Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-ED0gtm9CIiI54sk89Ct3WEpYTI.roa
File: -ED0gtm9CIiI54sk89Ct3WEpYTI.roa (raw, json)
Hash identifier: QIHeUe2SeYzmj8LUGIfScHtK5d3Upakup8A4EoH/MHE=
Subject key identifier: F8:40:F4:82:D9:BD:08:88:88:E7:8B:24:F3:D0:AD:DD:61:29:61:32
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0471
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-ED0gtm9CIiI54sk89Ct3WEpYTI.roa
Signing time: Thu 15 Sep 2022 02:35:02 +0000
ROA not before: Thu 15 Sep 2022 02:35:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 2401:95c0::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 15 02:35:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F840F482D9BD088888E78B24F3D0ADDD61296132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:a0:46:07:28:80:5c:e1:d9:40:2c:c5:0d:
0a:25:19:93:db:e3:1d:77:7a:39:a3:46:ff:68:b7:
0b:25:e3:80:82:ac:ca:96:fc:93:31:f9:d3:c6:3e:
da:1f:e2:ff:3c:96:ff:2c:04:43:99:04:5b:30:88:
2b:f3:59:5c:f8:09:9c:42:20:37:b3:1d:f0:9b:a0:
fe:98:ab:d5:8e:79:3c:b8:a1:b1:0b:d8:2c:be:07:
38:36:b9:d2:97:b1:49:5f:c6:57:9a:d0:c5:11:a1:
f5:ad:c1:f0:da:3d:de:ef:31:7a:70:e3:f6:b9:20:
08:be:7f:d9:91:81:cd:df:f4:b2:d0:97:4f:79:96:
02:84:2c:f9:e9:ee:ad:f0:3b:c3:e3:91:c9:3d:09:
81:b1:95:9b:85:59:f2:e0:ec:4d:8a:56:65:6c:48:
f5:75:6d:68:16:94:75:06:ea:65:20:55:c7:ea:4b:
ed:5d:b0:73:c6:2a:46:07:5a:70:3c:4a:cd:4b:48:
90:38:ec:a6:73:59:0d:b4:54:44:5c:60:36:a5:f3:
ee:dd:6f:1b:32:36:5b:00:2b:1b:36:54:be:65:c4:
15:5f:fb:f7:28:3b:ff:bc:96:83:b7:88:d8:84:48:
be:e3:71:36:19:36:7e:28:d0:1b:2b:06:11:65:1f:
bc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:40:F4:82:D9:BD:08:88:88:E7:8B:24:F3:D0:AD:DD:61:29:61:32
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-ED0gtm9CIiI54sk89Ct3WEpYTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/36
Signature Algorithm: sha256WithRSAEncryption
31:37:43:bf:84:52:f1:dc:e5:b8:72:ff:88:41:94:26:44:73:
e1:b3:8c:99:d1:ca:8e:4a:8a:c6:81:f9:d2:ce:6f:7e:da:3c:
4a:2f:24:09:b0:ae:d0:07:57:8f:37:f6:97:8d:85:8d:01:a8:
9c:bc:c2:b3:7c:ad:66:3d:7e:a7:74:c2:1d:5c:b5:13:5a:8e:
8c:ab:d1:64:d3:0c:f0:d1:c4:34:81:d4:6c:7b:db:2a:ef:e7:
3f:e6:65:23:b4:e7:b6:99:af:35:91:18:2a:cc:2f:84:6b:78:
01:aa:f3:a7:36:75:be:52:32:d1:12:1a:3e:6d:7a:a0:f9:85:
1d:be:0a:2b:e8:e7:6a:e4:f0:d2:5a:d8:0e:70:ce:03:fb:9a:
5c:64:0f:43:15:a2:e5:6c:1b:cf:eb:97:a5:ca:ae:e5:39:29:
23:f0:dd:86:21:c2:35:d1:76:14:08:a8:33:ff:44:9d:13:02:
47:38:45:a5:8d:e0:d4:40:20:b9:d4:70:9e:78:18:50:2f:be:
4a:42:80:ed:2e:b1:67:c3:2b:1d:7e:19:96:de:63:35:c1:02:
31:76:e6:94:0d:f3:aa:25:b0:cc:81:fb:36:86:15:4f:04:96:
5b:e5:2c:45:00:95:46:09:57:a5:b0:d5:5f:eb:2e:37:80:31:
9f:84:e0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org