Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JNn8Yc03f_TFB4Ibjzs1NVPbyjQ.roa
File: JNn8Yc03f_TFB4Ibjzs1NVPbyjQ.roa (raw, json)
Hash identifier: GwlpT6J0+dDQje8TvD3OTLM3izaGDLN0RkSIsMxJ2Ts=
Subject key identifier: 24:D9:FC:61:CD:37:7F:F4:C5:07:82:1B:8F:3B:35:35:53:DB:CA:34
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 03FE
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JNn8Yc03f_TFB4Ibjzs1NVPbyjQ.roa
Signing time: Mon 28 Mar 2022 09:33:05 +0000
ROA not before: Mon 28 Mar 2022 09:33:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 206729
IP address blocks: 2401:95c0:f001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1022 (0x3fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Mar 28 09:33:05 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=24D9FC61CD377FF4C507821B8F3B353553DBCA34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:88:47:7d:a2:54:45:54:eb:b2:57:a6:74:c4:
c6:da:06:b9:87:f0:c4:72:52:07:7d:6c:fd:06:1f:
60:66:24:26:ba:ce:13:5d:9c:59:fc:61:85:f4:3b:
34:15:00:ed:12:5f:de:35:be:b6:e3:9c:28:76:5b:
a4:4a:67:aa:37:b2:d8:6e:cf:21:ba:c3:03:64:32:
4f:7b:a3:6f:90:c9:8f:46:eb:30:61:28:16:79:a3:
00:88:65:c3:26:cb:8b:0f:0c:3a:d2:2b:fd:39:25:
ec:1d:9c:14:64:3b:1f:85:43:1e:ce:37:0a:b0:8d:
3c:63:cf:84:e5:ba:3c:f8:ce:65:9b:94:47:93:4b:
19:b4:5c:bd:19:02:d5:a8:5d:2f:5a:f2:f1:60:ac:
cd:ed:34:e2:93:b2:ba:df:08:0f:56:bb:e8:17:6e:
ad:66:2a:29:10:0d:cf:ac:53:7b:cb:58:e0:6d:bb:
e3:2c:19:94:8f:5b:24:01:f9:8b:5d:98:2d:3a:b4:
86:f7:cb:73:50:6d:8d:5a:41:d9:6a:cb:2a:43:de:
0c:fe:0d:34:6b:95:cf:8f:9e:3d:c7:d8:46:4b:a9:
ec:1b:7f:68:96:a5:e5:f7:f9:3c:8e:72:f8:a2:07:
54:c4:5b:b9:24:ba:05:ce:71:5f:c5:d7:e6:1b:ab:
bf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D9:FC:61:CD:37:7F:F4:C5:07:82:1B:8F:3B:35:35:53:DB:CA:34
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JNn8Yc03f_TFB4Ibjzs1NVPbyjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:f001::/48
Signature Algorithm: sha256WithRSAEncryption
24:cf:77:ed:84:94:4c:a0:94:9b:44:aa:06:42:7e:6a:3d:2d:
ba:9c:76:f3:97:68:88:4f:06:60:bb:de:22:5b:7e:ee:6b:24:
71:90:8d:32:ca:8c:47:d7:f6:35:29:57:ee:50:cb:83:f4:5d:
51:e4:46:84:f4:34:9c:13:1a:e7:96:e9:25:00:1e:7b:89:a2:
fd:61:8a:1d:7f:99:2b:b0:5c:b8:d3:ba:8b:62:1b:3e:47:56:
3a:51:86:ff:d4:c4:8e:d7:a1:c6:dc:fd:8b:9b:7a:16:d6:b8:
b0:97:d9:7b:18:0d:74:3c:4c:34:89:2b:b7:74:47:fb:d4:69:
87:6d:36:dd:70:87:12:8c:b2:07:01:5a:ec:81:53:0e:6d:3a:
ef:c8:eb:e3:98:42:59:4d:96:91:2d:ec:2c:a0:37:c3:ef:52:
bb:7c:c1:0a:a6:6d:40:78:c5:79:a2:b7:e2:ef:0a:a6:4f:8d:
5a:0b:05:72:e0:12:66:b7:e9:f3:63:c6:17:c4:1e:55:8f:d1:
8a:8f:b2:26:16:17:bf:52:24:37:25:f6:a7:fd:32:21:55:f8:
a3:60:19:79:ab:b5:3d:8a:01:f9:10:55:2c:e7:90:ca:36:93:
24:18:68:e0:41:24:46:a4:fd:98:d8:32:cb:50:fa:6a:54:22:
68:86:29:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org