Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/6gnPJEVuEzEy81B9m3TGRQvcWcg.roa
File: 6gnPJEVuEzEy81B9m3TGRQvcWcg.roa (raw, json)
Hash identifier: IxpK/ocV8qyqW6NebNMyBaYbHjwfHnqh2dEslcPvrus=
Subject key identifier: EA:09:CF:24:45:6E:13:31:32:F3:50:7D:9B:74:C6:45:0B:DC:59:C8
Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Certificate serial: 0CDC
Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/6gnPJEVuEzEy81B9m3TGRQvcWcg.roa
Signing time: Wed 29 Sep 2021 02:37:27 +0000
ROA not before: Wed 29 Sep 2021 02:37:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131645
IP address blocks: 2404:63c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3292 (0xcdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Validity
Not Before: Sep 29 02:37:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EA09CF24456E133132F3507D9B74C6450BDC59C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:bc:a0:19:ff:e1:3d:19:b8:fa:a2:54:d8:fd:
dd:d6:df:c1:94:e1:5c:9a:e6:76:fb:c7:7d:c1:0c:
91:d3:66:6c:c1:3b:af:de:cd:b1:e4:76:5e:ad:b7:
18:4a:ce:82:d9:b6:5b:da:c7:74:71:7a:6b:fb:d8:
d1:ca:be:26:38:6c:9a:44:0c:fd:5c:d4:5b:4b:46:
16:ea:bb:50:ca:cd:41:00:15:bb:61:75:01:4c:da:
a5:ea:60:46:ec:c4:e6:27:3a:25:6c:6a:31:e3:5e:
17:f7:95:28:5f:e6:2c:4c:a8:2d:7f:1c:ed:2c:5b:
2d:22:06:ea:5d:fa:8f:00:a8:4f:5e:e0:50:6a:47:
f1:14:ae:f4:c0:06:f3:a7:3e:f5:6e:43:65:8c:5e:
cb:da:a7:4a:c9:ec:87:1c:9b:b3:e5:0f:94:97:d3:
bc:56:28:f4:f7:38:e0:05:b9:4e:48:f0:29:1e:82:
2b:d0:0c:04:76:cc:28:47:e6:3a:be:49:6e:20:b7:
9a:90:54:4c:cf:47:bf:ea:6f:f4:c4:0c:e6:4e:1b:
71:b6:9f:7d:bd:81:c4:34:29:69:c9:62:cf:6a:25:
c2:e6:c8:06:10:17:eb:a3:50:45:e1:78:3e:15:d7:
b4:05:f4:3d:31:1f:7f:1e:95:ae:4f:2f:c3:03:e2:
35:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:09:CF:24:45:6E:13:31:32:F3:50:7D:9B:74:C6:45:0B:DC:59:C8
X509v3 Authority Key Identifier:
keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/6gnPJEVuEzEy81B9m3TGRQvcWcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:63c0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:8e:63:72:2b:c9:b8:91:ef:bf:bf:eb:fd:5a:6a:75:15:a7:
90:50:09:a9:55:36:bb:e4:93:a5:33:34:2e:8e:e9:de:4e:87:
3a:03:61:54:69:6e:26:90:41:83:49:5c:c6:77:3b:83:7d:54:
2e:49:28:50:bf:26:85:27:7d:ff:9e:55:05:26:77:12:0a:78:
d9:22:c6:7a:7a:61:ed:e5:67:44:69:98:b7:7a:a2:c5:c5:a3:
b7:ac:e7:e9:8b:f0:cb:04:b9:70:fc:b2:47:d2:0e:07:d3:dd:
53:22:0d:a0:fa:1d:a6:b1:45:b7:20:cf:e3:6a:1a:88:93:6e:
ac:ec:53:b3:c5:63:bb:0b:a0:9f:f1:28:37:89:f4:61:35:17:
eb:a6:12:0d:78:36:5d:5a:13:5c:00:98:b1:b9:2a:a9:44:b5:
10:15:97:1c:e1:ab:23:eb:d1:92:f2:e8:46:a2:e5:bb:c4:38:
ea:51:f6:de:51:bb:6f:67:d3:66:a5:4c:ff:45:5e:a6:1e:26:
52:5c:86:6e:a2:7f:d4:bb:65:ee:a1:6d:89:26:35:66:44:f1:
96:5d:c1:8a:4b:32:97:d4:91:d7:fc:36:e1:24:99:2f:f1:14:
96:18:dc:26:34:d4:b7:41:ac:af:87:7b:b9:5a:d4:b8:0f:e5:
78:2c:19:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org