Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YQIOel86j5KBpG9zNQmp6v9HAVo.roa
File: YQIOel86j5KBpG9zNQmp6v9HAVo.roa (raw, json)
Hash identifier: Ot1eL06PXU4w0z2+oSp7rPb3vk8LVhV7cbCveHwJMsA=
Subject key identifier: 61:02:0E:7A:5F:3A:8F:92:81:A4:6F:73:35:09:A9:EA:FF:47:01:5A
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 1D
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YQIOel86j5KBpG9zNQmp6v9HAVo.roa
Signing time: Mon 27 Jul 2020 09:34:32 +0000
ROA not before: Mon 27 Jul 2020 09:34:32 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 131657
IP address blocks: 2406:48c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 27 09:34:32 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=61020E7A5F3A8F9281A46F733509A9EAFF47015A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:3f:76:eb:6e:55:5b:dc:03:28:63:a0:7b:
13:b2:5b:83:62:09:29:15:15:3b:8a:96:51:00:7d:
37:c5:c5:3a:1b:c4:d0:6b:03:36:a1:33:c0:76:7d:
06:05:02:33:6f:22:1c:4c:34:2d:9f:ae:cf:df:14:
85:44:d9:42:d6:4d:0a:10:e3:df:a1:b8:68:00:05:
d3:02:55:04:a7:5b:ef:3b:ca:d9:e0:69:9e:32:f6:
a1:6d:17:a3:24:ba:d6:71:c8:90:a6:d5:21:2e:9c:
14:b2:2e:64:f2:c6:43:40:29:f4:e3:87:21:cd:cd:
e0:e8:dc:4a:a2:aa:35:a1:81:0e:90:21:b7:52:97:
ed:ae:66:9f:37:6b:a3:e7:24:16:e6:0f:0b:5c:ec:
22:84:e5:80:cc:95:b6:80:31:74:39:a9:fb:d5:25:
b7:db:03:43:e9:28:08:0d:fd:36:23:96:5c:7b:d8:
79:bb:d1:01:5a:4e:70:97:b8:28:e1:50:18:ae:45:
2a:17:43:cc:38:b0:ce:6d:21:b9:a9:6d:12:79:6e:
b8:65:06:63:9a:fb:fc:05:44:1f:fe:56:ce:79:48:
6d:22:1b:a8:12:1d:a5:76:ee:e8:0d:dc:dd:df:4a:
d1:3d:60:82:de:45:4f:3a:b1:56:14:cd:64:d5:66:
51:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:02:0E:7A:5F:3A:8F:92:81:A4:6F:73:35:09:A9:EA:FF:47:01:5A
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YQIOel86j5KBpG9zNQmp6v9HAVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/48
Signature Algorithm: sha256WithRSAEncryption
45:63:eb:8d:12:c6:7a:f1:7d:38:16:79:31:42:b9:5c:cd:82:
d0:9b:c1:9d:ed:a3:2b:1d:27:43:51:2b:4d:bc:48:64:e8:b2:
12:8d:a8:67:24:02:89:b8:7d:4b:3d:1c:8e:3c:18:61:3a:33:
76:44:46:55:2f:93:8e:57:f7:05:a6:b0:cc:ff:00:06:03:32:
cf:e8:6e:49:39:a8:38:64:1e:bb:8f:26:03:8d:72:3d:ef:d4:
7a:be:12:22:37:df:66:1d:39:27:d2:b4:73:67:5b:c5:6b:5e:
d5:26:09:0f:57:55:71:65:c1:fd:bc:f4:2f:00:f7:84:fa:fc:
d5:36:d8:5c:4f:de:38:1a:8a:81:c6:37:14:02:32:19:c4:4f:
f0:ba:5a:8d:9d:71:76:e9:4d:b8:37:85:d4:f7:9b:d0:97:80:
f5:7a:8b:55:24:40:dd:14:c7:ab:da:cd:2f:29:2b:cb:e3:42:
41:c1:4a:ba:7d:55:81:6f:aa:d5:24:e9:e3:76:f9:66:36:cc:
7b:28:0b:0d:62:cb:d2:90:04:71:d1:52:a0:21:e3:d2:36:7a:
44:30:98:19:b5:c6:94:2c:62:bb:1e:56:24:12:12:08:6b:87:
4b:9c:b2:8a:96:30:70:59:6c:c8:5a:dc:97:e3:d1:a6:36:b6:
0d:6d:9c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org