Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/_PfFCFONQwBnk3lTfYRPvnjtLtE.roa
File: _PfFCFONQwBnk3lTfYRPvnjtLtE.roa (raw, json)
Hash identifier: IOJFSvn7JlRwss5Ca9E2n6/C3oq7P8FG3cn390q2gjo=
Subject key identifier: FC:F7:C5:08:53:8D:43:00:67:93:79:53:7D:84:4F:BE:78:ED:2E:D1
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 037B
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/_PfFCFONQwBnk3lTfYRPvnjtLtE.roa
Signing time: Wed 29 Sep 2021 02:53:59 +0000
ROA not before: Wed 29 Sep 2021 02:53:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 2406:48c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891 (0x37b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FCF7C508538D4300679379537D844FBE78ED2ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5c:b9:30:53:12:e5:b6:67:13:d3:5c:06:5f:
8e:29:bf:48:c6:c0:36:4b:61:4d:70:ec:e7:9b:19:
3c:db:04:10:9f:4c:27:91:ad:ba:13:2c:2b:5e:71:
70:40:14:1d:5c:86:02:28:13:22:f6:d4:ea:5b:51:
7b:a5:b9:a1:40:38:74:b2:4f:da:eb:61:19:d2:b6:
cc:b0:77:c3:eb:14:21:6b:fb:65:21:4c:5b:4b:de:
c2:bd:95:3d:af:c5:42:c7:07:db:d7:20:53:99:f3:
4d:3f:1d:9a:39:5f:86:37:0e:79:18:4b:e0:ee:e7:
aa:3c:88:bd:17:65:06:2b:83:9b:17:75:b2:ef:c5:
c3:62:e4:79:30:85:38:74:ec:31:1c:fe:9e:b7:95:
8a:3c:65:a8:03:1f:4e:30:76:d2:2b:64:04:b0:af:
3d:64:0f:8d:5b:5e:ca:fb:05:02:64:75:3d:f9:6b:
b2:fc:1a:6d:5b:78:2b:64:de:0c:30:68:ed:aa:45:
df:20:11:3f:81:84:77:89:1b:c4:7f:b6:64:5c:48:
6d:33:50:99:4a:a9:a0:c1:6b:9b:7d:8a:d8:12:2e:
8a:f5:6e:d1:20:7b:e5:96:ad:19:fa:3c:76:6d:e6:
2f:1b:c4:00:2d:8c:26:bd:23:2a:a5:b7:34:94:05:
64:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F7:C5:08:53:8D:43:00:67:93:79:53:7D:84:4F:BE:78:ED:2E:D1
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/_PfFCFONQwBnk3lTfYRPvnjtLtE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
8f:31:ae:56:6e:44:8f:48:ec:81:67:d5:14:bf:9b:8a:74:7b:
ab:91:93:f8:4c:fd:52:37:66:b3:23:bf:55:f6:1f:ff:ed:d6:
95:3a:a7:5d:c4:1f:1a:bc:2b:a1:a9:b4:9d:dc:ee:86:70:19:
c2:7b:7e:37:56:5e:f3:1d:08:28:0a:bd:ab:fc:45:b4:c4:85:
f4:c2:93:e8:ab:68:8d:5e:56:a4:21:3e:42:48:b0:8e:32:28:
9c:46:e1:dd:b0:67:7b:59:af:6d:42:b2:be:54:4e:14:8e:d4:
87:53:1c:36:e6:6d:bc:1a:09:7c:1b:4d:89:27:e9:93:e2:ac:
f5:96:ce:ae:8b:ff:cf:48:a2:85:67:3c:71:5a:a9:28:d3:88:
cd:54:5f:f4:ae:b5:28:b2:55:b2:b4:be:ff:65:33:d5:f2:5d:
64:aa:e9:66:ca:d6:78:23:e8:85:37:68:ac:50:28:28:f0:7d:
8c:4d:58:01:10:51:a5:0e:c8:42:02:89:11:f3:3e:e6:82:d0:
c1:65:d4:dd:81:33:ea:47:48:98:74:a0:16:01:41:e1:51:df:
c2:cd:66:aa:5b:06:87:fc:e2:ae:69:45:a1:de:cf:74:d4:00:
f5:27:a1:3d:7c:ce:f6:b8:26:17:3f:2b:c3:a2:84:a3:8f:85:
fe:f6:19:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org