Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LY596xRtIIfWJM96bucnJJI2tUQ.roa
File: LY596xRtIIfWJM96bucnJJI2tUQ.roa (raw, json)
Hash identifier: ihE8+WvSCw3PKqxmBprlYJxPC2u7DJcyLfvMCKrr+6A=
Subject key identifier: 2D:8E:7D:EB:14:6D:20:87:D6:24:CF:7A:6E:E7:27:24:92:36:B5:44
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 10B4
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LY596xRtIIfWJM96bucnJJI2tUQ.roa
Signing time: Mon 19 Feb 2024 12:50:31 +0000
ROA not before: Mon 19 Feb 2024 12:50:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131633
IP address blocks: 2404:2a40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4276 (0x10b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Feb 19 12:50:31 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2D8E7DEB146D2087D624CF7A6EE727249236B544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d0:f7:7d:2f:11:94:b9:5e:be:0d:7e:44:14:
6d:43:bf:2b:3a:58:c5:b1:20:2c:1c:53:88:ce:40:
16:ab:94:99:a5:65:24:b1:c1:12:7a:57:e3:92:61:
66:3b:41:69:b7:e5:c7:1d:92:c8:28:bd:dc:3e:75:
62:d6:39:c2:e3:87:f8:43:1c:39:95:00:ff:c5:c9:
b2:d9:5e:7c:ea:9b:af:fd:4e:ad:8f:74:9e:1e:cf:
97:4e:40:61:cf:76:36:0f:fb:79:4a:a2:15:4f:94:
88:96:2c:45:f3:aa:6d:7f:c5:05:b3:0a:52:55:70:
cb:85:81:c8:c7:f2:3b:31:b4:27:58:52:96:91:7b:
7d:cf:e8:7a:d6:ba:f4:bf:4c:ef:79:e5:6e:9e:9e:
f7:f9:2a:1d:8b:53:b9:36:f2:f5:24:e4:3c:b9:15:
95:f2:12:95:04:9e:34:57:63:f9:ca:5e:a1:1d:2f:
4b:e0:1a:4b:4a:75:fa:e0:21:0c:6c:6a:7c:13:b1:
0b:5d:ea:21:0a:d0:a1:28:c5:20:b3:61:8f:13:34:
b1:90:5a:85:0a:37:0d:fa:23:16:65:0e:da:da:e3:
2c:22:f0:08:47:81:38:36:01:57:5d:37:6f:01:7c:
0a:17:2b:a9:f4:52:5e:f8:27:15:51:3d:9e:4c:b1:
65:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8E:7D:EB:14:6D:20:87:D6:24:CF:7A:6E:E7:27:24:92:36:B5:44
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LY596xRtIIfWJM96bucnJJI2tUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:2a40::/32
Signature Algorithm: sha256WithRSAEncryption
45:32:d0:cc:c7:86:28:be:0c:73:34:90:7a:f8:31:ba:9b:03:
af:a9:95:27:e3:2e:2c:87:50:77:96:ad:b3:50:af:a1:ba:38:
bf:80:66:9f:49:20:7d:e5:9e:71:da:31:e9:b8:5d:63:63:d4:
09:fd:7c:48:07:8c:e4:34:31:43:07:ad:5f:25:d5:58:0d:01:
61:9a:ac:df:07:8d:58:1b:76:0a:c0:b3:b6:e5:a7:25:22:20:
a7:21:ef:91:fb:a5:72:70:45:72:d4:dc:85:74:11:f3:9c:35:
c7:f0:a7:5c:1b:ea:43:60:61:e3:e2:6d:77:b9:17:dc:05:f9:
76:b9:66:63:0f:2a:77:67:5e:b5:8c:66:16:ae:9c:24:7a:66:
04:8d:83:4d:2a:b0:80:b8:05:92:18:78:fa:63:d2:69:f2:a1:
98:00:9e:c1:c9:7b:5e:bc:ed:20:c3:72:dd:4b:fc:8a:c3:28:
43:62:10:8a:f5:d9:0a:74:bd:c8:f9:7f:85:18:de:bf:b3:7a:
74:f9:14:b7:ac:6e:98:68:67:76:a6:0a:31:5b:ce:9d:b1:3b:
9a:ec:9c:40:37:f7:ae:7a:7a:ac:78:62:0e:c2:f7:0b:eb:15:
f1:8d:71:44:27:cf:14:e3:80:c5:a1:6d:29:e7:aa:a2:73:6d:
8a:6c:8e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:49 2025 by rpki-client