Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/yQjBWZRuABcfiQlYb3gsfjKymDc.roa
File: yQjBWZRuABcfiQlYb3gsfjKymDc.roa (raw, json)
Hash identifier: bAbP/QwH2Ypsv3jRzGrzyqUp5RCNGko1yWnVrTjfBEk=
Subject key identifier: C9:08:C1:59:94:6E:00:17:1F:89:09:58:6F:78:2C:7E:32:B2:98:37
Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435
Certificate serial: 0A3E
Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/yQjBWZRuABcfiQlYb3gsfjKymDc.roa
Signing time: Thu 15 Sep 2022 02:41:34 +0000
ROA not before: Thu 15 Sep 2022 02:41:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131587
IP address blocks: 2400:d580::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2622 (0xa3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435
Validity
Not Before: Sep 15 02:41:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C908C159946E00171F8909586F782C7E32B29837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:e7:a8:f2:86:e2:a9:5b:75:f5:b6:4b:03:
d5:eb:1d:b7:24:87:de:a6:8f:40:3a:d7:5d:d3:96:
10:7b:84:f7:cd:78:bf:94:81:65:3c:4e:4f:fa:09:
fa:66:ab:ad:47:d8:b5:b6:f2:40:bd:78:af:db:c7:
ed:fc:66:b4:53:fe:09:57:70:68:31:9e:5f:46:4a:
66:88:e4:f1:a7:ec:33:a3:d9:aa:fa:22:e6:ff:36:
19:2a:36:b3:fd:98:b6:7e:92:0b:5c:e8:f7:42:cf:
68:84:be:08:a4:56:9d:62:4b:98:08:36:00:ae:4d:
85:71:ad:6f:d6:c4:0d:c6:1b:cd:50:d5:23:e9:c7:
7d:e3:e5:8f:8b:88:4b:c2:8e:a6:33:9c:53:4a:49:
a1:d4:1f:cb:b3:bb:19:78:85:1c:5c:d6:18:c8:c8:
be:71:b3:85:7e:4a:5b:f2:54:15:96:12:14:11:b6:
d3:45:dd:0c:2e:90:f4:2f:14:f9:ec:67:8d:18:c8:
e3:61:0c:99:37:93:bb:46:14:04:0b:fe:bb:8c:54:
3a:a7:58:67:18:1c:8a:5b:5c:6b:05:27:82:2e:94:
a0:78:c0:c6:9a:16:ec:cf:13:cb:e6:ca:23:f1:2b:
a5:71:ac:30:bb:6b:e8:dd:17:1d:a1:e6:fe:36:c1:
ae:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:08:C1:59:94:6E:00:17:1F:89:09:58:6F:78:2C:7E:32:B2:98:37
X509v3 Authority Key Identifier:
keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/yQjBWZRuABcfiQlYb3gsfjKymDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:d580::/32
Signature Algorithm: sha256WithRSAEncryption
88:ef:69:3d:34:66:92:78:c3:f6:35:7d:36:c2:4f:5f:30:74:
db:36:d8:de:9b:1a:83:5e:dd:96:ef:91:a7:ef:39:c9:b1:da:
2e:3e:22:f5:9a:83:38:8d:05:17:80:81:07:a8:83:8e:ff:37:
78:da:3f:72:de:17:75:49:62:d2:8a:ea:65:9f:31:06:0a:17:
f3:b4:74:47:7c:1e:1e:36:e1:63:16:a0:7d:57:e4:e1:ce:26:
0c:20:dd:50:60:b4:02:cf:93:a9:7e:b9:05:46:ba:86:a0:7c:
c1:e6:19:e1:47:b6:0d:d4:d3:17:02:14:29:af:5b:81:25:a9:
f4:5e:3e:31:66:48:5e:c0:8a:84:62:ff:5c:1e:ef:ea:6d:9f:
82:be:39:24:6d:b9:b5:95:6f:8b:91:14:be:f1:94:19:3e:e9:
8c:84:ea:19:7b:2a:7f:da:41:79:b9:29:ef:aa:52:b8:c4:3d:
cb:6a:fe:89:8c:11:5e:6d:8a:95:87:14:f5:29:9e:da:8f:fb:
9e:df:52:06:7e:12:98:a0:b3:3a:a3:4b:79:72:f0:2a:ae:70:
e1:dd:03:39:25:08:d2:1f:45:17:e1:43:05:71:8c:44:0c:da:
75:cb:39:79:1e:78:fa:90:01:f4:6f:78:f8:a1:50:fd:78:41:
85:45:e9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org