Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/A3hINXAqZmdcwgrjaXsmyFTf55o.roa
File: A3hINXAqZmdcwgrjaXsmyFTf55o.roa (raw, json)
Hash identifier: Kf0Xo/F1ZWiOcs2G5cdqKD5WNkw+ZcKzaVgVAMDJB+w=
Subject key identifier: 03:78:48:35:70:2A:66:67:5C:C2:0A:E3:69:7B:26:C8:54:DF:E7:9A
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0B7A
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/A3hINXAqZmdcwgrjaXsmyFTf55o.roa
Signing time: Wed 29 Sep 2021 02:37:51 +0000
ROA not before: Wed 29 Sep 2021 02:37:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 64271
IP address blocks: 2404:bac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2938 (0xb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 29 02:37:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=03784835702A66675CC20AE3697B26C854DFE79A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:c8:f0:e1:39:0a:00:44:d5:c4:11:b9:46:
58:59:8e:e8:03:02:3d:70:cf:c2:6e:e9:ec:b1:d0:
0a:8c:a7:af:7d:b0:7c:c1:7f:0e:bb:ae:5c:8d:a9:
67:41:61:bf:35:b4:e9:49:79:a8:4c:f3:18:f3:b2:
c3:08:50:05:9a:a6:72:04:e2:e5:46:07:a7:48:97:
36:e7:17:b6:13:98:da:3e:fd:af:72:47:12:03:5a:
54:76:0f:1d:9d:35:31:df:6e:3d:f2:51:76:04:b3:
e6:ac:84:e2:e0:47:3f:b5:d1:96:a7:93:67:5b:50:
31:e3:89:5e:41:34:30:aa:4e:d1:d5:60:d8:f5:a8:
35:e4:dd:14:c9:31:b8:5f:63:93:95:7b:c2:01:b3:
3d:e4:c6:17:31:58:32:89:67:aa:72:33:cf:d0:eb:
ef:22:f1:e5:a6:2e:f0:42:54:f5:36:65:8b:ed:3c:
45:49:f9:68:67:f5:db:da:3c:85:16:21:04:7d:68:
7c:06:bc:ad:93:1b:80:95:9b:66:f4:39:30:05:c0:
4a:43:96:b9:70:4a:40:dc:c0:0d:7f:8c:82:9b:e5:
b1:17:88:7e:5b:ab:3d:51:b9:02:83:d5:44:38:20:
3b:55:7b:d2:54:9d:16:b2:fa:d7:6d:6d:2f:41:76:
0c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:78:48:35:70:2A:66:67:5C:C2:0A:E3:69:7B:26:C8:54:DF:E7:9A
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/A3hINXAqZmdcwgrjaXsmyFTf55o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
36:42:d6:8a:0b:8e:67:f4:20:96:6c:67:0e:21:e1:a5:89:5b:
79:55:82:22:32:60:21:2a:ff:66:8f:98:ea:a9:ed:45:de:8b:
47:94:d3:5a:2c:10:5e:84:e0:4b:64:7a:88:80:2b:ff:34:d1:
47:96:bd:38:28:43:c9:12:a9:66:1b:a0:81:2c:58:0d:52:e8:
f4:8f:bb:2c:cc:b1:8d:04:69:32:92:67:a8:11:07:af:dd:d8:
f3:a3:8c:19:c4:82:ed:2a:ec:9f:06:9d:1e:25:85:53:56:a4:
f6:82:da:d1:a2:dc:38:2d:fd:10:24:e4:bf:e1:62:0f:e0:fc:
7d:63:8a:54:3d:2f:2b:6d:a7:d7:43:10:3d:eb:26:9b:20:fd:
5d:33:99:d2:8b:b5:f5:4c:49:53:c1:cf:d1:67:61:d9:69:c8:
9c:22:b3:f6:5c:27:d5:7b:1e:b3:2e:42:1d:5b:f8:cb:0d:73:
49:90:9d:dd:b3:ab:02:e7:5f:e0:df:b6:1b:b2:3e:56:02:db:
a0:3e:4f:bf:08:90:80:b3:71:68:ca:e8:0e:58:d0:63:80:28:
3d:6a:81:53:da:68:bc:e3:69:fe:ec:c8:3d:4d:88:4d:25:9a:
64:91:25:14:ad:6b:1d:e7:68:45:2e:f0:8f:24:13:c7:42:f6:
f5:63:87:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org