Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/akPXKgI1VvPYUcCGSVvVAHUw1jw.roa
File: akPXKgI1VvPYUcCGSVvVAHUw1jw.roa (raw, json)
Hash identifier: uUw3FIWNhtFPoYDlnFLFBBClEZ9keJ7v59mMWcnDUvY=
Subject key identifier: 6A:43:D7:2A:02:35:56:F3:D8:51:C0:86:49:5B:D5:00:75:30:D6:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ECB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/akPXKgI1VvPYUcCGSVvVAHUw1jw.roa
Signing time: Wed 29 Sep 2021 02:43:59 +0000
ROA not before: Wed 29 Sep 2021 02:43:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131586
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3787 (0xecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6A43D72A023556F3D851C086495BD5007530D63C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:af:3e:58:f3:35:8c:ab:40:b2:e9:5b:1e:37:
cc:09:fe:75:70:eb:72:e6:61:98:ff:d3:3d:f7:10:
b4:e8:84:f8:02:b0:4c:d8:e5:f9:bc:dc:85:16:18:
fe:19:52:c9:da:c0:8c:8a:b5:c8:58:b2:87:1b:c3:
d0:cb:d3:4c:ab:b8:7c:a5:e8:34:82:41:0a:20:14:
d7:f0:8e:3c:79:9a:9c:b9:69:cd:6f:4d:1e:c6:9d:
a8:df:d1:e0:1a:be:76:57:9c:f7:09:ca:7e:d0:02:
1b:2f:19:be:c6:00:7f:87:c0:2a:f2:10:83:d8:6a:
88:87:ce:81:15:43:ca:76:07:5e:a6:f4:c9:25:91:
1f:73:a2:a8:8d:20:e2:40:e6:bf:79:6e:f0:d4:97:
fe:c5:3a:7d:da:0f:e9:82:52:57:65:35:37:30:b8:
50:ac:ac:26:04:a8:96:1d:b7:2d:c3:d0:18:88:95:
92:d5:07:29:bd:b2:24:69:8e:60:b5:8b:eb:bd:1a:
75:c1:a8:27:4b:e7:3e:d1:4d:c0:c9:3f:32:83:9c:
93:dd:73:e3:53:77:ff:15:5f:49:0f:07:87:13:95:
78:d3:86:e7:84:5a:d3:36:8c:5b:cd:85:ef:15:41:
56:05:38:04:68:3b:51:84:f2:2e:48:d9:c5:a7:81:
b7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:43:D7:2A:02:35:56:F3:D8:51:C0:86:49:5B:D5:00:75:30:D6:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/akPXKgI1VvPYUcCGSVvVAHUw1jw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
74:7f:00:f4:27:ea:cf:41:00:10:98:ca:6e:34:47:52:bf:6d:
d5:73:b1:0f:81:e8:69:97:6f:01:49:fe:2b:54:65:5e:19:79:
b6:42:46:bc:1c:65:ea:bc:d5:3a:2b:d5:cc:3a:30:52:52:46:
9d:46:26:8f:dc:d2:d7:51:f7:22:82:0d:0c:dd:9b:06:10:59:
04:0b:b6:99:27:fd:1c:65:37:3d:09:ba:da:0f:63:fb:cd:a3:
c1:84:58:c4:c5:e0:e4:51:15:6b:37:25:6c:d4:29:6e:77:10:
5d:32:ad:ff:12:71:76:12:e6:2f:5e:ec:ef:ba:8c:09:31:d7:
fa:ae:fc:72:fb:52:aa:f3:58:75:41:b2:d0:95:91:b6:31:81:
41:0c:40:40:57:42:4f:b5:d9:ca:bb:26:f9:9e:71:83:44:c1:
62:af:9e:4b:15:da:33:c4:b8:d1:02:15:33:57:d1:e3:fe:30:
06:d9:25:40:21:9f:f0:d0:5a:37:ca:a5:d9:84:a7:bc:fb:93:
fc:6b:53:a2:8b:c4:bc:7a:f6:68:d0:d5:76:56:3a:da:bc:2c:
d3:58:87:9c:96:40:ff:29:45:11:21:e7:e8:64:24:43:2a:6f:
29:ff:dd:d4:bb:ee:3c:4a:fa:de:fe:34:23:9f:12:f1:8a:24:
c7:bc:a2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org