Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/XJhZ1qWuLolfEGihacKDHulWj_I.roa
File: XJhZ1qWuLolfEGihacKDHulWj_I.roa (raw, json)
Hash identifier: MFjVIgwRzHsBhKc1Ov2yefehETHvskIOH+mTdDzC7mc=
Subject key identifier: 5C:98:59:D6:A5:AE:2E:89:5F:10:68:A1:69:C2:83:1E:E9:56:8F:F2
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0A32
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/XJhZ1qWuLolfEGihacKDHulWj_I.roa
Signing time: Thu 15 Sep 2022 02:50:37 +0000
ROA not before: Thu 15 Sep 2022 02:50:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17420
IP address blocks: 2403:9f00::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 15 02:50:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5C9859D6A5AE2E895F1068A169C2831EE9568FF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:58:59:ce:3f:3c:74:19:82:5a:a5:1a:d5:01:
cf:06:17:4b:ed:75:8d:24:0b:64:0e:6a:f7:12:d0:
a2:6b:89:da:bb:6d:9d:b9:5a:14:46:41:ab:d4:58:
9e:dc:85:f4:3e:8e:1d:83:a4:8f:b4:70:7e:22:b4:
1d:3c:6a:da:52:68:6a:d3:e5:f9:d2:23:6b:da:48:
02:48:ab:b0:03:97:e2:57:25:12:14:e3:75:fd:31:
b8:00:2f:12:48:31:f9:53:29:bd:ba:e2:95:ee:4b:
cb:4b:60:fc:c1:35:6b:a6:67:78:73:bc:a0:c9:2f:
65:31:ad:a9:f1:9e:57:c6:b0:c5:47:54:d9:75:b5:
78:37:4c:3d:9f:26:b8:b7:f4:ce:2e:9b:d6:b2:23:
23:cc:56:39:52:ec:aa:66:a7:29:7c:8f:29:89:56:
49:c1:a6:ae:d1:b4:a7:73:b7:c2:40:42:25:f6:ff:
47:3b:4c:75:dc:35:37:48:88:c9:4e:91:c0:a3:3c:
3c:8b:11:6e:fc:78:db:d9:94:58:87:f4:3f:fd:68:
6e:01:21:a7:fe:3f:79:f5:78:6b:37:93:b1:e8:c2:
01:dd:88:c4:49:0e:9b:d9:72:f7:48:a5:e8:7b:30:
92:64:13:0c:ae:48:20:d1:38:f2:0c:de:7b:ff:6a:
91:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:98:59:D6:A5:AE:2E:89:5F:10:68:A1:69:C2:83:1E:E9:56:8F:F2
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/XJhZ1qWuLolfEGihacKDHulWj_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
7c:8b:93:29:a0:2f:6b:63:0b:0c:43:b5:60:55:1f:00:c0:e0:
55:44:b4:39:79:33:fc:7b:71:da:0b:7c:3e:95:61:2b:20:77:
98:03:36:9d:d8:51:92:f6:39:7f:aa:8b:ef:05:b2:6d:83:e4:
13:b7:ee:05:0f:ab:aa:3f:ee:0c:ee:bb:b5:03:17:5e:0c:0e:
85:13:a2:bd:4f:d1:40:f1:76:9b:cb:41:e3:f7:cb:69:e4:d5:
b9:96:32:91:42:51:36:1c:af:ec:97:fb:68:bd:64:d8:9a:26:
29:ba:76:93:64:02:d8:29:74:16:2d:14:e9:5d:c8:c5:51:12:
11:de:24:35:8c:a3:2b:53:c8:76:b8:c4:5a:8f:44:0f:c8:5e:
e5:c6:a7:37:49:f3:b7:02:85:b6:a2:0c:c5:5b:4a:61:1d:8e:
5d:d2:3d:b4:e7:ca:82:09:e8:40:b0:aa:a8:44:fa:53:cf:4a:
ab:ea:dc:da:a0:5c:4f:07:0b:77:7e:36:0e:f8:24:69:92:6b:
22:4a:04:67:20:06:c9:f3:85:4e:78:6b:65:93:5a:35:69:7a:
97:77:0d:87:db:d7:c1:08:66:a0:73:7a:57:51:d6:53:ab:a0:
82:10:67:10:69:6e:3a:4d:e4:dc:ca:a2:6c:ee:a1:00:d9:7b:
4b:67:32:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org