Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/lzIG39CCaWeVnh1bY8XWAbn3Jkg.roa
File: lzIG39CCaWeVnh1bY8XWAbn3Jkg.roa (raw, json)
Hash identifier: j4Yy/3iqf3wOL+x/3kqApekNwrJ8NDFVDX85qWRw0xE=
Subject key identifier: 97:32:06:DF:D0:82:69:67:95:9E:1D:5B:63:C5:D6:01:B9:F7:26:48
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0B79
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/lzIG39CCaWeVnh1bY8XWAbn3Jkg.roa
Signing time: Wed 29 Sep 2021 02:37:51 +0000
ROA not before: Wed 29 Sep 2021 02:37:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131658
IP address blocks: 2404:bac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2937 (0xb79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 29 02:37:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=973206DFD0826967959E1D5B63C5D601B9F72648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:75:2e:c7:5b:2c:6c:39:4b:95:e6:54:5c:
11:62:c5:47:06:94:6a:29:13:31:95:ae:ae:67:14:
b0:0f:22:8b:1f:cf:b2:04:81:ac:93:cc:84:4a:d8:
a3:35:59:72:d4:94:ac:b0:ac:a6:e1:79:de:5c:e1:
c0:b3:e0:f4:eb:f1:4c:54:32:55:ec:46:1a:88:4b:
dc:b2:d5:36:92:c0:ba:0c:80:20:27:b9:32:13:b6:
db:cb:0c:01:f3:6c:0b:bc:71:74:2b:82:e2:10:b3:
12:21:34:2f:e2:18:82:b4:ae:d5:34:54:a1:a0:c4:
cb:fb:77:87:4d:44:e5:56:c5:30:62:be:02:41:62:
2c:b5:eb:c1:65:98:d6:36:fe:3e:90:05:34:87:0e:
3c:75:2a:08:ea:2f:f9:51:30:e3:e6:e4:f0:7d:39:
03:20:7b:1a:5c:90:1c:c0:eb:4f:68:fd:eb:1d:80:
12:09:a3:10:08:94:b4:f9:8a:2a:b2:f4:c6:96:9a:
92:31:cf:27:2b:3a:e7:ba:27:62:51:c6:46:8c:ea:
50:11:4e:01:0c:17:b8:11:9d:3d:6d:e5:3b:e5:d0:
e7:1f:07:14:3f:c4:a2:71:08:ae:31:55:ed:50:cc:
30:19:66:59:2f:f9:cc:1a:1a:36:cc:68:59:73:d8:
90:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:32:06:DF:D0:82:69:67:95:9E:1D:5B:63:C5:D6:01:B9:F7:26:48
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/lzIG39CCaWeVnh1bY8XWAbn3Jkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/44
Signature Algorithm: sha256WithRSAEncryption
89:b6:7e:96:89:de:c8:84:4a:5e:12:31:4c:eb:ee:f7:6a:88:
3e:b1:ed:08:0e:85:af:7c:45:31:1b:ab:28:41:06:2b:17:bb:
7a:6d:c1:49:8c:fc:e6:f6:da:df:06:91:7e:1a:36:cd:f9:ff:
71:03:c0:fa:1a:46:7b:6b:60:0a:9b:b7:9b:e4:5e:fd:b9:e5:
50:bf:1c:ff:bc:e7:de:a8:45:9c:dc:99:26:32:7d:9d:90:48:
3d:b5:09:9b:b6:3f:d1:a5:f3:9b:64:e7:50:e3:6f:13:3c:83:
11:21:c6:86:67:bf:04:d3:23:a2:ee:10:bd:6b:3e:a3:b7:ce:
12:1d:81:73:f5:09:bc:54:b6:c4:ef:35:ff:66:27:44:d9:9d:
9d:4e:cb:6a:5c:be:bf:82:86:1c:95:5f:98:3d:5f:72:ff:88:
81:81:c3:a4:72:48:63:59:28:47:c9:11:84:9b:78:81:9e:86:
71:a7:1b:80:0f:1b:4d:e0:d3:05:42:e4:01:f7:c5:3a:55:69:
33:47:8a:73:f8:11:d0:3a:aa:fc:67:2e:c8:e8:8d:d5:07:d1:
f2:2e:99:24:d9:5a:03:a6:3a:3d:05:d9:33:15:9d:6f:e9:63:
90:d8:86:fb:e0:66:87:68:f9:b6:74:eb:b9:0f:6e:25:6f:9f:
30:3b:ef:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org