Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/33OnVAkG1T9Yu469jbD2jz6KCN8.roa
File: 33OnVAkG1T9Yu469jbD2jz6KCN8.roa (raw, json)
Hash identifier: 85MZESGh59h2VKkFViOCHIj4oQD05YkoboKY2UOMfBo=
Subject key identifier: DF:73:A7:54:09:06:D5:3F:58:BB:8E:BD:8D:B0:F6:8F:3E:8A:08:DF
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0A3F
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/33OnVAkG1T9Yu469jbD2jz6KCN8.roa
Signing time: Thu 15 Sep 2022 02:50:57 +0000
ROA not before: Thu 15 Sep 2022 02:50:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18179
IP address blocks: 2404:db00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2623 (0xa3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 15 02:50:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF73A7540906D53F58BB8EBD8DB0F68F3E8A08DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fb:55:fb:ca:c5:a1:6e:d7:b3:7d:d9:d5:af:
21:e2:d4:df:4e:f2:82:bf:a8:8c:ee:f6:fc:72:cf:
43:82:29:25:6c:5b:99:60:c7:7c:50:6d:9e:08:28:
97:7c:26:0f:fa:36:e9:11:cd:fe:89:8e:65:31:f7:
1c:63:ee:2b:8b:91:6d:f8:40:52:85:0e:80:ec:df:
4b:d7:09:ea:67:16:06:7e:ac:de:a7:13:92:8a:ec:
a1:67:19:01:b1:a3:f2:d7:d2:d0:3e:bc:fc:9b:aa:
0f:46:1c:d4:53:f5:bd:ed:6a:15:ab:22:50:f6:4c:
e5:e9:34:51:c2:b8:fe:e6:dd:f3:08:e8:e4:63:fa:
13:97:40:9f:da:05:00:f2:de:68:b1:db:70:13:35:
d0:84:7a:cf:6d:23:a3:75:18:1a:46:66:30:03:38:
24:03:3e:06:0d:9e:a1:ca:f2:a8:c1:1d:41:60:21:
78:03:69:10:35:1c:ae:8c:79:fa:a9:fb:da:25:8b:
75:75:d4:56:68:2d:38:09:2a:65:e5:34:59:3b:a0:
8e:af:21:1a:ec:6d:89:96:2b:72:69:31:ef:3d:0f:
1a:7d:61:01:67:5c:66:9a:c1:3e:67:84:f5:0e:2b:
c2:c2:41:58:7d:ed:f1:95:95:a3:9a:a5:1d:e1:fb:
6f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:73:A7:54:09:06:D5:3F:58:BB:8E:BD:8D:B0:F6:8F:3E:8A:08:DF
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/33OnVAkG1T9Yu469jbD2jz6KCN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:db00::/32
Signature Algorithm: sha256WithRSAEncryption
ac:c5:01:8b:b0:d6:80:39:68:40:fe:f5:d3:77:10:e9:99:c0:
d6:f0:ac:c4:2b:58:29:97:ab:b4:70:0d:8d:c5:04:8e:13:17:
2c:a1:d0:4a:08:ce:9c:33:75:d6:ea:e5:b1:6f:15:94:50:89:
12:63:39:8b:b3:10:80:97:d2:fc:84:06:1d:bc:4e:ee:57:74:
38:31:19:c4:28:da:6d:84:57:48:70:49:e5:06:f5:bd:18:f3:
16:9d:48:d7:88:65:1e:85:a6:b0:5c:d9:5e:db:ac:12:42:d0:
34:e5:5a:c0:5b:ad:bb:dc:cf:dd:ee:bc:83:35:5f:41:ae:ca:
b3:d7:c4:ec:f3:8e:67:46:b0:7a:63:5d:f4:1e:eb:4d:2b:c2:
f5:5d:f2:8e:5f:d3:80:3e:1b:61:99:9d:a9:dc:d7:81:f4:95:
36:57:9d:de:4a:b7:6d:7c:b3:fd:ad:c7:56:fb:94:75:95:eb:
46:e3:1e:bc:0f:d6:2c:ef:b8:19:35:7d:70:f3:2a:98:9b:9f:
94:2d:33:04:bc:8b:0a:90:31:ee:f7:b7:cd:62:8b:ae:11:81:
5c:5e:90:20:79:b4:c5:b3:37:54:aa:7f:e2:43:84:f6:7a:08:
5c:d1:65:ed:1c:4d:f3:2d:23:b8:c8:df:f0:7d:56:2d:c1:71:
1b:90:34:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org