Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/-DQoI8yq4Xaxca3bUfI1uzWRoYs.roa
File: -DQoI8yq4Xaxca3bUfI1uzWRoYs.roa (raw, json)
Hash identifier: DAPO90ehsYUBH3Aa7LfNUE53ke9Z4Y9Xm3JVvW+k1XM=
Subject key identifier: F8:34:28:23:CC:AA:E1:76:B1:71:AD:DB:51:F2:35:BB:35:91:A1:8B
Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Certificate serial: 016E
Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/-DQoI8yq4Xaxca3bUfI1uzWRoYs.roa
Signing time: Mon 13 Apr 2020 02:54:54 +0000
ROA not before: Mon 13 Apr 2020 02:54:54 +0000
ROA not after: Tue 02 Feb 2021 02:23:50 +0000
asID: 131667
IP address blocks: 2405:a040::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366 (0x16e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Validity
Not Before: Apr 13 02:54:54 2020 GMT
Not After : Feb 2 02:23:50 2021 GMT
Subject: CN=F8342823CCAAE176B171ADDB51F235BB3591A18B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2d:51:5c:86:1c:ef:5f:fd:8b:26:2d:f8:fc:
83:cf:25:1e:ef:f6:b6:b1:25:a6:0b:c1:b8:a6:2c:
bc:44:2d:9f:59:7e:91:62:c3:a8:a8:1b:3e:1f:06:
53:2c:51:53:22:9a:bb:75:eb:cb:16:8f:83:bd:18:
3d:8a:ac:af:13:d7:39:e0:fc:0e:e8:a0:29:ab:a7:
43:e4:b4:30:04:42:ab:56:ef:75:20:30:76:49:fe:
f9:ef:dd:da:cd:44:4f:b3:76:64:9f:c9:ad:ab:3c:
47:5d:36:18:3c:7e:16:48:3a:ca:e4:2e:85:d0:92:
c5:c5:8e:34:43:e0:e3:bf:6a:01:91:9f:8d:b1:8f:
f4:77:21:e2:52:bc:90:99:39:3c:cd:68:23:7e:fc:
5a:50:ce:ae:45:d3:34:9f:6e:b6:38:e1:42:07:00:
14:b5:8b:64:c8:78:b9:00:c9:e0:bc:d8:88:31:b1:
90:e0:47:d5:8b:72:cd:e8:46:2b:41:b9:87:a3:a8:
91:a1:85:9c:81:0e:3b:2a:c0:a8:e4:ed:f7:5b:97:
62:30:9f:1b:71:3b:76:e8:35:db:3d:41:5a:52:77:
4f:7d:37:a3:6e:a8:9b:0f:9b:c7:7c:16:0c:72:89:
f4:2e:3b:4f:24:6c:f6:64:bb:ac:2a:02:a7:2e:d7:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:34:28:23:CC:AA:E1:76:B1:71:AD:DB:51:F2:35:BB:35:91:A1:8B
X509v3 Authority Key Identifier:
keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/-DQoI8yq4Xaxca3bUfI1uzWRoYs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a040::/32
Signature Algorithm: sha256WithRSAEncryption
33:0f:6b:8d:6f:67:99:fa:5d:b1:95:f7:12:c4:00:d6:00:6c:
73:6d:0a:2d:48:8d:d9:c6:9c:62:4a:33:d7:b9:3f:95:96:24:
29:98:7d:00:54:14:52:a2:88:51:a7:af:2c:e6:86:fc:84:5b:
c9:db:7d:9b:04:81:08:1d:8a:13:20:44:b6:08:00:3d:12:db:
b9:a6:5b:fd:27:a1:67:d1:1b:91:10:13:28:25:26:e5:92:f0:
23:9c:af:66:3c:03:45:29:47:f3:ff:68:30:6f:c1:e3:1f:6e:
c3:f2:09:9b:8b:cc:34:98:24:c9:f2:24:0c:e2:3c:5e:79:11:
95:62:bd:64:ea:da:b6:2b:8b:c8:e8:d5:1d:ce:f6:62:fe:82:
23:83:b2:c3:08:64:a9:2b:b4:fa:13:fa:3a:e2:24:55:d1:f3:
be:d7:fa:d0:08:66:5e:8d:22:a9:82:1a:0f:bd:45:c9:0b:9c:
bd:f3:c7:0e:a9:e5:8f:e4:95:33:c9:9b:20:15:2d:0c:9f:91:
5c:ed:ef:01:f8:50:c7:b6:3b:2d:5a:fb:ce:8d:8d:75:d4:81:
e4:9b:bf:6c:0d:f7:85:40:29:e7:fd:0a:4f:67:06:59:f9:71:
e3:06:9c:d2:18:4b:70:07:1e:f5:f3:cf:5e:a2:dc:ee:25:a8:
96:5a:48:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org