Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/d24FroVjdkbAbllOKLzT6huh6Ow.roa
File: d24FroVjdkbAbllOKLzT6huh6Ow.roa (raw, json)
Hash identifier: Cq0uR7u9EXrmEPKdlYR6owozBPHndcFm/CvgJvKDeyM=
Subject key identifier: 77:6E:05:AE:85:63:76:46:C0:6E:59:4E:28:BC:D3:EA:1B:A1:E8:EC
Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435
Certificate serial: 0777
Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/d24FroVjdkbAbllOKLzT6huh6Ow.roa
Signing time: Tue 29 Sep 2020 10:04:55 +0000
ROA not before: Tue 29 Sep 2020 10:04:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131587
IP address blocks: 2400:d580::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1911 (0x777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435
Validity
Not Before: Sep 29 10:04:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=776E05AE85637646C06E594E28BCD3EA1BA1E8EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:36:7d:a6:22:9b:2e:96:05:a4:80:80:9b:73:
cb:cf:c3:04:d5:91:8d:bc:b9:c7:4d:12:0b:f2:65:
c6:fc:ad:02:8d:b3:cd:a4:78:d1:50:e2:7c:ab:43:
aa:26:ed:8c:17:c6:8e:f0:a2:42:25:69:bf:f5:6b:
f0:f1:5d:56:1e:31:f9:a7:db:4b:94:0f:56:a6:ac:
d9:04:8c:eb:5c:fc:af:6a:c4:c1:36:6a:3c:e8:e2:
13:8c:4c:28:09:9d:a2:ab:a9:33:af:3e:3d:d7:71:
fc:7e:c7:4e:d2:e8:31:e3:ba:1e:9e:25:5d:b0:4b:
e4:d8:f4:3b:50:6f:61:68:4e:c9:06:3b:7b:8b:e3:
ea:c6:2f:aa:f0:18:8f:8b:a4:5c:d0:59:d6:7a:b1:
63:44:e7:fc:bf:29:42:fb:19:e4:ec:b7:68:82:93:
eb:ed:0f:f9:93:07:9f:c9:a5:4b:c0:a1:26:58:51:
ad:e5:b2:4b:c1:c7:12:a0:1c:46:36:e5:b0:14:b0:
ca:5b:0d:72:e3:5c:86:61:ff:bf:33:a4:87:b3:ea:
8d:3b:8d:f4:9c:8e:57:77:e3:0d:7f:0e:c0:0c:1b:
b3:73:d8:e1:bc:98:f9:3e:c4:d7:2c:6b:d2:08:cb:
b9:7e:d5:56:f1:e3:0b:bc:d3:b3:20:37:6d:d3:d0:
f6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6E:05:AE:85:63:76:46:C0:6E:59:4E:28:BC:D3:EA:1B:A1:E8:EC
X509v3 Authority Key Identifier:
keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/d24FroVjdkbAbllOKLzT6huh6Ow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:d580::/32
Signature Algorithm: sha256WithRSAEncryption
92:e6:0f:74:f3:53:9f:d9:7f:b7:e2:cb:19:2b:25:82:81:32:
58:61:2f:24:5c:4e:f4:14:22:23:d6:a7:a2:c4:4e:e8:3d:85:
94:5e:0e:1d:34:71:9c:44:21:03:53:61:df:82:c1:7d:1d:24:
19:a7:fd:11:0e:f2:64:03:a0:06:ee:d0:a1:d8:9c:97:c9:4b:
75:e9:c5:e2:6f:75:7f:e2:81:62:8a:04:03:4d:5d:17:86:ef:
a4:b3:a3:ec:20:78:85:87:73:3d:c6:4f:ea:6d:17:2e:18:86:
7d:9c:19:06:d3:30:4b:37:d2:f5:2e:64:f0:40:d7:72:dc:c4:
86:ea:2e:91:5d:f7:ff:27:af:1f:08:97:36:52:7b:0f:4a:4e:
bf:bf:4e:b7:8c:49:50:b0:21:16:91:55:bb:e6:3a:53:ac:c1:
03:77:ec:01:82:41:af:40:02:eb:ce:5a:c6:62:2f:66:d4:14:
3f:b4:0e:0b:b0:62:f0:38:a7:db:e4:b1:3c:f0:ee:c6:d6:22:
38:8c:72:30:be:02:1a:10:0f:79:f9:91:6a:36:73:f4:32:be:
af:e9:ea:59:c1:30:b8:83:2a:bf:73:24:e2:92:ce:c6:8d:c5:
43:9c:79:2a:37:34:96:23:da:05:cd:9c:4d:e0:03:aa:49:3a:
df:e3:6c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org