Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/HXJpt-bxUjS80x-TQ-eSXgrJ4bQ.roa
File: HXJpt-bxUjS80x-TQ-eSXgrJ4bQ.roa (raw, json)
Hash identifier: 3jcv8IKa5xZ0M3sHpf5Hb08YSy87ZDQsMvlrF87hHR8=
Subject key identifier: 1D:72:69:B7:E6:F1:52:34:BC:D3:1F:93:43:E7:92:5E:0A:C9:E1:B4
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 07B1
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/HXJpt-bxUjS80x-TQ-eSXgrJ4bQ.roa
Signing time: Thu 15 Sep 2022 02:37:38 +0000
ROA not before: Thu 15 Sep 2022 02:37:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1969 (0x7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 15 02:37:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D7269B7E6F15234BCD31F9343E7925E0AC9E1B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9c:ca:9f:b4:ac:c6:48:24:98:e8:f7:cf:ef:
b8:32:b4:00:4c:58:2d:8c:5a:36:0c:ed:8d:f1:fb:
eb:3e:5b:3c:e4:62:8b:eb:6e:bd:5c:e9:72:a9:45:
e7:ad:80:03:55:a4:1b:e5:65:d1:42:17:f3:e2:48:
59:0b:b3:6a:f2:65:53:8a:1a:42:01:c9:be:1b:e6:
60:d9:d7:b2:f2:78:99:0a:9b:a8:21:29:f6:86:a4:
9c:40:12:e7:f6:80:21:97:00:e4:f4:e8:c6:47:5a:
f4:3b:58:cf:e5:33:80:27:79:5d:4e:50:e9:af:86:
e4:61:59:60:27:47:76:8e:24:bd:d2:cd:35:4b:57:
ad:5f:14:76:1a:86:16:18:a5:9a:2f:3d:a1:d1:64:
58:dc:85:af:aa:a3:a8:6e:97:28:99:1e:85:fa:15:
7a:0d:8a:7a:b1:ef:80:fd:36:23:b3:af:90:6f:b5:
a2:fe:2d:e0:60:58:73:77:a2:14:ef:b9:70:6c:5e:
7e:3c:7e:86:87:6b:56:4a:b3:72:eb:b0:2b:d1:08:
7b:bd:78:48:5c:91:24:33:41:df:e4:da:6d:3f:d3:
c2:7e:7b:6a:8f:10:27:78:03:81:3d:fa:31:87:ba:
bc:1d:31:bb:03:8c:6e:b1:d9:bb:81:22:cb:d9:1d:
1c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:72:69:B7:E6:F1:52:34:BC:D3:1F:93:43:E7:92:5E:0A:C9:E1:B4
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/HXJpt-bxUjS80x-TQ-eSXgrJ4bQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
d8:9d:09:0d:87:33:62:9d:b8:6d:ca:1d:41:58:ed:c1:24:8b:
a0:37:3d:8c:f4:19:c4:97:84:12:4f:6b:fe:53:81:47:e1:84:
d3:98:20:0a:76:0f:39:10:e1:69:52:70:2d:e3:c8:51:32:45:
eb:72:2d:1a:0b:dd:a6:98:d9:21:f6:32:46:0f:4f:1d:00:1d:
03:a3:38:fa:4a:a8:7c:69:3c:96:6b:87:30:2a:16:94:63:07:
75:1f:1c:e8:bd:2e:d4:b9:c6:bc:f7:f7:aa:b4:06:65:e8:ae:
5f:ce:6b:76:24:67:b4:6b:6a:bb:97:4b:d1:06:a3:a3:01:b6:
b7:e9:35:20:3c:2a:6c:b7:8d:79:03:38:85:e2:89:76:3a:b3:
8f:70:72:b6:95:c5:4f:db:40:8b:50:9e:29:5c:12:21:b0:13:
49:ae:4e:cf:01:2d:13:11:ae:aa:b5:fa:a9:9b:ba:e3:fd:9c:
f7:87:09:47:97:97:c9:99:ea:41:92:83:d2:0b:37:95:cc:3b:
f2:0f:70:d2:88:cc:85:30:09:02:b0:1b:17:a4:66:bd:3e:e9:
be:3e:62:f5:72:59:6b:41:99:90:f8:4b:6f:f2:0c:c4:27:fd:
2a:ac:36:37:b3:34:39:b1:5a:ac:6c:a0:4c:ec:68:98:96:9d:
66:c6:13:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org