Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/Rxr8lLp9Sr5qEQd_vBOyEp4JMP0.roa
File: Rxr8lLp9Sr5qEQd_vBOyEp4JMP0.roa (raw, json)
Hash identifier: EY/Ibc/7+uqmsCtAZiHA9w07vSEsvSGBpK3vnvC2PsI=
Subject key identifier: 47:1A:FC:94:BA:7D:4A:BE:6A:11:07:7F:BC:13:B2:12:9E:09:30:FD
Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Certificate serial: F0
Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/Rxr8lLp9Sr5qEQd_vBOyEp4JMP0.roa
Signing time: Sat 12 Nov 2022 00:45:17 +0000
ROA not before: Sat 12 Nov 2022 00:45:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38042
IP address blocks: 2400:37a0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Validity
Not Before: Nov 12 00:45:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=471AFC94BA7D4ABE6A11077FBC13B2129E0930FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9b:18:f7:f2:33:ea:d2:26:a8:8f:df:68:53:
89:c3:15:45:3b:98:e2:8b:a7:03:31:0f:da:c6:d2:
83:73:6c:f6:f8:02:86:a9:06:1b:36:2f:1f:81:46:
07:ee:26:62:c3:39:41:55:9b:32:ad:56:a0:f0:11:
e6:ae:0d:a3:ad:f1:fb:a9:65:5d:ba:f1:d6:57:cf:
9c:8d:51:b2:d5:e3:43:3c:e0:2e:eb:f9:31:69:6d:
36:c0:78:ed:72:5d:8e:ed:8c:9d:22:0d:f2:ce:7b:
99:5e:de:ec:c6:bc:a0:9b:6b:dd:71:57:e5:1d:ba:
cd:c8:26:b6:85:16:0c:8f:c4:a7:a6:81:e8:64:fc:
b8:b4:20:42:ca:6b:f0:c5:6a:b5:2f:12:db:2b:b9:
e5:86:16:cc:36:f3:ce:a0:dd:82:cd:40:65:7e:51:
14:07:f7:90:31:22:77:64:b1:6c:bd:20:9e:14:e5:
6f:12:5b:31:5f:45:11:76:e8:3a:0d:19:eb:93:88:
4f:69:86:30:e2:c9:b6:07:9e:f0:2d:ca:b4:53:e2:
ae:c8:3e:a3:17:bd:6c:81:f8:59:5c:fd:6b:60:2a:
0d:d3:ca:57:3f:0f:aa:c7:98:a8:ea:ae:39:4d:c0:
a7:f2:16:32:b4:c4:5e:7a:82:a7:fb:a9:ae:05:05:
55:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1A:FC:94:BA:7D:4A:BE:6A:11:07:7F:BC:13:B2:12:9E:09:30:FD
X509v3 Authority Key Identifier:
keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/Rxr8lLp9Sr5qEQd_vBOyEp4JMP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:37a0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:fd:4c:e7:69:7c:17:6e:e0:34:87:e9:bb:4e:29:a1:21:8a:
1f:1a:20:98:de:0d:22:30:e2:1b:f7:18:51:37:70:10:66:08:
bd:1d:cb:70:2f:37:9c:09:d8:d9:71:cf:4e:f7:db:37:d4:6c:
14:16:74:4b:de:e8:9b:d6:c5:48:06:05:f4:23:17:29:32:04:
e6:e1:ed:1a:d7:09:47:f3:15:61:6b:d7:eb:28:52:cd:ac:34:
b7:26:b5:66:6e:1a:97:8c:ca:9d:2b:04:d1:4d:c4:ce:bd:38:
63:ea:60:f4:9d:09:83:9c:7b:46:fa:e0:2d:57:30:0c:0f:bc:
98:4c:5e:48:98:04:51:09:5f:6f:0d:69:a5:73:da:d3:b6:c8:
71:c4:61:95:c9:66:68:41:dc:1b:ef:e9:1a:07:fe:b0:20:37:
04:25:f6:33:b3:64:03:bd:65:49:56:09:f0:dd:a1:fb:a6:08:
1a:96:22:f0:57:b2:d0:45:a0:07:27:f7:2e:df:ae:c8:4c:b3:
15:60:d7:6c:41:4b:cb:a0:ec:f9:fd:1c:31:f7:29:f0:eb:86:
b4:83:ec:82:e9:51:73:a0:97:c3:e4:24:e1:85:fa:a6:75:25:
c0:9c:8b:ab:77:25:54:7a:dd:b2:09:77:ce:f8:65:21:98:1f:
f0:b1:df:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org