:04:e6:
4d:be:5e:c9:25:29:93:49:64:b7:9b:88:81:d7:d2:
05:8b:2a:99:44:20:5c:41:e2:40:d5:f4:04:7a:56:
14:f4:b1:df:d1:a6:92:91:24:64:e9:5b:87:15:47:
b2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4B:4F:3F:7F:7F:CD:B2:D3:27:7A:B4:EA:CF:6B:A9:9D:C8:A7:CD
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/0UtPP39_zbLTJ3q06s9rqZ3Ip80.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:a6:67:3d:e0:b3:0d:20:8a:4c:69:22:7e:50:2e:99:6e:f4:
3c:06:79:37:9d:8d:8f:63:d9:b8:76:1e:2a:df:6d:81:9e:be:
92:71:eb:b6:8c:e3:21:2d:c9:8b:6c:87:f5:24:79:e0:c9:16:
ee:e5:cd:e9:ca:61:da:31:88:4f:6c:bb:3f:6c:71:a3:4e:39:
9c:32:39:ea:8b:ce:6a:3e:02:eb:cc:41:21:7e:e8:18:0b:05:
9a:40:eb:19:32:0f:16:07:97:f3:0f:40:f9:8b:59:6d:5b:bc:
cf:08:7d:05:78:c2:c0:84:50:83:11:87:40:80:08:c1:ac:0b:
e6:cf:d9:ef:40:45:6c:59:27:5f:aa:54:45:ba:7f:fe:44:a3:
46:b4:80:95:14:af:ed:ba:b0:1c:ab:6d:b6:7a:a3:3d:62:45:
27:e6:b4:5f:c3:c5:bc:f2:3e:9a:0f:05:5f:f5:0a:a2:f4:12:
e5:55:50:3e:f9:64:87:f2:b5:c0:1d:1d:4e:13:11:ad:5a:47:
24:0a:be:a3:5c:ba:5a:aa:e3:53:12:6a:8d:0c:65:c1:a3:45:
6f:2e:27:50:6c:cf:11:36:e0:0b:91:74:3e:e7:cb:09:ed:3a:
31:0c:c7:ba:26:30:cc:8c:a4:c9:c3:f8:fa:fa:a2:a8:7e:b8:
cb:dc:d5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org