Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/SEDrj4pZ2UNHtR5SfvGQgkhWyNA.roa
File: SEDrj4pZ2UNHtR5SfvGQgkhWyNA.roa (raw, json)
Hash identifier: 8us2UgfaOuQ1nG6KILGz/xAt/FJQPAQkV5gdRZxcUYs=
Subject key identifier: 48:40:EB:8F:8A:59:D9:43:47:B5:1E:52:7E:F1:90:82:48:56:C8:D0
Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Certificate serial: 0BC4
Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SEDrj4pZ2UNHtR5SfvGQgkhWyNA.roa
Signing time: Thu 15 Sep 2022 02:38:39 +0000
ROA not before: Thu 15 Sep 2022 02:38:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131645
IP address blocks: 2405:1540::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5
Validity
Not Before: Sep 15 02:38:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4840EB8F8A59D94347B51E527EF190824856C8D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f1:96:79:bd:0c:43:da:22:f5:e4:3a:9d:82:
d7:6e:50:b3:d9:9f:26:84:89:f9:c5:04:4c:8e:3b:
a4:0a:5c:74:78:c3:fa:09:76:ee:d3:da:df:9a:14:
7a:1c:29:5c:1d:bf:b7:86:6c:42:5f:bd:e1:1a:00:
4f:72:98:f3:d1:ae:96:21:1f:61:d6:b7:25:58:cb:
eb:f7:31:ed:fc:43:3b:e1:72:42:44:c2:69:7f:25:
d3:84:86:3f:8a:db:1e:77:e9:a5:ff:34:73:8b:d9:
55:47:4e:b4:51:16:fc:d9:50:5f:7c:38:77:c9:7d:
96:36:d7:f6:40:ce:7e:b0:88:24:5c:6f:70:37:a7:
66:3a:0c:95:78:1b:51:94:a1:e1:16:d2:1f:47:8f:
a9:ab:4a:4e:00:60:19:8e:de:52:3c:a1:d2:8d:43:
7d:82:ba:26:b2:3f:55:7c:f1:78:5c:d0:ee:4d:fb:
2c:5f:05:a6:e9:1d:ce:b6:ad:50:7c:2f:6f:1f:fb:
0e:f0:5e:e0:d1:01:23:13:ee:77:61:3f:76:2f:f9:
ae:12:b4:40:46:da:d6:48:d8:6d:54:6a:dd:82:09:
59:0c:f3:90:dd:f8:db:b2:47:9b:2c:b3:37:44:f2:
90:d2:0c:f2:76:9e:52:2b:83:59:1d:73:cb:cf:85:
6f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:40:EB:8F:8A:59:D9:43:47:B5:1E:52:7E:F1:90:82:48:56:C8:D0
X509v3 Authority Key Identifier:
keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SEDrj4pZ2UNHtR5SfvGQgkhWyNA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:1540::/32
Signature Algorithm: sha256WithRSAEncryption
c3:fd:24:e7:72:b1:18:4e:12:3c:7d:ca:39:b2:96:00:13:f8:
fa:86:8a:42:ff:05:db:d4:36:d6:0d:75:50:6e:7d:1e:41:cb:
58:4e:cd:ec:35:a6:f1:d4:e8:66:f6:1f:33:53:50:1e:c2:4d:
eb:4b:5e:13:3f:dd:55:a0:6d:70:22:69:67:c3:24:80:31:29:
2f:c8:f0:72:1f:34:c8:82:96:26:55:19:ea:e7:98:2e:02:94:
48:e2:e6:b4:39:b2:f1:30:38:d9:20:84:6b:c2:d0:3f:70:a0:
64:ae:8f:1a:35:3b:20:e9:37:fc:09:9f:0c:09:7e:fd:78:86:
32:27:f6:23:a0:c2:95:8f:45:a8:59:2f:13:40:05:77:8e:ac:
43:27:16:c3:f5:9e:0d:89:ec:44:11:ae:e5:77:44:a4:6f:8f:
c9:56:8d:1c:69:f0:1b:e6:d5:fc:7a:72:6c:03:b8:67:54:0b:
cc:70:4e:ec:16:06:e9:a9:f1:33:a9:a0:d5:bc:b6:7a:2f:19:
54:a0:92:51:81:ca:48:d6:73:58:8d:3d:38:60:62:de:63:9f:
25:73:ca:07:64:e7:36:31:06:8b:c2:6b:7b:4d:90:01:05:2a:
3d:e9:a7:74:8d:6a:8d:4a:cf:c5:12:a2:ff:94:1a:95:06:42:
80:3d:ab:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org