Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/sz2E4vAxQJJ4sRE_MFs7X4T3roM.roa
File: sz2E4vAxQJJ4sRE_MFs7X4T3roM.roa (raw, json)
Hash identifier: wFK6LROfFTeJCfgR7vtUoqciabwNZqN05zyFwql/yqs=
Subject key identifier: B3:3D:84:E2:F0:31:40:92:78:B1:11:3F:30:5B:3B:5F:84:F7:AE:83
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0397
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/sz2E4vAxQJJ4sRE_MFs7X4T3roM.roa
Signing time: Tue 02 Nov 2021 12:01:52 +0000
ROA not before: Tue 02 Nov 2021 12:01:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 2401:95c0:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 919 (0x397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Nov 2 12:01:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B33D84E2F031409278B1113F305B3B5F84F7AE83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:72:a0:21:15:e9:12:be:56:d5:9a:3f:83:
91:3b:57:0e:f6:4a:ce:3c:86:48:13:b6:03:00:67:
83:48:fa:40:3e:0c:c6:c3:83:5b:79:b1:8c:41:0c:
5f:d7:e1:ab:98:5d:e0:c2:ec:85:6d:59:d1:c3:6b:
c1:de:56:3c:09:02:3f:54:e1:39:4e:f8:c1:6a:0a:
7e:5b:7a:83:42:db:8c:7a:20:1b:e4:ae:f7:d8:ac:
21:66:60:ed:54:63:ec:a0:43:8c:6c:81:82:d8:ec:
f7:ae:53:85:55:ff:f1:82:61:03:2a:9b:d6:0d:62:
af:40:3e:99:ce:19:04:66:6e:2f:af:b9:1c:a0:64:
07:aa:a6:4e:5f:33:59:94:67:3c:69:38:69:50:6d:
6e:50:24:18:a7:b0:d9:67:06:75:82:55:5b:3b:e3:
35:bb:3c:fc:78:f2:a1:05:9b:b9:59:14:20:82:96:
b6:4a:61:80:56:ae:dc:e2:69:5f:87:2e:ea:f9:9f:
4b:c5:f9:33:dd:ed:52:bb:43:fb:d4:94:07:18:2b:
c9:6a:ff:f5:a1:11:34:c9:2a:4e:03:7e:c0:6a:61:
d7:e1:2b:26:7f:e5:c8:f9:f9:16:ac:db:ff:cd:fb:
6f:ca:36:2e:52:15:b5:f1:c4:22:a3:ea:3d:2d:86:
7c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3D:84:E2:F0:31:40:92:78:B1:11:3F:30:5B:3B:5F:84:F7:AE:83
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/sz2E4vAxQJJ4sRE_MFs7X4T3roM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
43:c0:d3:5e:f0:b3:c6:3d:73:63:2a:cf:bf:dc:a8:63:f2:0f:
9d:33:03:d9:dc:d7:0f:31:1b:0a:cb:13:ac:4e:3d:2f:8f:6c:
00:07:1f:d1:d4:c4:dd:84:35:ea:7c:c4:56:f6:7c:ca:ad:5f:
d0:8e:c1:0d:f0:cc:78:4f:0d:fa:6e:12:79:95:34:b3:92:7c:
a0:e8:ce:18:2b:25:23:b9:cd:a5:be:86:fe:da:2c:e2:fd:a3:
c6:85:47:22:f5:91:ef:13:cf:46:ec:29:12:10:ca:65:76:4c:
e6:f6:e6:71:24:d5:a4:22:15:4f:b0:87:a1:3b:cf:f4:60:96:
7b:94:dd:0b:32:fc:6d:a9:2a:34:fb:82:ec:f9:46:b8:d9:c6:
d0:ff:97:d0:08:55:8f:40:7b:88:31:fa:6c:73:46:2a:f5:52:
72:39:c1:ce:98:cc:b0:3c:62:16:11:e6:b0:56:81:b5:cd:51:
b2:fa:c3:f5:9c:38:f2:67:f1:3a:2a:49:91:a8:21:31:db:6a:
68:d9:d8:e3:e9:4f:6e:f3:96:83:81:59:e7:7c:03:7c:b3:a7:
4d:61:44:bc:c7:71:af:ae:c2:b5:6b:a6:fc:d6:57:3b:7d:1e:
27:65:54:5e:a7:f1:19:b2:69:a6:83:2a:e3:83:02:ce:72:71:
ea:f1:5c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org