Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/kMDXpCR3tXuqonyPoMSkQBS-nWk.roa
File: kMDXpCR3tXuqonyPoMSkQBS-nWk.roa (raw, json)
Hash identifier: KLCmx9ox9zKxIs9iUVF5FyQNbMtwAwHEcwuoVlWfufg=
Subject key identifier: 90:C0:D7:A4:24:77:B5:7B:AA:A2:7C:8F:A0:C4:A4:40:14:BE:9D:69
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0955
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/kMDXpCR3tXuqonyPoMSkQBS-nWk.roa
Signing time: Wed 29 Sep 2021 02:53:15 +0000
ROA not before: Wed 29 Sep 2021 02:53:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18179
IP address blocks: 2404:db00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 29 02:53:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=90C0D7A42477B57BAAA27C8FA0C4A44014BE9D69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:27:b0:45:fa:13:6b:a3:cd:8b:68:33:34:ab:
85:12:22:3a:92:a3:9d:4f:76:52:77:66:46:24:cf:
32:e9:d8:8b:49:9b:78:a0:8b:21:00:59:cf:85:bb:
91:bf:0e:31:80:15:e5:72:d8:84:af:71:bb:62:47:
c7:a8:d8:c3:5b:b2:5b:ae:16:e4:76:7f:8d:49:9b:
70:6c:21:c3:97:b0:97:df:22:f3:2f:3c:5a:5f:fa:
96:8a:77:f1:38:a6:c0:5b:51:09:51:e9:68:1f:15:
44:33:54:e8:da:a1:62:fa:ae:22:46:2e:b7:d5:0a:
b4:12:7a:77:1e:b7:7b:e8:74:8d:d0:3c:70:0c:5c:
73:d6:3e:13:60:b3:5b:64:de:2f:a6:e2:8c:a4:a5:
ec:3c:18:1b:4a:93:f4:ca:c8:22:ae:17:aa:2a:be:
28:9a:7e:9a:4c:83:7a:85:8a:78:ad:4e:aa:fb:94:
9f:83:8b:2a:1d:09:f5:3c:ef:3c:dd:df:20:97:bf:
81:3b:70:99:b4:e1:57:c0:02:fd:b6:3c:3e:37:c4:
6d:a4:1c:b8:5e:0a:91:29:d1:47:c7:f4:1a:b7:45:
c6:05:06:f1:c3:e4:cb:93:d2:6e:5d:94:7f:84:2d:
c4:49:7e:09:e6:c8:42:b5:75:0c:a4:40:16:3a:0f:
04:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C0:D7:A4:24:77:B5:7B:AA:A2:7C:8F:A0:C4:A4:40:14:BE:9D:69
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/kMDXpCR3tXuqonyPoMSkQBS-nWk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:db00::/32
Signature Algorithm: sha256WithRSAEncryption
a1:45:ed:a1:2d:b5:94:87:9a:e2:da:03:9e:17:5e:c3:c9:bc:
17:17:38:a8:21:fa:8c:1f:99:e1:e8:29:79:6b:6c:e1:d1:9e:
0d:42:86:f5:be:13:1e:1c:25:ff:7f:e6:6c:38:89:cc:02:6b:
30:dc:1f:90:75:cc:36:ba:52:6f:ab:6d:91:1f:b5:dc:03:58:
cf:ab:08:46:cd:2a:ba:31:62:be:b5:cb:9b:99:a5:56:ee:35:
25:bb:63:9e:2a:69:86:f4:c4:02:b3:3c:4e:f6:de:86:d7:f7:
55:14:74:a9:8a:55:eb:de:9b:20:fe:f5:0e:1c:82:c7:12:ac:
e8:69:d6:85:05:fe:c6:5b:a9:91:63:6a:a2:b2:30:43:1e:85:
a1:d0:9c:26:56:a6:77:91:73:c0:4d:28:55:5c:ac:f0:fa:84:
eb:aa:00:21:d5:96:ec:7a:76:bb:54:7f:5c:88:e6:92:0b:de:
7d:f2:6a:99:40:9f:40:48:84:04:c1:c1:a5:8a:d4:20:9d:7c:
15:fa:4f:83:fb:28:3e:bf:08:89:14:b8:b6:f7:12:2a:57:7c:
d7:72:9d:72:f6:5f:d8:a7:86:0b:59:3d:c2:12:d0:4b:67:2e:
dc:fb:b4:1e:e2:af:cf:73:c9:86:ff:94:58:2b:f5:31:d3:e2:
d9:21:c1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org