Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uzzM_cmUa5J77uCGvndDrsjf05A.roa
File: uzzM_cmUa5J77uCGvndDrsjf05A.roa (raw, json)
Hash identifier: rN88oCb+YdY620u4qHE+K55mMV7+nFGcC1UUm2HrR1A=
Subject key identifier: BB:3C:CC:FD:C9:94:6B:92:7B:EE:E0:86:BE:77:43:AE:C8:DF:D3:90
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0A8F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uzzM_cmUa5J77uCGvndDrsjf05A.roa
Signing time: Thu 15 Sep 2022 02:42:16 +0000
ROA not before: Thu 15 Sep 2022 02:42:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9674
IP address blocks: 2401:e180::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 15 02:42:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BB3CCCFDC9946B927BEEE086BE7743AEC8DFD390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:26:cc:d7:97:a5:8d:cf:ab:dc:cd:26:c1:84:
e6:ab:35:a3:60:dd:2c:d6:75:22:4f:c1:b9:0b:d4:
1e:c9:47:c5:01:fa:cd:ff:fa:8e:fe:8d:b9:04:8a:
e4:0e:f1:e5:b5:2e:67:03:02:fa:da:c0:70:f1:50:
9d:39:d7:71:09:d0:fd:d6:14:78:35:5b:4b:be:23:
87:05:25:5a:a7:43:7e:ff:1a:e2:a9:e6:9d:99:5a:
fa:0f:06:25:06:4c:15:94:9f:eb:e0:8d:cf:97:1d:
da:62:90:b7:96:8e:41:b5:dd:1d:1c:98:be:57:6e:
5e:ea:30:8d:fb:9f:da:67:fe:f3:c3:6c:93:ab:3b:
52:52:bd:49:f7:1e:81:52:ab:31:9d:cd:1a:40:dc:
1b:4e:30:c7:63:bd:ca:a1:6c:49:40:10:3f:6a:86:
cb:a3:e8:8e:d3:3b:f8:f3:d4:fe:71:e1:10:b6:b6:
1d:0a:c3:1c:52:6a:35:86:6c:1f:c0:c1:9b:55:1f:
1c:a1:e7:d5:5b:2f:60:a5:17:c0:1d:4d:71:6c:2b:
d5:dd:8f:1b:46:23:5b:62:d0:59:1c:4d:32:b9:6a:
50:70:fe:fe:4e:b7:ae:68:be:46:22:43:9d:c0:4a:
1a:85:c3:82:a2:53:35:37:b8:79:39:66:c2:77:64:
96:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3C:CC:FD:C9:94:6B:92:7B:EE:E0:86:BE:77:43:AE:C8:DF:D3:90
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uzzM_cmUa5J77uCGvndDrsjf05A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180::/32
Signature Algorithm: sha256WithRSAEncryption
67:70:8f:54:99:06:1b:23:ef:91:f2:e9:fd:c1:20:0c:e2:83:
3e:a0:8f:d1:62:42:3a:11:22:62:e5:0e:45:2d:75:ad:20:40:
9a:5e:4c:40:be:9f:f9:be:06:26:8b:24:d2:71:66:1f:58:f2:
94:22:0e:0d:e8:d4:b7:ab:ae:b4:c7:f2:4e:07:75:f8:f5:cf:
31:d2:37:5e:d0:fb:36:09:03:da:36:4f:ce:7a:e0:a7:7c:fe:
a3:ed:9a:9d:d4:5d:f1:62:94:ee:d2:f6:c2:f5:06:29:0b:77:
a1:a5:f3:2c:2a:db:d7:93:9c:a2:ef:f6:3a:25:23:e6:64:62:
dd:9e:7b:af:14:dd:b4:2f:27:82:ec:df:f0:f6:28:5d:6a:ee:
aa:82:25:d5:66:29:c4:a0:f5:61:f0:4e:56:d5:5e:35:83:c2:
80:b5:b5:17:a4:48:a2:1f:0a:7e:89:42:56:47:55:b8:37:92:
62:61:0a:f4:da:a9:b8:3a:91:0c:2e:66:b1:70:d2:1f:8b:25:
a4:9d:52:ec:bc:b6:1a:20:ca:25:44:a6:da:f1:3e:e6:33:50:
1a:87:1b:f0:b1:1e:8f:29:3a:c4:10:ff:fb:06:24:bd:e0:6b:
48:e8:3f:8f:fd:e1:ad:34:31:3c:46:4b:8f:ea:20:91:03:c2:
65:9e:84:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org