Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/dpHilPh1y7NCGXZ3gwIG7LLZL2E.roa
File: dpHilPh1y7NCGXZ3gwIG7LLZL2E.roa (raw, json)
Hash identifier: 501ApmRpK5RHYdC/fqFgcNT8UbmAXt9vXuTfJd+Wu4I=
Subject key identifier: 76:91:E2:94:F8:75:CB:B3:42:19:76:77:83:02:06:EC:B2:D9:2F:61
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 110D
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/dpHilPh1y7NCGXZ3gwIG7LLZL2E.roa
Signing time: Thu 15 Sep 2022 02:38:26 +0000
ROA not before: Thu 15 Sep 2022 02:38:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 2403:b340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4365 (0x110d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Sep 15 02:38:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7691E294F875CBB342197677830206ECB2D92F61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:86:08:20:c6:f4:ff:f3:be:55:60:e3:8a:2d:
b2:89:86:f8:df:51:1d:a6:9f:55:65:94:62:02:41:
c3:a5:dd:73:c4:8f:0c:2d:b1:a3:a7:ff:0f:32:9e:
2d:bc:3a:18:f8:59:3e:9c:f2:39:0a:75:cd:87:a7:
c9:06:60:32:ce:7b:5f:07:e2:a5:a0:e4:de:99:d2:
18:53:52:54:d6:75:82:d9:d3:55:45:2b:07:ff:9a:
64:9d:02:94:64:38:b8:38:7c:dd:29:11:0b:7f:0c:
7a:0b:b0:ad:8a:26:0a:f3:b4:19:d9:03:21:64:77:
41:cc:1a:17:cd:58:18:17:c8:b5:95:9e:05:b0:9d:
51:2b:9d:ee:e8:37:98:a4:54:72:63:6a:da:d9:60:
47:c9:38:10:03:95:36:13:cc:c1:25:f5:40:88:32:
64:3e:56:f9:09:d7:64:3e:c2:2d:1a:8b:fd:5b:83:
23:f7:93:33:c1:7a:a6:63:b7:d5:42:14:39:65:d0:
13:2d:f2:b4:94:53:90:f7:e8:3c:4a:fc:fa:66:2d:
ec:49:95:13:df:c9:71:05:e5:c9:fc:12:5c:cd:64:
b2:bb:8b:e5:b8:17:46:ca:94:ad:93:46:dd:21:4d:
aa:8b:e7:10:9e:8f:52:bd:0a:c4:43:f2:e6:ea:11:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:91:E2:94:F8:75:CB:B3:42:19:76:77:83:02:06:EC:B2:D9:2F:61
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/dpHilPh1y7NCGXZ3gwIG7LLZL2E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b340::/32
Signature Algorithm: sha256WithRSAEncryption
50:04:db:a7:16:df:af:87:ba:e1:ad:81:2a:90:39:26:30:7f:
50:5b:54:9e:59:4d:81:05:a1:36:63:63:0f:c9:b6:9f:6b:ba:
73:79:50:db:b1:0f:ed:cb:f9:93:4f:27:51:ea:26:e5:ab:10:
e4:4d:35:c0:f0:25:c2:82:10:da:c2:4d:dd:d1:fc:87:07:5f:
c3:4e:88:4c:21:69:77:d8:d1:dc:36:b7:90:6a:39:89:24:c0:
20:6c:65:7b:78:d8:d2:89:cc:cb:5a:9f:1a:8d:4d:46:f2:b2:
24:ac:19:3a:c7:be:7c:65:96:94:27:15:ff:74:50:48:a1:23:
2b:96:b7:3e:4d:b8:3f:7e:eb:0c:c3:9a:b8:67:fa:dc:9c:ab:
dd:f0:31:f3:1a:17:fe:a0:7d:04:b4:ec:91:a4:53:c2:6c:96:
50:da:84:6c:60:82:05:54:9c:80:c6:0b:ca:5f:74:d9:17:4c:
de:b3:a6:e8:df:4e:91:af:e1:bd:1d:60:79:ac:e3:cc:12:b9:
1b:6e:e3:db:d3:41:1c:b9:9d:e6:59:44:15:c1:35:12:75:48:
56:64:f3:9b:05:d9:04:93:3e:7b:9b:e1:96:17:93:fc:11:6f:
8d:5d:51:9d:b0:f6:5a:c8:c4:cd:78:45:d2:8d:29:9a:1d:e5:
eb:cd:72:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org