Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/k0gUVNQ0jyyHGY3nv3yvGLXurww.roa
File: k0gUVNQ0jyyHGY3nv3yvGLXurww.roa (raw, json)
Hash identifier: VJNndO0L916/ETLqEhLkK0pl6Zwjdmb5lP/uF7cR/b8=
Subject key identifier: 93:48:14:54:D4:34:8F:2C:87:19:8D:E7:BF:7C:AF:18:B5:EE:AF:0C
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/k0gUVNQ0jyyHGY3nv3yvGLXurww.roa
Signing time: Thu 15 Sep 2022 02:38:44 +0000
ROA not before: Thu 15 Sep 2022 02:38:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 2001:4420::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=93481454D4348F2C87198DE7BF7CAF18B5EEAF0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:92:b5:46:ba:a8:f6:0e:ac:b8:5a:cb:a7:f7:
fc:93:07:5e:44:0f:d1:fc:5c:f8:38:d7:98:59:e6:
5f:65:1f:6b:f5:71:68:b5:23:79:5a:03:ec:c3:07:
3f:c6:60:d1:ae:e9:e0:83:91:f5:aa:2d:2f:88:b5:
87:10:0b:8b:d1:1e:0e:be:23:7e:2e:fa:58:ae:cc:
2a:54:ed:62:0b:13:83:cd:fb:69:f3:ee:ad:dd:29:
42:9c:de:81:48:b9:1c:fb:9d:05:64:01:d4:8b:7e:
a9:20:43:59:35:c8:c5:03:7a:d4:60:f4:80:ff:b6:
3a:3d:59:00:ec:7f:cc:c7:3a:95:84:58:08:58:c3:
ca:93:53:30:61:58:56:c3:16:9f:7a:e1:78:be:01:
f9:ec:ff:9f:46:d6:be:28:0d:a5:36:d1:63:6c:58:
4d:81:19:70:f4:08:06:0a:56:0c:22:78:fa:03:da:
de:89:e9:13:f0:6b:0a:bf:71:11:9d:61:01:b9:c2:
c9:14:21:01:46:5a:97:97:ff:03:53:9b:37:b6:d8:
ae:bd:3f:02:b6:b8:79:74:89:44:8d:3f:83:52:11:
ab:d4:8b:e1:1b:57:ba:32:09:7b:eb:dd:af:35:ef:
b8:42:16:96:f5:a0:47:0f:8b:46:26:85:80:ab:2f:
cf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:48:14:54:D4:34:8F:2C:87:19:8D:E7:BF:7C:AF:18:B5:EE:AF:0C
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/k0gUVNQ0jyyHGY3nv3yvGLXurww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4420::/32
Signature Algorithm: sha256WithRSAEncryption
16:c0:fc:13:12:c9:6b:8c:c6:1c:e6:58:a5:c5:35:3a:94:0b:
b9:99:5e:12:a4:ea:c6:73:98:57:cf:50:4a:f4:cb:9c:88:4f:
e0:eb:10:5c:5b:9d:7f:ec:1b:35:87:76:4c:b5:6b:35:07:7b:
6a:be:fa:ac:e7:50:ec:77:89:4f:07:fc:9e:ea:be:80:e3:47:
5f:56:1c:ba:60:43:67:a4:d5:a9:3c:3c:d7:a0:78:e8:07:d8:
24:d2:8f:4f:77:43:c5:2d:4a:cb:5c:72:7a:7f:0f:1b:b2:e5:
ea:c2:a1:cf:1d:b6:55:78:fe:d8:d5:08:75:28:22:84:aa:a0:
ed:a0:66:59:7e:1a:1b:d6:f2:a2:ca:53:b9:48:e7:95:fe:75:
98:27:7d:04:70:71:ce:65:ff:69:83:f1:bc:b3:93:ab:2d:29:
03:84:19:a4:84:61:87:39:71:2a:83:33:7f:fd:da:cc:d4:2a:
a1:e6:6e:c7:0d:ea:32:db:5f:5c:a6:d6:47:54:68:47:d1:f6:
8c:50:5e:5b:14:a6:1c:4f:f9:01:02:7e:d3:f6:c6:e3:fb:68:
17:f8:5a:5f:ff:22:bf:91:21:cf:24:29:ab:57:9b:be:af:9c:
42:39:cd:e7:41:dc:95:9a:48:c4:f7:96:50:72:a1:20:58:82:
45:ce:67:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org