Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/ykMro8ARTJ8jQAuoEqvhvXrQrc4.roa
File: ykMro8ARTJ8jQAuoEqvhvXrQrc4.roa (raw, json)
Hash identifier: bY51Zq4WwiUvS7XP8FenQpzJp/RnXIWRHAZWAie9AOk=
Subject key identifier: CA:43:2B:A3:C0:11:4C:9F:23:40:0B:A8:12:AB:E1:BD:7A:D0:AD:CE
Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Certificate serial: 0BC7
Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/ykMro8ARTJ8jQAuoEqvhvXrQrc4.roa
Signing time: Thu 15 Sep 2022 02:38:28 +0000
ROA not before: Thu 15 Sep 2022 02:38:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131645
IP address blocks: 2405:14c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3015 (0xbc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Validity
Not Before: Sep 15 02:38:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CA432BA3C0114C9F23400BA812ABE1BD7AD0ADCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:31:c2:05:57:4b:f5:80:93:53:c4:5d:82:e4:
90:66:61:c9:38:b6:7b:80:52:65:b9:92:d2:8c:b0:
9a:90:59:81:df:38:c4:42:ec:32:fb:0d:8f:e1:9e:
2e:42:95:d0:40:eb:fd:ae:6d:cb:d1:da:16:63:51:
02:5e:4c:f0:13:7f:fa:93:2a:10:51:3d:b3:0f:e6:
61:40:29:d2:b7:1b:a6:87:8e:88:73:e2:7e:d6:c3:
8c:b4:d0:f7:ef:6a:c3:0c:32:ca:c0:0f:cf:19:a9:
99:17:2f:72:52:56:48:52:88:82:b5:af:f7:b4:5b:
34:ff:33:ce:37:6d:b0:f2:d6:8c:00:e7:58:e0:90:
69:b2:42:7b:0f:a2:4f:96:78:7c:9f:31:2c:69:99:
42:05:e4:11:be:80:5c:ce:79:d0:45:62:81:02:72:
24:67:d5:28:eb:6d:d6:d9:60:63:af:72:ee:10:51:
36:a4:d7:c5:e5:7b:41:2b:a6:b8:f2:b2:49:d3:e9:
53:ac:fa:fc:f0:a4:5d:49:3c:e1:22:46:dc:8c:af:
85:5d:7e:6e:df:0f:90:94:ac:7f:a7:d3:ce:fd:6d:
69:f0:38:73:3b:a3:a2:4f:7d:55:04:c6:c9:1b:ea:
bb:ab:b5:71:87:d1:8f:1c:22:f5:ac:6e:04:88:d2:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:43:2B:A3:C0:11:4C:9F:23:40:0B:A8:12:AB:E1:BD:7A:D0:AD:CE
X509v3 Authority Key Identifier:
keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/ykMro8ARTJ8jQAuoEqvhvXrQrc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:14c0::/32
Signature Algorithm: sha256WithRSAEncryption
13:53:a0:b2:cd:31:f6:17:dc:b3:38:7c:87:85:08:ef:77:4a:
82:95:02:64:14:00:e8:a8:27:36:88:af:57:95:f8:20:7e:3a:
33:c9:a7:30:01:95:ed:21:08:81:ac:bc:0c:9b:8b:96:12:8d:
cd:e4:68:27:6d:8a:dc:5f:30:05:1a:19:7a:32:4f:f8:ee:07:
51:2c:6f:bc:cb:84:97:57:9d:ca:5c:9f:b9:7d:5a:81:05:3e:
3d:e5:db:34:4f:db:a5:18:bc:1d:d6:62:4e:6f:f7:a6:a4:a7:
cd:f3:19:d2:26:71:43:61:40:9b:85:b3:24:b3:24:c3:5f:a2:
83:d6:87:c2:84:2a:63:59:16:75:e4:96:e2:e2:4f:27:e3:b1:
f3:8a:38:ea:59:88:fa:9e:a3:49:b2:c8:c4:c7:cc:2d:3f:fd:
f4:04:a7:ed:42:c5:ab:c2:1f:cc:61:50:a8:11:56:33:9f:17:
a3:e7:9a:42:da:3f:a4:e0:27:fa:a5:31:17:11:56:e0:f5:0b:
9c:d6:34:73:2d:93:69:3f:d7:ab:61:9e:e7:06:19:1b:8d:10:
96:61:23:80:af:b8:25:3a:3f:ca:79:c4:52:da:2c:5f:75:90:
35:0b:9d:8e:ec:f2:ce:59:25:82:53:fb:da:d1:d5:e9:bd:1a:
b7:d8:aa:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:18 2025 by rpki-client