Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/hq5lyKK2ltckv4I2iYLOTtqHgbY.roa
File: hq5lyKK2ltckv4I2iYLOTtqHgbY.roa (raw, json)
Hash identifier: 7yVgTL/9ZB5+Ds3LJeJYmnEsONPfu0A8Rq0WWuqd65Q=
Subject key identifier: 86:AE:65:C8:A2:B6:96:D7:24:BF:82:36:89:82:CE:4E:DA:87:81:B6
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 1023
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/hq5lyKK2ltckv4I2iYLOTtqHgbY.roa
Signing time: Wed 29 Sep 2021 02:38:02 +0000
ROA not before: Wed 29 Sep 2021 02:38:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 2403:b340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4131 (0x1023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Sep 29 02:38:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=86AE65C8A2B696D724BF82368982CE4EDA8781B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:77:ac:a7:e7:3f:8f:3a:c1:9e:8f:f2:5f:a4:
87:de:c0:50:e7:2c:8d:d7:59:de:df:de:af:64:c4:
37:c4:94:2f:58:23:17:ef:24:a8:64:d7:d2:6f:8d:
72:38:dd:fc:44:48:8f:ff:5c:c9:16:e7:ea:fa:6a:
ee:12:1a:e6:4f:a0:d2:2a:9a:9f:5d:a9:76:c6:76:
6c:13:21:13:f0:b7:ca:c0:d2:c7:4a:33:92:a2:96:
17:db:4b:0f:b3:4c:3d:00:29:4f:e3:5d:f5:0b:6b:
7e:ed:eb:ff:9b:9f:ee:96:3f:ad:4e:52:88:9e:0d:
cd:81:e8:a5:7d:1b:48:e1:0b:33:92:34:b0:44:64:
11:f6:e9:5d:31:da:f3:39:c6:b1:2f:dd:d3:0b:9b:
60:91:de:f3:d9:68:08:3b:eb:e3:3f:9d:93:fb:0d:
a9:1c:1c:8b:7a:53:d2:a1:c7:65:c8:1c:1e:32:85:
28:1b:ec:c7:ca:bd:f7:93:82:54:e2:a4:84:e5:86:
e2:fe:06:5a:d2:d4:b5:65:ab:fd:81:79:3b:ea:31:
f0:41:7c:69:0d:de:1b:a0:3e:91:18:9d:e4:1c:6a:
2b:cf:31:01:51:59:28:ca:ef:a5:8c:87:76:8f:90:
54:e6:d6:a5:72:6a:7e:49:40:08:ff:d3:18:f7:d4:
f6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AE:65:C8:A2:B6:96:D7:24:BF:82:36:89:82:CE:4E:DA:87:81:B6
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/hq5lyKK2ltckv4I2iYLOTtqHgbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b340::/32
Signature Algorithm: sha256WithRSAEncryption
7c:ba:8f:17:ec:5e:43:55:5d:5f:28:c5:98:b5:6a:d0:5d:d4:
59:fc:c5:bc:f0:f3:83:de:49:be:38:91:72:47:12:57:ea:35:
42:53:87:9b:78:14:23:d6:5e:a1:ef:a9:b3:e8:8a:99:43:80:
4c:2c:0d:ac:fb:42:9d:02:a5:b2:59:f8:20:fd:05:d6:f2:2b:
bb:3b:84:8b:4f:c7:e3:d0:8b:45:21:62:df:5b:ea:40:ca:a9:
a6:e4:07:a1:63:8a:bb:25:1f:29:36:b0:c5:04:50:30:c8:fd:
85:c7:3f:d7:60:c3:ba:09:6f:a5:89:0f:fa:fb:02:b8:e7:e4:
34:81:8b:19:06:e2:6f:f1:a2:ab:c5:3c:b4:c5:f3:41:87:13:
76:5e:96:f2:01:d4:eb:30:bc:a1:fd:bd:fe:c6:2d:c0:21:97:
7a:ec:4f:17:69:35:fe:f3:db:ef:93:7c:e9:01:51:79:0e:1c:
77:f4:11:e7:d9:0f:52:76:30:75:45:64:6d:2b:b3:ae:3e:b6:
c2:64:58:48:43:29:9b:56:88:cc:36:45:35:0e:b2:11:ff:f5:
ad:28:ae:c3:64:98:bd:81:9c:23:75:ef:2c:ca:a0:bd:ac:b4:
55:3a:69:ad:27:6b:25:87:3c:97:7a:f2:7f:48:21:59:32:d7:
61:fd:2b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org