Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/YfEMUPx5Nh01SK4hd9fzOyF4z5g.roa
File: YfEMUPx5Nh01SK4hd9fzOyF4z5g.roa (raw, json)
Hash identifier: 9PVKW4d6lFqJ3Lwn46hfsCQUpIdsB0giGM5UbXxCAJQ=
Subject key identifier: 61:F1:0C:50:FC:79:36:1D:35:48:AE:21:77:D7:F3:3B:21:78:CF:98
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: FD
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/YfEMUPx5Nh01SK4hd9fzOyF4z5g.roa
Signing time: Wed 22 Dec 2021 03:20:25 +0000
ROA not before: Wed 22 Dec 2021 03:20:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 31972
IP address blocks: 2406:ce40::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Dec 22 03:20:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=61F10C50FC79361D3548AE2177D7F33B2178CF98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:31:61:05:11:35:0b:0f:09:0d:20:59:87:6e:
59:90:09:bf:c7:d8:bb:d9:24:f1:f3:b6:da:8f:79:
78:bf:4e:c6:cf:2a:1a:b7:10:2e:11:e2:9d:61:33:
ad:d5:f8:00:a5:be:3c:1e:2d:c0:e6:c9:b0:be:5d:
0e:26:d4:a2:74:7d:8d:86:af:38:09:17:c7:df:f4:
cf:d8:39:12:35:7c:2b:dd:5f:76:8d:8c:89:f6:a5:
45:84:54:34:fb:71:44:67:43:47:29:d3:a8:9e:9c:
88:88:88:eb:70:1d:b1:99:aa:4d:a3:a6:e8:03:8e:
ee:75:b1:dc:3c:18:26:e7:c9:e2:20:83:40:a2:6f:
ec:14:5b:1b:85:92:77:46:ef:1b:7a:6e:78:7c:5e:
83:74:bf:83:44:fe:40:81:7b:63:15:51:f0:4b:c3:
b3:6b:aa:96:20:b1:3b:4f:24:f5:61:b8:68:3d:92:
22:5c:76:25:61:34:96:63:66:c2:b2:88:ff:d7:9d:
66:8a:f0:e9:86:38:4b:9a:03:d6:c9:46:48:7c:20:
f1:9f:2f:16:52:4c:88:ab:76:50:4c:4d:bf:18:c2:
ff:1d:0d:73:ef:95:af:fe:de:ac:6f:62:18:02:c9:
34:25:7f:fc:46:fb:86:fc:6f:30:70:0f:35:78:37:
a2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F1:0C:50:FC:79:36:1D:35:48:AE:21:77:D7:F3:3B:21:78:CF:98
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/YfEMUPx5Nh01SK4hd9fzOyF4z5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
44:e8:5f:6a:cd:df:b5:3c:c0:6a:88:43:1a:01:35:b8:22:5f:
65:e0:86:ea:52:37:80:40:83:87:f6:9a:b0:7b:33:1e:b7:af:
5e:1b:42:00:60:4c:62:55:7c:e1:33:94:a8:22:dc:3a:99:00:
e3:86:9c:2c:73:3d:7c:15:93:96:ae:34:d0:9f:f8:8b:61:0c:
3a:dd:7e:fd:49:3a:bb:34:0d:a8:e0:a7:73:11:41:8f:b0:e2:
83:31:48:9e:ac:b5:6b:56:b2:a2:e2:64:2c:6f:32:b4:21:ca:
5e:21:9b:9b:a5:ad:27:c0:d6:6a:77:13:64:4d:d6:e9:5f:4d:
19:f5:13:0c:49:53:0f:6d:62:7b:3e:42:14:3c:91:75:72:07:
6d:81:d1:32:72:bc:4a:01:e9:9a:71:a4:76:af:d3:33:a4:ef:
f9:1b:75:4b:aa:83:8d:ae:e8:af:87:f4:71:63:61:6b:d7:32:
f9:55:02:0b:dc:2d:ad:cb:ef:f4:ae:19:96:dd:3b:7c:3d:c4:
4d:05:41:4a:81:b1:7f:bf:fd:21:d8:2d:c2:37:e6:4d:e7:3f:
fa:a8:6c:6c:d7:28:60:73:ca:4e:3d:09:79:52:fb:c7:ef:85:
4e:35:b2:57:1e:c2:5b:b5:fe:7e:35:be:6a:14:80:56:fc:1f:
85:ce:cf:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org