Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Oqnc8ZoVb8fDXTSjJDUtldVO1zU.roa
File: Oqnc8ZoVb8fDXTSjJDUtldVO1zU.roa (raw, json)
Hash identifier: wVwtFPhHRvMK4eHIGOzpnbAGTjzRvidoBi/IQTrb2Ss=
Subject key identifier: 3A:A9:DC:F1:9A:15:6F:C7:C3:5D:34:A3:24:35:2D:95:D5:4E:D7:35
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0AF4
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Oqnc8ZoVb8fDXTSjJDUtldVO1zU.roa
Signing time: Wed 08 Feb 2023 01:41:17 +0000
ROA not before: Wed 08 Feb 2023 01:41:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 2401:e180:8960::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2804 (0xaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 8 01:41:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3AA9DCF19A156FC7C35D34A324352D95D54ED735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:ac:38:b9:e5:51:18:e0:25:8b:57:dc:30:
3f:6a:27:4e:4e:31:ef:30:e0:61:54:70:b8:70:d4:
8f:36:d8:9f:56:92:62:d2:19:f1:01:0c:8d:8a:b8:
de:77:91:7b:2b:cc:dd:5e:c1:84:af:27:10:ff:f1:
75:55:57:b2:3c:d2:6c:2b:1f:94:53:4c:15:6f:46:
50:84:af:8d:d1:27:45:8b:28:96:9b:6f:a4:09:1f:
af:82:c0:b7:f8:73:6c:f8:da:3d:f6:ef:88:cf:b6:
41:cb:ec:4a:bd:0e:fe:28:aa:be:a5:48:66:5c:19:
23:90:86:54:e3:3e:3e:36:37:c2:43:3f:4c:55:16:
66:a4:a6:9e:ed:fd:14:0f:af:31:d7:12:0b:81:91:
d5:d0:46:eb:77:68:5b:31:54:43:4c:c5:63:bd:09:
84:98:a3:f2:d9:32:ac:50:e5:0c:2e:12:27:81:a1:
00:ee:67:7c:de:30:74:56:ad:74:b6:00:f9:0e:10:
52:73:65:51:9f:e0:c2:db:2c:0c:b2:a8:af:46:76:
ed:2e:df:62:98:75:07:50:c7:af:3d:60:af:47:62:
5c:75:13:c9:ad:5f:db:1b:11:8c:1d:62:50:c9:95:
57:02:a1:ce:8a:af:c3:aa:44:62:bb:df:f3:94:32:
f2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A9:DC:F1:9A:15:6F:C7:C3:5D:34:A3:24:35:2D:95:D5:4E:D7:35
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Oqnc8ZoVb8fDXTSjJDUtldVO1zU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8960::/44
Signature Algorithm: sha256WithRSAEncryption
24:b0:39:e9:d8:45:4f:ae:41:53:f9:c2:59:22:6d:f6:4b:88:
88:bb:b1:98:21:b3:4a:7c:0f:55:9b:e3:c9:9a:4d:b7:37:da:
bc:9c:2f:82:3b:e5:38:78:fb:16:03:eb:da:e1:f2:2d:79:79:
23:db:1c:2b:0a:69:49:6a:ed:53:f8:bd:88:2c:4f:ce:ba:a6:
74:9e:cf:54:99:f8:c1:11:09:8b:a3:f8:bc:d2:cc:b3:39:19:
31:72:ba:63:69:94:d9:a5:02:82:a8:55:bf:fc:d9:40:8a:e4:
b2:37:47:6e:2c:e6:ff:b2:80:f5:f8:6f:fe:ca:88:17:05:bb:
c3:9d:53:59:a0:c2:20:9e:f1:2f:b3:5a:2b:d9:5c:7e:45:1e:
9d:f0:84:84:a6:4a:44:26:34:68:9f:fd:e5:07:7a:b7:da:67:
58:42:15:1e:c3:19:11:92:f3:fd:ef:81:ae:48:08:01:f5:39:
46:1c:08:2f:53:fd:7f:3f:f7:dd:63:c8:6f:db:77:0a:77:1d:
ed:b4:65:09:4c:03:36:12:1d:e9:83:12:00:38:e5:8d:70:2f:
44:55:25:e0:26:e0:3f:8d:60:c9:e1:78:8c:cb:7e:d6:68:cb:
80:24:dd:5f:dd:c3:30:72:e5:02:3b:c1:ad:1e:aa:79:ac:e6:
e1:6c:e5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org