Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/MDa5_qsIYIl8ZuqjzHJPmTX77NM.roa
File: MDa5_qsIYIl8ZuqjzHJPmTX77NM.roa (raw, json)
Hash identifier: nYPdp3HzFSJ3cKdiQx6W24qAFPjc0qmmFaFkkoMoqC8=
Subject key identifier: 30:36:B9:FE:AB:08:60:89:7C:66:EA:A3:CC:72:4F:99:35:FB:EC:D3
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 0E3C
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/MDa5_qsIYIl8ZuqjzHJPmTX77NM.roa
Signing time: Tue 29 Sep 2020 10:05:11 +0000
ROA not before: Tue 29 Sep 2020 10:05:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 2403:b340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3644 (0xe3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Sep 29 10:05:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3036B9FEAB0860897C66EAA3CC724F9935FBECD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:33:c0:65:cf:58:6d:a8:90:89:fa:d1:9f:f2:
e7:88:bc:06:ce:27:6e:d9:77:7e:31:66:0e:01:5b:
18:3e:83:28:aa:71:69:85:ee:4d:c2:33:3b:1a:ce:
b7:8d:78:0a:13:9b:2b:44:aa:ef:a3:5f:96:77:cc:
fc:1f:f2:44:5d:23:be:ee:23:22:8c:8c:61:6e:3b:
72:67:9a:86:3e:b9:09:1f:8d:59:a0:49:45:55:04:
3f:d9:3f:af:b4:24:71:f9:fd:e2:8f:24:77:8f:11:
1e:5b:07:10:9c:ce:8d:8b:52:a3:7b:4d:a3:43:97:
7f:86:bf:97:2e:2d:8d:b6:0a:48:6b:1b:f5:83:c8:
45:f9:d8:47:a0:4d:58:28:e8:83:58:43:18:41:e3:
74:0a:d0:8e:e7:a0:b7:95:14:0e:21:aa:3a:f6:94:
46:62:b6:8e:fc:ce:38:b8:3e:59:4d:de:89:7c:cf:
c9:31:6d:8e:ce:32:49:f2:20:3f:a8:14:4a:58:ba:
40:27:f9:f9:77:57:c6:7f:4d:5c:7e:84:5c:ba:be:
d8:d1:9e:bc:97:00:8d:0e:01:e4:02:04:d6:40:34:
af:64:4e:fd:aa:6c:56:48:57:70:37:84:bd:ed:54:
17:5c:5d:c3:eb:9f:fd:f0:31:84:74:41:b7:f7:de:
05:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:36:B9:FE:AB:08:60:89:7C:66:EA:A3:CC:72:4F:99:35:FB:EC:D3
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/MDa5_qsIYIl8ZuqjzHJPmTX77NM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b340::/32
Signature Algorithm: sha256WithRSAEncryption
3a:e1:c8:52:83:b0:4d:fa:54:c8:ec:4b:95:b2:d0:92:64:07:
d0:b6:69:1e:df:d0:76:18:55:84:60:2c:b0:22:53:01:7b:f8:
30:49:45:dd:b2:ba:7b:39:d8:60:b2:10:1a:4c:c3:b9:63:15:
03:4a:dd:20:70:45:c1:ca:d7:72:65:ed:22:20:f3:59:90:f4:
52:3d:c5:75:98:ca:b9:5a:d8:50:a9:7a:18:98:40:01:60:ae:
6a:9d:a4:f8:a0:8a:4a:12:4d:10:dd:77:c8:a0:35:75:be:a3:
1f:0c:50:79:dc:97:01:d2:91:d6:f6:a7:ef:1b:16:47:b5:2e:
2f:e7:58:f5:07:a5:b8:ba:31:0f:28:25:3d:f8:6b:9d:52:21:
d8:15:04:78:96:16:f6:b9:e1:cc:a9:91:8e:9e:62:d0:da:29:
2b:6e:ef:33:90:fb:bd:6e:89:38:09:fd:3b:c4:ce:fc:54:46:
f7:62:53:39:70:2b:53:eb:ad:8a:0a:fb:1b:31:5b:fa:3c:53:
22:90:7d:ae:fd:13:55:0d:92:a2:7b:c2:dc:8b:5b:4c:c2:5b:
12:fe:b1:6f:44:41:d6:dd:e1:eb:86:f0:a8:d8:16:9b:7d:43:
0b:03:1d:ec:a7:5a:c4:28:f9:d6:7d:49:1e:f6:b7:46:d4:32:
1c:f8:51:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org