Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/lrPFR9pwtD7k0C_aUQ7B8n14JKk.roa
File: lrPFR9pwtD7k0C_aUQ7B8n14JKk.roa (raw, json)
Hash identifier: WlqJDVWcto0PNgeoxZvkU9QBngGhIJrh9TQ3qAfpb2c=
Subject key identifier: 96:B3:C5:47:DA:70:B4:3E:E4:D0:2F:DA:51:0E:C1:F2:7D:78:24:A9
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 07CB
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/lrPFR9pwtD7k0C_aUQ7B8n14JKk.roa
Signing time: Thu 15 Sep 2022 02:38:32 +0000
ROA not before: Thu 15 Sep 2022 02:38:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131671
IP address blocks: 2405:a0c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1995 (0x7cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Sep 15 02:38:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96B3C547DA70B43EE4D02FDA510EC1F27D7824A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5b:8f:5b:ae:3d:55:66:f8:79:eb:0d:8d:e3:
fe:08:c5:04:d8:49:b8:5f:22:f4:c7:69:f3:4a:6b:
fb:6f:22:de:7d:21:16:c7:dd:46:d9:96:93:ca:e3:
24:d8:ca:f2:bc:26:39:88:71:63:e8:2c:04:99:cb:
2f:85:dc:03:f4:46:66:63:2a:59:ec:31:c0:a5:bd:
ff:79:e8:1c:e4:2c:5c:ec:1b:93:60:28:a7:ea:3d:
a3:87:ec:c9:c5:0f:db:a2:fe:f0:c4:91:fb:0b:1b:
6f:b9:a8:b2:e3:3c:df:57:69:7f:45:95:90:ce:33:
56:15:f1:72:d4:97:c6:0f:f1:2e:47:09:fe:03:6f:
c2:a1:a7:a6:9c:2f:10:c2:bb:75:20:54:39:08:4e:
fb:93:83:81:13:62:80:8a:56:f3:f2:c1:0c:fc:95:
eb:ec:69:d6:53:23:6e:1d:e6:3e:bc:ac:12:dc:cb:
52:b1:43:78:1e:40:fe:d5:b6:84:4e:81:52:c0:e8:
fa:8a:a4:c6:0b:9f:c0:2c:55:64:60:ac:53:67:10:
70:25:2e:79:54:ff:65:59:54:60:98:9d:4b:30:d1:
5f:72:9e:38:98:c1:f3:d2:fa:da:0f:2a:c6:e2:8b:
7a:d2:ba:3f:4b:26:31:f2:12:38:65:bc:62:c6:a4:
8d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B3:C5:47:DA:70:B4:3E:E4:D0:2F:DA:51:0E:C1:F2:7D:78:24:A9
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/lrPFR9pwtD7k0C_aUQ7B8n14JKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
79:fe:fd:22:f7:8f:29:1e:77:92:5a:09:f7:92:f8:ff:d8:33:
77:9f:51:d4:a8:d7:23:98:23:8c:5f:6b:be:b9:c9:5b:53:c3:
4c:54:f7:e4:0b:af:99:9f:44:9c:c1:18:b0:81:b5:2c:49:bf:
bb:e5:76:65:8a:60:5a:ff:42:65:9b:5c:ae:28:e0:67:85:3f:
00:56:43:90:e7:ae:cf:23:d8:04:23:c7:d6:c8:ba:ca:f4:f3:
0b:3d:4d:0e:79:b4:a4:f5:ab:04:b5:80:8b:17:b0:58:11:19:
f1:44:fe:5b:43:4a:06:aa:00:75:01:ba:73:37:5a:5e:9b:9a:
40:e9:c6:13:98:81:bd:27:1b:f5:96:fb:cd:90:0b:4b:7d:96:
de:dd:b3:ee:6c:35:1e:3f:57:44:69:7b:0b:21:c8:fa:49:8b:
54:df:3c:04:eb:38:98:eb:21:05:69:57:9e:1f:17:75:cd:07:
61:e0:b2:0a:43:b2:33:9a:37:3f:07:21:fc:fc:f5:13:79:b6:
b7:1a:58:1a:2d:b6:d3:3f:07:e8:05:f7:4d:77:5f:47:8a:13:
ce:67:1f:b9:82:e3:87:e0:fb:d5:00:56:2a:41:d6:68:bb:81:
cc:03:dc:b6:20:35:f2:07:5a:14:b0:92:bc:2d:97:8b:98:3e:
a9:b5:4b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:52:27 2025 by rpki-client