Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/i_7JKzConUI40hNoHQjRhFZOJW4.roa
File: i_7JKzConUI40hNoHQjRhFZOJW4.roa (raw, json)
Hash identifier: lYsz3Hk+aFmIpmgcAGg7Mi1Kyu5UVm1c1chSe2BMvX0=
Subject key identifier: 8B:FE:C9:2B:30:A8:9D:42:38:D2:13:68:1D:08:D1:84:56:4E:25:6E
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 1022
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/i_7JKzConUI40hNoHQjRhFZOJW4.roa
Signing time: Wed 29 Sep 2021 02:38:02 +0000
ROA not before: Wed 29 Sep 2021 02:38:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 2403:b340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4130 (0x1022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Sep 29 02:38:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8BFEC92B30A89D4238D213681D08D184564E256E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:35:5d:ab:07:3f:e1:ff:8a:bb:c5:78:06:
46:50:cf:1d:f8:b7:a0:5d:b3:b6:79:49:56:83:ac:
f7:c6:66:28:9d:57:99:bc:4b:48:1b:d2:fa:bd:19:
e3:ec:d1:24:87:e0:bf:38:6d:53:53:97:b5:fb:52:
d4:64:57:b0:5f:26:4d:de:69:67:e3:23:d0:70:7d:
2f:80:a2:ec:c5:22:ef:bd:34:52:ae:05:5f:27:da:
21:c6:e0:59:12:84:e9:20:f5:62:43:90:0d:d9:2e:
65:ce:dc:52:33:58:1e:07:47:ba:cf:13:27:03:ba:
57:6d:9c:53:2f:9d:cd:73:3c:8a:f7:be:39:b3:9d:
73:2b:1d:24:ae:08:b8:bf:92:42:c5:aa:fd:b6:96:
a5:36:4f:18:84:a2:8d:b3:f4:bd:43:58:14:15:a1:
0a:1d:7d:13:d4:ba:b7:0c:3d:9e:6f:2c:07:51:d8:
5a:79:a5:22:b7:76:2f:88:78:ad:67:e4:1a:1d:4a:
ab:f2:0d:6b:1f:40:6b:70:8c:26:01:fa:88:08:24:
10:6f:48:b1:d9:66:20:ec:61:60:ce:da:90:c7:0c:
2a:c5:68:1a:75:69:5b:72:74:66:69:18:29:00:bc:
38:71:e0:f9:26:92:5c:09:58:d7:75:a0:79:e2:ab:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:FE:C9:2B:30:A8:9D:42:38:D2:13:68:1D:08:D1:84:56:4E:25:6E
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/i_7JKzConUI40hNoHQjRhFZOJW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b340::/32
Signature Algorithm: sha256WithRSAEncryption
5c:22:2d:1a:db:01:b9:f1:78:ad:6e:c9:80:a7:d9:7b:88:76:
87:97:1c:7c:41:b9:80:5a:57:8a:ed:57:b5:05:dd:71:63:b3:
fb:18:d1:94:ff:13:d3:1e:bf:e7:40:4f:f9:f1:fe:ab:31:e9:
00:0b:01:e1:d2:fb:7d:fd:36:37:57:f8:84:4f:25:76:1e:e1:
3b:f5:8f:2f:96:3a:72:fd:09:26:f7:b7:8a:10:ed:98:0d:9b:
43:b9:16:65:7d:89:d0:73:cd:29:9f:cd:e7:ce:2c:7b:a7:f9:
aa:ab:9c:2a:4f:df:8e:78:f6:7e:45:61:2d:9c:d8:62:ff:fa:
ff:4d:db:bd:82:4e:ea:75:8a:16:8f:f0:0b:48:20:9a:3a:23:
fd:8e:e0:79:2c:9c:eb:9f:6b:98:0b:fc:ac:a6:1d:ed:95:b5:
f6:95:15:dc:4a:13:f7:25:a0:6b:c9:e0:ec:94:ac:35:5c:c9:
bd:77:bd:b4:b0:46:b8:68:55:ac:d8:aa:e0:12:00:cf:15:29:
60:3f:50:59:13:23:34:d4:d4:0c:9d:fa:50:cb:80:4b:ce:3f:
7d:1c:da:ff:97:18:69:4a:51:61:57:2d:f6:d4:9f:2a:17:41:
ac:65:6b:8a:e6:be:73:04:cc:0b:65:7a:ec:61:87:66:9b:f1:
8c:21:63:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org