Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/u_-OFJWdkLsQf5ClGcOEgm57VfA.roa
File: u_-OFJWdkLsQf5ClGcOEgm57VfA.roa (raw, json)
Hash identifier: iSMbXD62BXnjKYuJggY3Uiv6PxiXRzn8BqCs6DdDa6Q=
Subject key identifier: BB:FF:8E:14:95:9D:90:BB:10:7F:90:A5:19:C3:84:82:6E:7B:55:F0
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 0628
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/u_-OFJWdkLsQf5ClGcOEgm57VfA.roa
Signing time: Mon 22 Feb 2021 14:25:49 +0000
ROA not before: Mon 22 Feb 2021 14:25:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1576 (0x628)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Feb 22 14:25:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BBFF8E14959D90BB107F90A519C384826E7B55F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:95:df:18:24:0b:43:bf:77:fb:ab:1e:69:43:
b4:87:77:ca:16:64:8d:3d:f4:b7:8c:95:0b:49:8e:
2a:01:a3:a4:85:8c:ca:fe:3a:75:ab:97:0d:63:99:
c6:94:64:90:06:60:a2:ce:c3:f8:c2:43:48:ec:e2:
2e:27:a6:51:78:72:ec:fa:e9:0f:6e:7c:70:fa:b7:
ab:be:18:86:26:f1:0c:7c:9e:5c:87:f1:bb:84:b6:
51:2b:4a:c9:0b:52:7a:d4:68:87:a2:e1:59:02:92:
71:3e:3e:ef:61:d8:f3:93:34:d2:dc:79:f8:4f:0f:
3f:c3:f3:d5:a7:dd:1b:56:0d:7d:2e:8f:4b:03:84:
40:f8:19:da:d2:7f:ac:b1:bd:07:6d:83:b5:66:a8:
72:3c:68:8d:47:2c:6c:1c:cb:eb:68:a4:a8:3e:d3:
1f:93:e4:57:28:9f:78:28:c2:e1:75:33:5d:e7:ee:
d9:6f:05:b6:bb:1c:cf:10:f6:06:ec:83:f5:58:d7:
be:2d:3f:b1:7f:82:c5:18:84:5b:58:57:12:99:00:
3a:dc:9b:39:90:77:45:60:f1:6f:c0:ce:8e:b8:42:
8d:22:4c:cb:ed:a5:81:90:0a:a2:fe:84:4b:45:52:
99:16:66:93:85:15:cc:1c:88:ad:e4:e1:76:d8:ba:
3b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FF:8E:14:95:9D:90:BB:10:7F:90:A5:19:C3:84:82:6E:7B:55:F0
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/u_-OFJWdkLsQf5ClGcOEgm57VfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
03:8c:dc:4a:5a:68:c4:04:0c:e2:fa:51:a0:98:71:0d:72:72:
4b:f2:fa:b9:d3:d7:0d:cf:0d:13:b9:5a:b9:61:65:ab:3f:93:
fb:ca:08:1f:3d:a9:12:38:98:6d:a8:8e:6b:d8:1a:98:f1:53:
16:9d:4e:b2:77:9f:20:de:06:db:da:c7:ab:23:c4:a4:2a:d6:
af:a9:fd:01:bd:e2:e9:b7:c1:4e:43:10:35:eb:88:ec:6b:e8:
7c:1a:da:d7:30:06:9f:d8:6a:f2:8f:2d:6c:9f:21:78:93:1f:
bd:18:19:dc:6d:8c:9c:11:ba:53:0d:db:30:d6:5e:61:52:89:
f3:64:8d:ce:44:c5:bf:39:db:4f:2e:95:76:18:eb:1a:8b:20:
e4:36:d2:5f:e8:04:60:93:da:ce:ea:3c:95:63:ae:81:40:b6:
df:e2:eb:23:9e:c5:29:4f:54:2f:68:a4:65:3a:d4:96:d1:53:
c5:af:f0:ab:d0:24:7a:17:8b:7b:98:5b:70:9d:64:6b:83:33:
41:5b:17:91:f3:de:ae:39:31:23:cd:a6:6c:3b:86:08:95:f7:
57:c9:ca:3d:f3:af:74:d7:ca:88:c5:ba:74:e7:5d:96:e4:7d:
60:e0:4b:1d:12:38:29:65:09:20:a8:07:a7:9e:8f:64:03:3d:
bc:e0:ae:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org