Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_V5PzgHTB2uxd4Nh3KVEDrQDs3I.roa
File: _V5PzgHTB2uxd4Nh3KVEDrQDs3I.roa (raw, json)
Hash identifier: EYhE7YYa+YVx1cTexTCCzD2jt3V8BpavmGmkjwG7/v8=
Subject key identifier: FD:5E:4F:CE:01:D3:07:6B:B1:77:83:61:DC:A5:44:0E:B4:03:B3:72
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0AF6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_V5PzgHTB2uxd4Nh3KVEDrQDs3I.roa
Signing time: Wed 08 Feb 2023 03:07:36 +0000
ROA not before: Wed 08 Feb 2023 03:07:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 2401:e180:8c00::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2806 (0xaf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 8 03:07:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FD5E4FCE01D3076BB1778361DCA5440EB403B372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:36:0b:15:b9:00:e3:20:01:f0:34:b2:79:
8b:28:92:41:51:24:4a:52:8b:2c:77:85:48:64:4d:
0a:7a:e1:39:85:0d:5d:f9:94:b8:6d:a7:e6:6d:7c:
b5:19:99:f0:a1:17:ce:e6:38:cd:34:f5:b1:23:74:
8c:fa:07:71:33:0b:f2:77:4b:87:72:61:4b:fe:72:
b8:c3:50:f6:a4:1d:59:b5:b2:24:4a:b4:d7:cc:b7:
d7:5a:c8:4c:52:79:13:82:2e:10:f5:07:cb:ab:db:
bb:ae:e9:f8:db:99:57:5d:d2:64:8e:b5:e7:02:42:
3e:fa:69:6e:cd:04:9f:86:0a:fc:17:20:73:d3:e6:
c8:32:f1:9f:74:b6:23:fb:87:a6:dd:3b:cf:f3:35:
cb:88:6f:d1:b0:b4:24:54:d4:72:3d:1c:d2:0e:28:
d6:dc:30:b9:6d:4e:81:90:ac:81:7c:33:e2:98:35:
a2:b0:ac:6a:2d:89:10:b6:36:f1:fc:e8:d1:da:4b:
e5:c6:c7:80:14:03:5f:23:76:17:52:5b:4f:06:63:
2a:53:2c:cb:f6:89:4f:b2:92:f6:ed:08:8a:88:b5:
2e:09:b4:0a:48:86:75:65:ef:ab:a8:f2:69:ae:67:
3b:5f:90:f8:b9:5b:ec:0d:96:8d:3f:d8:45:d4:a6:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5E:4F:CE:01:D3:07:6B:B1:77:83:61:DC:A5:44:0E:B4:03:B3:72
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_V5PzgHTB2uxd4Nh3KVEDrQDs3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8c00::/44
Signature Algorithm: sha256WithRSAEncryption
1c:88:ef:75:e6:aa:8a:d9:a5:b6:dc:25:81:ae:87:7e:93:72:
90:25:16:42:b4:89:81:15:b7:9f:a7:70:dd:5f:eb:3a:60:2d:
ee:4d:7a:dd:b8:e9:d1:b2:10:95:9f:4e:3e:af:75:7e:00:03:
1c:ea:40:17:03:3e:02:1f:67:7c:ed:f4:e5:54:08:be:14:1a:
99:46:8b:4e:23:49:b0:3a:58:ea:16:85:be:63:6b:60:4c:25:
ae:5c:d6:8b:12:fb:1c:24:c9:74:bf:d6:e0:44:ab:f4:c8:3e:
8a:fa:0d:f6:9f:60:da:82:cb:e4:06:c8:85:04:ae:87:ec:ac:
36:7b:28:99:61:5a:a9:54:e8:0c:25:8f:3a:b9:7f:4f:c2:69:
ea:99:0c:16:61:c2:60:64:d1:70:27:ab:33:f1:ff:61:1b:88:
ec:57:36:08:f3:dd:f7:1f:98:4e:f1:ad:0b:df:de:da:d7:1e:
b7:e0:3e:3f:47:2c:73:2c:9a:da:05:03:70:aa:f5:c4:dd:b9:
49:de:d2:a3:b5:73:60:7c:26:9e:85:20:81:87:4c:38:32:8c:
4b:8c:99:5e:94:e7:9b:fd:53:11:0e:8f:c7:fb:38:16:12:97:
61:ff:fc:20:17:a8:25:16:5a:f2:9b:59:15:73:33:eb:4a:0f:
25:f3:f0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org