Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/kAyDVaQ82SYYMHqxUmQd8M9f3xM.roa
File: kAyDVaQ82SYYMHqxUmQd8M9f3xM.roa (raw, json)
Hash identifier: 2KaLyQO0FcqZ0KFzQtfzIOoREeoR0xscW6RB/QTFtV8=
Subject key identifier: 90:0C:83:55:A4:3C:D9:26:18:30:7A:B1:52:64:1D:F0:CF:5F:DF:13
Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Certificate serial: 0F6F
Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/kAyDVaQ82SYYMHqxUmQd8M9f3xM.roa
Signing time: Wed 29 Sep 2021 02:52:11 +0000
ROA not before: Wed 29 Sep 2021 02:52:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131663
IP address blocks: 2403:b7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3951 (0xf6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Validity
Not Before: Sep 29 02:52:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=900C8355A43CD92618307AB152641DF0CF5FDF13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:38:e9:15:5e:79:96:f2:af:1c:ab:8b:ad:
4b:8e:14:7f:ce:8d:e0:8d:88:23:f4:45:d7:39:01:
13:d0:9b:ac:99:70:23:b1:fc:18:fe:c1:a5:d5:f1:
47:1c:f2:83:8d:3c:76:84:6e:50:f1:4c:31:b9:70:
9f:96:1f:db:e9:bf:f8:60:7b:ce:59:3a:fb:52:88:
b7:c5:11:15:a4:01:24:1e:cd:3e:df:8d:4d:20:df:
aa:03:43:b5:e6:f6:1a:41:8c:dd:d9:1c:eb:3f:07:
01:b1:48:ee:7e:24:c5:2e:80:3c:c9:7c:68:1c:8f:
77:ab:89:f7:a1:6e:1c:cb:01:57:cb:cc:e8:10:f8:
e7:8d:dd:e3:a2:d9:13:64:1c:60:a9:64:a1:c3:4f:
0a:9e:db:7e:11:df:db:3a:d2:09:8e:9a:c6:57:d5:
93:48:30:05:df:36:1c:ae:90:59:cd:d5:72:54:86:
f6:c6:4b:c4:89:95:f5:8e:74:48:79:fa:52:b1:dc:
a3:f6:a0:44:5b:c5:ec:be:38:9a:e7:51:64:a0:3a:
a5:ff:cd:a8:0c:a8:1f:d2:1b:c9:90:c4:18:9f:e8:
4f:83:2f:36:2b:d9:6c:78:d8:91:0f:e4:97:90:55:
69:1e:68:07:1d:17:a9:1e:6e:88:0b:a3:35:32:56:
5e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:0C:83:55:A4:3C:D9:26:18:30:7A:B1:52:64:1D:F0:CF:5F:DF:13
X509v3 Authority Key Identifier:
keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/kAyDVaQ82SYYMHqxUmQd8M9f3xM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b7c0::/32
Signature Algorithm: sha256WithRSAEncryption
6b:f1:b6:4e:b9:ff:09:f7:28:28:9d:2d:40:7c:9a:6f:86:b6:
2c:43:e7:85:56:20:d4:c2:c3:26:e0:02:c1:3b:7d:a2:5b:66:
a5:78:5a:07:06:7d:22:1e:79:ac:15:63:f0:ef:9b:2f:de:fb:
95:2c:c8:a2:b6:13:91:d2:03:a6:84:8c:c7:9c:be:98:d0:48:
ce:c7:9c:61:bf:1e:4e:4c:7e:f6:49:d2:ea:88:fc:53:94:5c:
89:0c:9d:5f:5e:77:4d:37:6c:95:b1:c0:80:4c:8a:de:e8:0c:
f5:c0:cc:56:72:81:67:80:6d:5e:0f:89:7f:60:52:fc:ee:8f:
67:d3:0b:19:4d:3e:7c:83:cd:f8:63:94:98:81:17:5f:c8:fa:
01:e4:58:9b:a3:ac:4f:0d:41:3b:89:1b:e5:6a:40:0b:06:51:
6a:6c:29:d0:cb:fd:f9:20:03:21:2c:a0:00:13:1e:3e:b2:b2:
64:35:1f:91:01:7e:27:4a:4b:d0:b8:1f:ad:00:60:ba:7a:ad:
1c:30:56:58:81:b5:3a:64:34:01:65:d8:d3:c5:2a:d4:7f:69:
c5:3f:ec:e4:da:b7:f8:5c:2b:33:05:57:19:aa:39:0a:9d:31:
f0:a7:c8:72:4d:6a:70:15:05:43:a9:20:47:32:15:62:c7:be:
1e:f1:3c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:58 2025 by rpki-client