Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/E_vBfPZQVoTPZBjvRiEkNiuhi4I.roa
File: E_vBfPZQVoTPZBjvRiEkNiuhi4I.roa (raw, json)
Hash identifier: 2jP1cwpedO+TuH0/SuFjJUkS8HJgTuFI5o1zT+t/ojM=
Subject key identifier: 13:FB:C1:7C:F6:50:56:84:CF:64:18:EF:46:21:24:36:2B:A1:8B:82
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 06D1
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/E_vBfPZQVoTPZBjvRiEkNiuhi4I.roa
Signing time: Wed 29 Sep 2021 02:37:56 +0000
ROA not before: Wed 29 Sep 2021 02:37:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131671
IP address blocks: 2405:a0c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1745 (0x6d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Sep 29 02:37:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=13FBC17CF6505684CF6418EF462124362BA18B82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cf:26:10:cb:e8:b1:74:6b:12:dd:9d:7a:8a:
f7:e6:69:3e:45:bb:3d:a0:3e:f0:d8:c0:9e:65:73:
27:e8:9f:54:d3:6e:04:15:6a:74:0f:5d:d2:99:f9:
ec:dd:79:3c:d4:8d:84:44:d8:09:1f:91:07:28:5b:
be:80:76:40:e2:75:4a:db:ab:48:21:7c:6f:68:02:
65:57:9d:93:64:c6:c4:4a:58:37:ff:3d:c7:a3:2e:
d2:61:48:5f:ee:e3:cb:20:99:05:38:20:ac:10:8d:
e2:4d:89:4a:36:f2:48:3e:6c:9b:54:89:cf:b3:63:
7a:0a:23:dd:bb:48:37:0c:be:ac:03:ab:14:30:db:
cf:f7:4b:38:69:82:60:40:86:be:47:ef:9e:9c:53:
1a:98:27:d3:93:4c:3d:47:e2:e1:f4:86:9a:77:23:
8a:71:3e:6a:49:17:70:fb:19:d7:41:58:c5:66:6f:
a5:25:d4:45:91:ac:4a:88:68:c1:a4:6c:50:9e:a7:
f9:bc:32:37:48:af:1c:65:6e:aa:1f:ef:1a:8e:7d:
a9:90:99:8a:c9:3a:01:7c:ff:fd:13:b8:b1:fb:d3:
bc:82:11:86:a2:45:d1:ce:71:9f:4f:c0:b1:ac:e4:
5d:29:ad:cc:b2:e1:cb:f0:59:13:b7:78:a6:8f:2f:
ed:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FB:C1:7C:F6:50:56:84:CF:64:18:EF:46:21:24:36:2B:A1:8B:82
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/E_vBfPZQVoTPZBjvRiEkNiuhi4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
42:fd:3d:f1:31:37:9e:e9:23:11:17:7a:e9:7c:4d:8a:f9:4a:
28:ae:0f:11:cd:a7:14:7e:40:f7:51:9f:7b:a8:f2:06:21:39:
83:b5:2e:87:0e:b0:f8:74:0c:b7:1e:e8:a3:ce:2d:ac:06:10:
89:36:93:20:f9:ba:07:f2:01:82:dc:d0:89:ce:82:8a:2b:63:
d0:e6:38:45:0c:28:57:4e:fb:a6:a2:ab:dd:50:b0:12:3a:89:
95:2b:c8:4f:cc:f2:78:9a:11:f7:18:57:9d:00:dc:00:e5:be:
b9:05:43:59:01:a8:8c:67:4f:10:37:c2:be:8c:51:ca:69:c0:
ae:16:da:ab:f6:cc:ba:d4:8e:c9:70:3c:82:19:b2:10:23:47:
be:13:f3:cd:4f:bf:62:7a:a7:56:bf:d6:4e:82:56:4a:c5:a2:
1f:47:55:eb:50:45:e3:f6:66:27:70:34:8a:d7:12:2a:5d:be:
80:1c:1e:50:fd:6f:39:ce:6e:c3:04:cf:61:cf:8a:1c:c4:c5:
94:08:c4:9f:59:8e:53:16:38:c2:bc:44:c1:b0:59:6f:5c:b3:
67:a7:f6:77:8d:0a:f7:e9:2d:2b:55:88:f4:ee:80:f9:1e:2b:
a1:b2:d2:2a:01:ba:1b:74:03:a6:18:92:ce:b7:7a:83:f3:16:
99:93:d6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org