Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IDT/RHTURK4Q3A8ssWNlRx-MMnFQWbg.roa
File: RHTURK4Q3A8ssWNlRx-MMnFQWbg.roa (raw, json)
Hash identifier: i8E00/Z+/gm/FZ6vVPm0qV/e1fogBdhk7w45dppPnnc=
Subject key identifier: 44:74:D4:44:AE:10:DC:0F:2C:B1:63:65:47:1F:8C:32:71:50:59:B8
Certificate issuer: /CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493
Certificate serial: 036A
Authority key identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/RHTURK4Q3A8ssWNlRx-MMnFQWbg.roa
Signing time: Sun 02 Jul 2023 16:12:38 +0000
ROA not before: Sun 02 Jul 2023 16:12:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 2406:2fc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874 (0x36a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493
Validity
Not Before: Jul 2 16:12:38 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4474D444AE10DC0F2CB16365471F8C32715059B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:68:23:cf:ab:bd:51:d6:3a:8c:47:a6:f9:
92:42:87:d0:63:b5:23:73:4a:14:e5:32:d7:b4:84:
4b:2a:c3:c5:5e:48:42:a9:11:aa:5e:de:58:13:42:
da:ae:27:d0:50:a9:d1:3e:0f:d7:a5:c1:5d:c3:a2:
70:ed:b2:da:46:a2:f6:62:3d:2d:13:5d:69:d3:58:
a7:dd:d3:22:19:69:9e:be:c4:5f:91:a9:f9:01:03:
e7:a9:1f:b3:8e:1b:18:63:ea:1a:15:57:ac:4b:15:
0c:cf:ba:75:90:89:c4:0a:de:a5:fd:db:76:0a:13:
ca:67:e6:d3:f7:a1:08:a3:83:c0:42:c6:2b:44:3e:
83:1a:da:15:1d:89:a8:12:0e:4d:8c:d8:5e:32:30:
85:0a:f3:c5:c9:86:0a:c5:fb:44:1e:b7:3c:3f:c6:
89:70:38:ed:a3:15:ed:2e:32:58:65:2a:b3:aa:98:
92:19:b0:e2:9d:50:2d:ac:70:36:41:a0:ea:e5:fb:
77:49:d8:46:3f:98:9f:51:fd:ef:50:59:d9:d3:1d:
e1:8a:cd:1f:d3:fb:61:69:6e:21:40:7c:7f:44:dd:
99:75:3b:4d:0c:f8:6c:d1:5b:c2:f9:b7:78:14:49:
f2:05:e2:92:6d:93:2f:6c:d7:79:cd:09:a4:d3:2c:
da:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:74:D4:44:AE:10:DC:0F:2C:B1:63:65:47:1F:8C:32:71:50:59:B8
X509v3 Authority Key Identifier:
keyid:4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/RHTURK4Q3A8ssWNlRx-MMnFQWbg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:2fc0::/32
Signature Algorithm: sha256WithRSAEncryption
11:33:20:8c:6c:cd:72:43:2f:9f:db:d8:6e:57:c9:ec:aa:86:
83:6c:8e:f9:47:2e:b6:20:c7:aa:3a:65:26:76:aa:16:9f:b4:
d6:99:16:5a:eb:91:cf:41:f2:79:99:e7:0b:96:27:0c:20:33:
26:8f:8f:39:a5:07:4e:9e:c5:0d:f5:fe:51:bf:83:81:0b:f2:
97:df:bf:41:1c:b8:8a:b5:c7:76:6b:e5:60:18:61:66:56:dc:
0e:44:8c:fe:d0:e4:2d:33:f2:92:4b:2a:81:26:c1:68:ee:56:
f0:f1:4c:22:74:2b:ce:8e:0f:10:5e:0b:6a:43:09:47:16:57:
62:a3:59:db:92:4c:da:05:d4:31:c2:11:76:31:86:d8:42:85:
f9:9d:45:26:2e:a6:06:b8:87:30:ce:d1:6c:cb:20:22:89:17:
5f:05:60:53:19:65:00:4c:1e:83:26:bd:1e:11:15:b6:62:a3:
d7:ed:6c:ad:b7:c9:fe:40:0f:de:f6:eb:e3:5d:81:f5:e4:02:
cb:b2:6d:4a:71:b9:36:c6:50:b7:39:4f:c3:39:10:14:81:ad:
47:b7:47:aa:d3:67:a2:51:c2:4b:22:f0:e4:40:3e:aa:c6:94:
d5:d5:4a:6f:8e:27:d1:ee:00:97:56:00:c9:45:cc:35:0c:54:
8e:f0:71:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org