Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/gi314vRjSyNS-F1di_4eB2XAftw.roa
File: gi314vRjSyNS-F1di_4eB2XAftw.roa (raw, json)
Hash identifier: S88ItoLfFVqaKIGu7LY9O77MRLrchGyPRJ8vG6bETmo=
Subject key identifier: 82:2D:F5:E2:F4:63:4B:23:52:F8:5D:5D:8B:FE:1E:07:65:C0:7E:DC
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 03EB
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/gi314vRjSyNS-F1di_4eB2XAftw.roa
Signing time: Wed 29 Sep 2021 02:37:46 +0000
ROA not before: Wed 29 Sep 2021 02:37:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24171
IP address blocks: 2406:3540:fff4::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1003 (0x3eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 29 02:37:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=822DF5E2F4634B2352F85D5D8BFE1E0765C07EDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d6:6a:0b:29:81:a5:7e:57:78:71:b4:b5:f2:
af:e9:87:ac:78:e4:e1:c4:86:1a:bb:2c:d1:93:9e:
39:05:e2:7d:cd:87:46:ac:db:84:04:6f:66:55:8b:
6a:85:f4:8f:d3:55:4d:84:0e:97:f9:4f:26:2d:5e:
c6:e6:09:4f:83:46:eb:ab:c3:da:3a:a2:0c:f4:4a:
a7:91:82:1d:03:c8:2b:68:b9:03:c4:f8:60:5c:9b:
a5:de:82:08:79:3c:16:a4:27:6a:df:36:04:a7:63:
ec:9a:13:22:f6:39:53:4a:86:bc:f2:37:4b:d7:0c:
2d:7e:d6:2e:61:08:2a:f5:f2:58:56:9d:f4:f4:a4:
ae:3a:27:54:a1:d7:c1:59:5a:a8:75:16:db:86:78:
ef:aa:2c:80:0c:e3:25:43:b4:58:99:20:4f:d9:ec:
da:9c:14:1f:fd:7e:52:8c:0e:50:6a:0d:52:ec:41:
6e:00:a8:86:26:a4:71:38:8c:c5:d8:95:c1:be:44:
fe:2f:1d:c2:7c:c1:c5:e6:e8:e5:64:fe:2c:5e:77:
cc:2d:b9:ef:9c:a9:88:88:dd:0c:6b:4d:46:dd:19:
e0:19:3b:70:01:e6:4a:1e:67:59:c3:71:2f:08:cc:
9c:f6:2e:8c:68:d7:33:cc:27:1e:6a:f9:17:d2:5c:
79:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2D:F5:E2:F4:63:4B:23:52:F8:5D:5D:8B:FE:1E:07:65:C0:7E:DC
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/gi314vRjSyNS-F1di_4eB2XAftw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3540:fff4::/46
Signature Algorithm: sha256WithRSAEncryption
b2:17:ef:4f:7d:52:f3:7a:0a:c4:4c:27:1d:27:1c:bb:37:92:
80:a9:d0:9b:da:5f:3f:73:0a:62:6d:d1:60:1f:ab:4a:2d:4f:
85:0b:a2:ce:de:e4:48:1c:c5:63:cf:d4:20:e5:0d:17:33:f9:
ed:47:28:88:88:d7:07:f4:48:55:94:8b:c1:b6:34:2a:e4:7b:
8b:81:4b:80:4a:7c:f0:ea:ca:a5:22:5c:8b:8f:35:78:a7:8d:
02:b0:f5:5d:9c:5b:4e:82:78:1e:17:b0:d1:47:8f:f3:77:66:
a8:e8:b8:fa:2a:d2:b1:de:76:a5:02:f9:3b:79:db:72:02:4f:
cf:20:f5:23:e9:5c:0b:95:1e:f9:0a:21:dd:c0:74:39:94:f6:
f1:95:6f:0a:84:e7:8e:7c:7c:3b:2b:23:90:63:cc:7e:fa:d3:
32:12:fe:b6:d9:78:c1:9b:26:0c:48:82:49:0f:8b:08:5f:1f:
9b:35:2e:7b:9d:35:eb:38:60:3b:31:bd:37:f2:c7:d7:53:0f:
c2:ba:18:1a:1f:1e:c6:e7:03:ca:d3:5d:a1:d4:d2:ad:da:09:
69:ea:8f:de:97:64:fc:5f:1d:62:ce:7c:39:3e:a1:ce:c0:90:
80:4d:59:20:74:d3:15:7c:1a:2c:99:c8:76:ad:23:45:39:db:
35:bd:49:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org