Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wil3ZVzZeLMShOZ0tn6Di1l4nCg.roa
File: Wil3ZVzZeLMShOZ0tn6Di1l4nCg.roa (raw, json)
Hash identifier: uTP/+EdoeII7G7G13ufISKogPdoKuDOoXeUAH423MtY=
Subject key identifier: 5A:29:77:65:5C:D9:78:B3:12:84:E6:74:B6:7E:83:8B:59:78:9C:28
Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Certificate serial: 0558
Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wil3ZVzZeLMShOZ0tn6Di1l4nCg.roa
Signing time: Wed 29 Sep 2021 02:50:36 +0000
ROA not before: Wed 29 Sep 2021 02:50:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131674
IP address blocks: 2405:e4c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1368 (0x558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Validity
Not Before: Sep 29 02:50:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5A2977655CD978B31284E674B67E838B59789C28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:08:67:55:b0:ba:ae:41:20:03:3a:e8:4a:
dd:97:64:b2:93:dc:00:64:6b:55:b8:b7:88:1a:f0:
b0:eb:b9:85:81:8d:c2:9c:23:40:15:27:26:87:ab:
8e:7c:6e:6b:d3:98:06:dd:51:74:cf:8a:23:4c:e5:
61:2e:75:f9:fb:96:8c:20:f1:4b:d0:23:68:e0:5c:
4f:87:ea:1a:12:cd:9c:db:11:3b:70:e9:03:18:c9:
fa:87:01:13:fb:2a:65:67:eb:9b:d3:c8:61:6d:b1:
30:8c:40:91:cf:c1:a3:17:cb:d9:d3:2d:75:00:7e:
df:98:07:bc:f5:36:2d:3f:83:02:b5:88:0c:0a:ec:
a7:44:da:00:0d:5f:4e:7d:f8:21:91:6e:3c:c0:d8:
5a:ac:cb:ab:c8:c4:e8:4a:ef:a3:43:c8:97:01:ed:
af:49:88:e2:5a:00:35:b6:6d:a8:0f:67:66:fd:b3:
c5:44:a5:87:00:18:fd:60:e7:cc:cb:60:5d:54:30:
8e:83:7e:6e:b5:97:b4:94:fa:47:df:03:1b:45:2b:
b6:9f:4b:2a:d9:a6:62:e3:99:70:10:d2:fb:52:fe:
97:b2:43:ab:b1:b9:4e:26:9e:0b:85:64:50:c5:19:
da:d6:bb:2a:ee:ca:cb:20:41:b9:38:42:90:e5:8b:
5d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:29:77:65:5C:D9:78:B3:12:84:E6:74:B6:7E:83:8B:59:78:9C:28
X509v3 Authority Key Identifier:
keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wil3ZVzZeLMShOZ0tn6Di1l4nCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:e4c0::/32
Signature Algorithm: sha256WithRSAEncryption
73:5a:34:bc:b8:cd:bc:d1:57:01:f5:d7:23:97:b7:05:79:1a:
cb:4c:07:9e:27:95:87:e3:49:43:28:a9:eb:8e:35:7a:12:9d:
52:3a:f5:13:f3:8a:0d:39:ac:6b:47:76:2f:5f:94:e0:62:bb:
1e:0a:63:55:8d:d9:e9:f4:51:d6:45:7b:07:dc:ab:8c:88:98:
9b:da:a0:7a:ad:3b:3d:19:21:e2:08:44:22:85:f3:bc:3b:95:
c7:ba:54:f0:0f:81:13:43:2b:28:ba:a9:82:72:f5:64:bf:a5:
53:91:50:f8:c2:36:4c:37:d4:20:f0:66:31:f1:fa:5c:9a:db:
20:b7:1d:d0:b2:9b:f5:a6:77:aa:fb:5f:48:15:0a:69:12:77:
32:0f:83:e7:b8:a1:1d:0c:1c:f4:d8:a0:29:f9:db:38:a6:9b:
8f:0c:c0:5a:50:55:cd:14:5c:93:13:04:f6:71:96:5d:98:de:
c2:9c:9d:d1:aa:e2:f4:80:84:2a:84:31:4d:29:a7:74:66:db:
0a:cd:70:91:29:4c:aa:bf:e4:4b:b4:d1:8d:d4:9d:7c:b5:cb:
71:15:95:9e:61:6c:bf:33:90:1e:b8:ed:6f:1f:72:02:de:1c:
1b:b9:f6:c5:14:3a:0c:c4:25:37:75:0e:c9:3e:68:f2:a4:ec:
33:ac:f8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:23 2025 by rpki-client