Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/wNRsqQQidAW39RYcS858Ng-TgDw.roa
File: wNRsqQQidAW39RYcS858Ng-TgDw.roa (raw, json)
Hash identifier: QLefQnrNOCQe2hgo2BCTvzWE+ncZcxeHNJlL4S3JUhg=
Subject key identifier: C0:D4:6C:A9:04:22:74:05:B7:F5:16:1C:4B:CE:7C:36:0F:93:80:3C
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 095F
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/wNRsqQQidAW39RYcS858Ng-TgDw.roa
Signing time: Wed 29 Sep 2021 02:52:46 +0000
ROA not before: Wed 29 Sep 2021 02:52:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 2001:4500:1000::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2399 (0x95f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 02:52:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C0D46CA904227405B7F5161C4BCE7C360F93803C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:bc:e5:72:b8:5f:a1:68:49:b4:b6:fc:96:31:
d2:29:3f:89:d7:c2:c5:7e:50:28:7e:ba:d2:f4:8c:
34:fa:e7:e6:6a:33:74:e9:54:6f:3d:55:0a:11:fc:
76:b9:97:b6:77:88:b6:22:7d:91:f4:af:e4:09:07:
9d:c2:7d:72:64:7b:9d:9b:ef:70:ab:f3:95:0c:72:
4f:23:6a:b8:ea:df:24:ad:8f:0c:2c:e3:0f:9c:57:
57:46:6d:0d:4f:73:76:db:1b:0b:cd:62:38:ee:5f:
07:c0:5e:2d:3a:6a:17:35:71:14:49:fc:9b:cb:9e:
e7:1a:ef:4d:dc:c5:de:5c:00:2c:98:bc:ce:6c:bb:
b2:89:d7:41:19:9a:87:aa:6e:51:02:1b:f8:7c:6c:
c4:8b:8f:6e:11:0e:46:e0:d9:49:c1:cc:05:cb:1c:
45:4b:4d:b6:1c:6d:0c:2a:0b:b8:6f:23:e8:d9:82:
cf:21:45:85:7a:bb:f9:4d:10:ee:db:17:f2:ef:33:
6b:80:ff:e7:c0:fc:02:3b:d3:ed:bb:d3:76:5f:be:
c4:80:49:c1:40:51:db:fd:90:a7:b4:aa:b8:00:d9:
c0:2e:55:77:b9:4d:a7:5d:75:6b:73:15:2f:24:ef:
dd:25:b1:d8:3d:3c:e4:f7:06:1d:99:a0:d3:22:5b:
cb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D4:6C:A9:04:22:74:05:B7:F5:16:1C:4B:CE:7C:36:0F:93:80:3C
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/wNRsqQQidAW39RYcS858Ng-TgDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500:1000::/40
Signature Algorithm: sha256WithRSAEncryption
75:b6:7d:5e:0b:a8:a8:57:c7:7f:93:35:45:32:24:78:56:13:
f6:93:a2:c1:e5:1f:9c:b2:ee:cd:42:2b:39:19:b6:dc:7b:89:
47:61:86:7a:22:74:4c:63:20:d7:b8:d1:df:bd:12:9e:a1:fc:
b5:21:e6:07:b3:60:94:67:99:42:d4:4e:7e:34:b0:e2:66:f4:
c2:04:f0:59:e2:3b:4a:d4:91:b4:35:e7:d1:3a:65:ca:05:66:
ea:d6:80:82:62:97:ae:93:1d:a4:f1:c6:ec:a4:4f:26:46:83:
6f:a3:d5:ed:ea:20:a4:74:8d:4f:48:bd:31:3a:10:eb:05:95:
6e:df:ca:1d:34:47:36:0b:75:a8:11:af:35:71:e3:e9:84:e5:
5e:c3:7f:58:a5:d6:8d:b2:5a:7d:95:f7:f9:19:ab:2e:4b:55:
bd:e1:4b:cf:61:bb:a6:f2:61:49:55:44:c1:6d:5e:f0:19:4d:
40:83:1b:11:2f:3d:ce:d2:a0:51:51:8d:6b:7a:e1:2d:1a:13:
c3:35:af:54:69:63:f1:10:77:dd:3e:51:f9:e5:13:5b:56:e6:
e1:e8:d2:4f:9e:17:2f:92:b5:af:86:f1:ad:9d:d3:ad:de:b5:
36:68:04:9f:f8:45:0b:8d:1a:d3:76:9f:82:41:2c:1e:23:9f:
39:36:63:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org