Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/wyKDcYgwjTmY_PklV0thXynkf0w.roa
File: wyKDcYgwjTmY_PklV0thXynkf0w.roa (raw, json)
Hash identifier: CfiqncY2dHD33m6r/K4U+ZyggJbhrcx63WGyhzT99OQ=
Subject key identifier: C3:22:83:71:88:30:8D:39:98:FC:F9:25:57:4B:61:5F:29:E4:7F:4C
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 016F
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/wyKDcYgwjTmY_PklV0thXynkf0w.roa
Signing time: Mon 13 Apr 2020 09:18:24 +0000
ROA not before: Mon 13 Apr 2020 09:18:24 +0000
ROA not after: Tue 02 Feb 2021 02:23:38 +0000
asID: 131671
IP address blocks: 2405:a0c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367 (0x16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Apr 13 09:18:24 2020 GMT
Not After : Feb 2 02:23:38 2021 GMT
Subject: CN=C322837188308D3998FCF925574B615F29E47F4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e4:5c:13:71:a8:c3:eb:c7:82:34:33:bd:b1:
ca:10:41:ce:76:18:c3:7e:73:18:91:76:bd:33:2c:
57:b3:14:df:91:94:97:c0:3a:cd:89:45:12:64:80:
5a:92:bc:88:74:8a:4a:89:96:5b:b6:37:35:be:45:
de:a3:ed:f3:b7:af:d0:86:18:42:56:8d:dc:21:d8:
43:0d:52:10:20:7f:19:fd:84:0d:65:c3:b3:80:3b:
37:63:8d:dc:cb:36:61:95:80:1d:8a:13:88:7c:20:
1b:bd:6f:3e:11:2a:eb:ac:c7:1f:5f:dc:77:19:22:
f4:5a:02:5e:d0:9e:32:d8:29:85:4e:d4:ca:6b:bb:
27:ef:c4:8d:5a:9a:9f:c8:38:1f:61:76:fb:21:59:
35:1e:5b:ef:77:a9:3c:ca:55:db:cb:d6:2a:ea:5e:
3d:a1:f6:dc:81:4e:c1:65:12:f3:21:f0:2d:a8:11:
db:e6:a4:73:6f:18:7d:41:5a:8f:d5:24:3f:5a:cf:
fd:44:04:d1:d1:b5:2d:22:2a:ac:68:7d:0e:7c:ec:
56:41:1f:6a:19:e6:26:e6:9b:de:19:4d:29:07:6a:
88:58:4d:f7:c9:ae:ac:a1:af:d7:f0:1b:0d:b3:22:
29:2d:46:62:c3:51:a0:10:5d:c7:a6:ed:19:62:b4:
ff:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:22:83:71:88:30:8D:39:98:FC:F9:25:57:4B:61:5F:29:E4:7F:4C
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/wyKDcYgwjTmY_PklV0thXynkf0w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:8e:90:3d:9a:87:1c:75:41:e8:ea:b4:2d:68:00:aa:01:73:
e7:24:2e:7d:22:8e:23:34:ba:10:75:c1:0b:5d:6a:4a:d5:97:
7d:38:b1:00:89:90:00:0a:5f:aa:15:43:63:d4:24:49:77:5a:
65:29:72:69:1c:2c:ec:ad:85:be:58:92:75:5f:fc:16:bf:05:
7b:91:f0:d1:79:21:12:9c:aa:2f:7b:6c:a3:5f:d0:8f:87:8c:
ab:55:c8:9e:4e:ee:b3:5b:f7:a5:ee:1a:6a:a5:f0:92:66:19:
25:41:6e:1b:92:7f:0e:46:15:43:47:bf:01:d5:63:aa:4a:d4:
0d:b7:cc:85:bd:c0:27:e9:62:83:63:00:4c:bf:cf:ea:04:3b:
be:e2:1d:20:42:d4:75:55:56:88:0f:58:00:9a:cb:da:f1:e2:
62:76:be:de:f7:c2:7a:95:c6:72:f6:05:85:c7:59:6b:fe:4c:
53:6e:37:30:07:83:21:6b:5a:1d:73:8b:52:56:dd:e9:f7:ac:
9d:d7:00:8f:1c:e7:b6:6c:33:c3:d4:86:56:d4:cb:c5:ad:1f:
f7:e5:93:92:4f:44:93:df:d5:24:1d:87:ca:a4:0a:2d:9e:b2:
1c:c2:c3:a2:52:a5:95:1a:dd:e2:16:43:a7:e2:e6:b0:9b:aa:
e7:d3:bc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org