Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/oNqYQnufDnGti_ZcEEvVfdqfHbY.roa
File: oNqYQnufDnGti_ZcEEvVfdqfHbY.roa (raw, json)
Hash identifier: WVI7ellMMPA7FMWshpRVAXaigoQ1S7XmR4fe5c17+3Y=
Subject key identifier: A0:DA:98:42:7B:9F:0E:71:AD:8B:F6:5C:10:4B:D5:7D:DA:9F:1D:B6
Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2
Certificate serial: 095D
Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/oNqYQnufDnGti_ZcEEvVfdqfHbY.roa
Signing time: Wed 29 Sep 2021 02:38:29 +0000
ROA not before: Wed 29 Sep 2021 02:38:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131588
IP address blocks: 2400:e480::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2397 (0x95d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2
Validity
Not Before: Sep 29 02:38:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A0DA98427B9F0E71AD8BF65C104BD57DDA9F1DB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:09:95:a5:34:65:6d:0d:d2:ef:e4:8d:66:7e:
2f:50:52:f0:19:43:e8:50:20:2b:95:ec:de:f2:95:
3a:56:7f:4e:07:19:81:a7:f9:ad:93:68:6c:98:92:
66:70:1d:07:3e:e8:3e:73:83:32:dd:f6:db:3d:7f:
cd:52:6d:78:d2:d6:da:f9:ac:62:4e:19:14:3a:d1:
54:43:1b:c6:77:f1:19:6e:3f:a5:c4:0d:e8:cc:49:
bf:e4:67:91:cc:24:9b:5b:de:f7:fe:58:51:fe:6a:
4c:e5:06:5a:ea:ea:67:be:57:ef:fb:46:1c:9c:9d:
5d:37:97:16:5f:97:3a:a1:ea:41:24:a3:ac:15:de:
c0:41:6d:d3:5e:a9:bd:f8:0d:80:ae:3f:78:b7:e8:
dd:3c:73:09:ea:26:d6:f9:19:15:7d:f3:e3:5d:30:
56:0c:a3:99:81:2f:39:31:3c:81:b1:2a:b1:89:f6:
2b:e9:cf:4f:69:e0:8c:e0:bd:42:a6:3d:0d:75:29:
46:b7:41:92:a6:7f:31:ca:c7:12:ad:15:8f:05:a4:
e2:1f:a5:27:5b:d7:34:f0:12:34:25:84:ff:5a:0d:
44:1e:12:c7:49:fc:32:5e:c7:43:71:e4:47:2c:30:
a0:41:7a:0d:5b:c8:27:35:f7:b5:61:22:a0:c7:a0:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DA:98:42:7B:9F:0E:71:AD:8B:F6:5C:10:4B:D5:7D:DA:9F:1D:B6
X509v3 Authority Key Identifier:
keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/oNqYQnufDnGti_ZcEEvVfdqfHbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:e480::/32
Signature Algorithm: sha256WithRSAEncryption
92:52:8d:b7:7e:64:ea:ef:34:3c:df:41:10:e3:fc:01:21:7f:
76:2d:09:66:dd:c8:4a:41:d5:ae:71:97:2b:dd:49:19:6b:9b:
02:39:b6:5d:14:e1:fa:4d:bf:0b:4c:77:17:8e:b8:73:07:b6:
d6:5e:71:d7:0e:ad:5c:ec:50:58:42:d9:fc:04:4a:a2:7f:69:
9d:dd:a0:50:c0:20:23:09:ce:ec:df:f5:93:2e:fb:f8:66:8b:
0e:c3:64:0d:9c:10:d7:cc:48:d4:4f:2f:6e:43:f1:70:59:8f:
bc:86:a7:70:6b:91:f4:f1:73:8c:65:74:f8:83:df:a3:ef:96:
9d:fe:d6:77:34:5a:98:be:82:14:34:88:ef:9e:19:f3:71:fd:
52:66:bf:05:49:4c:66:5d:98:96:94:79:4a:13:3a:ed:d5:9e:
9e:f0:90:4f:6e:a7:b3:7c:f7:f5:9b:bf:29:a5:67:16:a9:05:
ac:11:b5:4f:c6:0c:cc:b8:b1:fe:0e:aa:8e:43:73:6e:8f:9e:
4c:a5:8c:83:b0:90:c2:f6:84:d2:4b:3e:aa:38:0d:07:63:97:
d3:3a:18:f7:df:81:6e:8c:03:b1:6f:ab:a9:a2:f4:26:32:b6:
b0:f5:83:2c:94:a3:d5:d5:a7:33:42:5b:bf:7e:21:22:2a:a2:
27:c5:49:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org