Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKSMF/PQw1e7OoV1YJk2lu1Q69dD0LPd4.roa
File: PQw1e7OoV1YJk2lu1Q69dD0LPd4.roa (raw, json)
Hash identifier: LDQwDXkZ35cj6CRYNKeJSExqMHpZAlGzkKkXp0ooieE=
Subject key identifier: 3D:0C:35:7B:B3:A8:57:56:09:93:69:6E:D5:0E:BD:74:3D:0B:3D:DE
Certificate issuer: /CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Certificate serial: 087E
Authority key identifier: FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/PQw1e7OoV1YJk2lu1Q69dD0LPd4.roa
Signing time: Tue 29 Sep 2020 10:04:45 +0000
ROA not before: Tue 29 Sep 2020 10:04:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131645
IP address blocks: 2405:29c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Validity
Not Before: Sep 29 10:04:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3D0C357BB3A857560993696ED50EBD743D0B3DDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:71:92:05:ab:f8:4d:eb:e6:24:94:5a:c1:
cf:cf:ea:0e:f2:37:3b:e8:f8:b1:01:8e:03:79:21:
42:2f:c5:03:d7:e9:30:0b:31:2d:92:03:c1:cf:a6:
4c:ba:67:49:7c:e5:09:c3:28:cb:23:15:01:e2:18:
2d:53:c8:c6:09:72:40:ce:1e:2b:77:67:6f:10:16:
38:de:e6:dc:9e:c4:64:8b:46:c7:d0:64:46:e5:5c:
2b:8c:67:14:f4:e2:d7:57:7d:1d:54:f6:ed:71:dc:
af:d9:2f:34:3e:23:0e:c0:cf:90:77:44:5b:ea:2a:
fc:fa:92:c4:80:5b:8b:6f:1c:cb:cd:79:b5:2f:02:
1f:0c:ff:35:a7:3b:1a:b1:c3:ec:06:5c:0b:ad:ba:
60:7f:6f:1d:98:c6:15:26:d1:ea:36:cf:a2:2b:ef:
08:15:99:64:18:88:3f:4d:64:c7:67:2d:a6:36:c1:
b9:e0:81:0d:5f:46:bc:b9:c8:ec:15:d1:92:2c:f6:
28:00:d7:fa:1d:67:c4:7f:fc:3b:be:b5:bb:22:d2:
fe:b0:79:03:56:27:bd:47:b4:bb:27:e4:37:35:0d:
b5:c6:17:16:48:82:b6:10:03:b2:5a:38:2f:8d:9f:
f7:00:b4:44:ee:81:cf:37:35:cf:4c:2c:6c:be:d8:
a2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0C:35:7B:B3:A8:57:56:09:93:69:6E:D5:0E:BD:74:3D:0B:3D:DE
X509v3 Authority Key Identifier:
keyid:FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/-8-hiArIbOT7mfl06ZU_NZfc3go.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/PQw1e7OoV1YJk2lu1Q69dD0LPd4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:29c0::/32
Signature Algorithm: sha256WithRSAEncryption
07:b4:85:ae:97:e3:05:79:4f:c9:05:36:23:8d:8d:33:7e:49:
48:9d:7a:49:30:3f:4f:88:e6:f5:ee:37:79:6a:de:d4:26:8d:
3f:6d:8c:e8:47:2b:e4:c6:11:71:6d:06:5e:34:5a:48:34:25:
81:07:38:3d:8f:eb:56:49:5b:de:66:eb:00:3e:fe:7e:49:48:
fe:f0:d8:b8:5e:04:2a:ad:13:7f:b1:96:db:a3:d6:db:ca:f0:
68:a0:6c:e2:39:43:01:55:ce:a7:8b:69:1a:0a:22:18:da:ee:
ac:e8:18:a1:7c:be:4a:65:ad:ed:8c:ac:bf:49:3d:d4:d1:7f:
fb:a2:aa:3b:e0:01:33:7a:97:d5:39:97:97:94:79:42:f1:d8:
8e:c3:56:31:ea:80:7b:89:1e:30:0b:fd:85:a8:dd:a3:8f:8f:
e2:75:ef:26:0d:1e:1f:68:02:87:99:9f:c1:5a:24:e9:34:68:
57:67:0d:84:84:75:1b:00:bf:17:8f:12:93:bb:74:12:ec:d9:
3e:16:46:b4:f5:14:2a:f0:02:ea:9f:6d:c1:67:61:d3:45:71:
c1:78:4c:b2:4a:f7:f3:19:be:5c:e6:2a:9d:8f:25:d5:66:c6:
d4:cc:3d:4c:55:c8:f1:43:89:3f:49:6c:80:b0:a0:32:4a:e0:
3a:86:db:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org