Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/8XGjpuXyAFY5BQugVR1FwI6hBBs.roa
File: 8XGjpuXyAFY5BQugVR1FwI6hBBs.roa (raw, json)
Hash identifier: XOuXNNDtU5LpdyeI+Wt2SGF3TQUDqApDkeXqO5Gd/7M=
Subject key identifier: F1:71:A3:A6:E5:F2:00:56:39:05:0B:A0:55:1D:45:C0:8E:A1:04:1B
Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Certificate serial: 022E
Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/8XGjpuXyAFY5BQugVR1FwI6hBBs.roa
Signing time: Wed 29 Sep 2021 02:40:59 +0000
ROA not before: Wed 29 Sep 2021 02:40:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131674
IP address blocks: 2406:3a40::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 558 (0x22e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Validity
Not Before: Sep 29 02:40:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F171A3A6E5F2005639050BA0551D45C08EA1041B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8d:b4:d2:0c:45:23:37:74:6f:b3:1e:f4:b0:
85:c9:9d:af:83:cc:8f:e7:f2:c0:52:c7:a9:9e:bd:
f9:02:c0:aa:77:89:23:71:e5:a2:9f:9a:28:75:2d:
4f:23:e3:8b:62:61:26:2d:76:bd:7c:88:ce:2b:81:
ae:07:66:42:cc:77:c8:22:66:d5:42:da:f8:9d:42:
d4:01:e5:f7:36:69:6f:c8:09:fc:97:02:cc:63:85:
f2:3e:90:76:46:c1:ba:d6:f9:96:fc:e7:eb:01:86:
72:80:8d:a2:44:4d:7c:f0:49:d2:17:a9:ec:ff:3b:
20:e0:cc:82:c2:a2:d7:53:c8:2e:d9:3c:53:64:9d:
ea:50:40:f2:1a:46:c4:05:f0:16:c1:18:19:e9:ef:
dc:5c:c9:83:6b:fc:09:7d:39:a8:a2:f4:85:11:53:
ca:51:20:85:ea:ee:e2:f4:7f:7e:a4:c6:21:63:a3:
72:39:f4:78:cb:e1:e2:a8:96:9e:67:22:5f:b6:8c:
2b:11:b1:9c:c5:07:99:ff:eb:47:7c:b2:96:84:28:
76:26:81:89:6a:75:a7:f7:9b:3a:e4:f0:12:d8:ab:
32:b9:4d:49:4d:8f:93:ed:aa:50:55:a5:f2:bb:05:
d9:9a:8e:cb:a8:01:27:bc:3a:af:83:7e:30:10:6d:
8e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:71:A3:A6:E5:F2:00:56:39:05:0B:A0:55:1D:45:C0:8E:A1:04:1B
X509v3 Authority Key Identifier:
keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/8XGjpuXyAFY5BQugVR1FwI6hBBs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3a40::/32
Signature Algorithm: sha256WithRSAEncryption
1b:49:6d:95:09:dd:03:3b:8f:3d:53:52:93:bd:b5:16:79:d7:
19:af:6b:e1:39:4a:e5:0e:9c:e9:9c:ed:72:b8:45:29:b4:46:
0c:82:9a:8a:3f:ce:a6:b0:8a:cd:6f:fb:1a:d7:bc:6c:f4:fc:
42:5f:45:92:56:31:d5:dd:1d:8b:12:f7:ea:58:51:cf:24:7c:
20:46:5b:45:13:3b:20:46:c3:f4:a6:29:19:6e:7d:15:47:6b:
01:19:95:0e:cb:da:f5:76:a2:7c:3b:ab:bd:e0:aa:4d:f7:b6:
a3:4c:f2:43:36:65:29:e8:0a:cd:3c:3a:e5:51:b2:99:15:e7:
2b:65:e5:90:08:2d:14:ce:93:47:87:d5:8e:8b:a5:8f:7a:2b:
e4:9b:99:c7:a9:35:0a:6d:1a:df:e4:20:46:9a:2e:e1:b3:10:
3c:d2:26:7c:08:3f:1d:df:b2:23:77:01:2f:94:09:9a:29:71:
f5:27:fd:e8:ca:df:0a:db:15:60:b7:d0:65:4e:36:4c:64:d7:
02:d8:2c:95:e7:f6:cb:95:fc:f9:3e:8e:ee:5f:2d:87:ee:5c:
09:96:97:24:1f:46:c2:14:79:b2:8a:bd:f2:aa:e4:06:48:b5:
f0:5c:ee:2a:97:ab:a3:a8:65:0f:4a:ce:d8:92:b3:29:92:4e:
ea:7b:e5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org