Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/uUvB9N1pI-i-OdO-8hFcq27ivn4.roa
File: uUvB9N1pI-i-OdO-8hFcq27ivn4.roa (raw, json)
Hash identifier: ZcehNuvTDEYjTHx/jPKGSOTy6oiX+4jnQsc2zI8UmXI=
Subject key identifier: B9:4B:C1:F4:DD:69:23:E8:BE:39:D3:BE:F2:11:5C:AB:6E:E2:BE:7E
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0948
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/uUvB9N1pI-i-OdO-8hFcq27ivn4.roa
Signing time: Wed 29 Sep 2021 02:52:58 +0000
ROA not before: Wed 29 Sep 2021 02:52:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17420
IP address blocks: 2403:9f00::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2376 (0x948)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B94BC1F4DD6923E8BE39D3BEF2115CAB6EE2BE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e5:21:7c:a7:33:c3:74:9d:9a:ca:51:ad:80:
41:a3:8a:c8:74:4c:19:56:ae:3d:7f:d2:8e:82:4f:
9a:f4:86:53:5c:a3:f1:e7:ed:17:ed:d4:10:99:c8:
23:1c:6f:6e:9a:42:e8:d3:e1:ae:44:3b:bf:47:33:
76:f2:a4:e4:ca:96:ff:26:63:72:69:03:c0:fb:92:
c9:0c:d0:30:27:fb:c9:dd:36:1c:9f:10:ef:51:9e:
e2:67:f5:69:65:83:82:5f:db:bd:34:17:7c:76:bf:
6d:81:5d:a9:44:53:8d:d0:10:25:9f:2d:27:3c:01:
af:69:9e:0d:97:6b:94:f9:f1:cf:80:0b:01:57:db:
62:03:de:15:c7:e5:5c:9b:d3:d5:a5:9f:dc:0d:04:
a5:e3:16:2e:9f:93:62:95:37:0f:f7:56:ef:d9:ec:
26:3e:ee:cf:91:c7:3a:14:4f:21:b2:55:66:f9:35:
b6:d5:1f:83:e3:5b:a8:49:ee:3a:bd:c6:c2:a0:e2:
99:39:25:82:f1:0b:1d:92:be:62:4b:0e:f6:e0:a6:
43:1b:b8:8a:5a:38:7a:2a:71:cd:87:b4:dd:a8:bc:
3c:c6:95:d9:a1:ac:19:24:3b:55:5e:9f:74:92:8d:
ab:8f:fa:2c:9e:8c:9c:67:3e:ea:2d:21:11:46:53:
1b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4B:C1:F4:DD:69:23:E8:BE:39:D3:BE:F2:11:5C:AB:6E:E2:BE:7E
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/uUvB9N1pI-i-OdO-8hFcq27ivn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
30:6a:d5:a0:35:53:a9:76:d0:7e:01:5c:4b:89:84:1c:c3:7c:
ad:17:b9:cd:ee:b0:14:36:a2:6e:54:5d:81:22:5f:8c:09:27:
4d:44:db:94:40:46:2d:9f:29:b4:83:d0:a6:be:39:42:30:2c:
b5:d0:e9:f3:d4:a5:ac:0e:42:f6:e0:43:9b:5d:4c:c1:14:bb:
22:91:b1:7b:68:16:b2:52:a1:c1:3d:af:b2:42:9f:74:75:8f:
0c:56:0b:c4:dc:cb:eb:f2:f3:b7:85:10:e3:65:9f:5b:74:95:
54:35:8f:70:2c:ed:70:64:25:37:25:99:05:3d:97:68:77:49:
1b:ac:1f:0b:54:2d:85:c4:d6:b0:21:f8:bf:cf:d2:74:e2:6d:
19:f1:ad:81:cb:97:3f:63:e3:2e:00:77:05:c8:8c:9f:59:a2:
bd:3b:c6:67:b5:22:7d:83:aa:5a:26:98:0b:13:e6:6a:0f:ff:
d9:aa:1c:21:8d:d4:42:23:21:ad:37:e4:e1:1a:59:a1:a1:44:
dc:0f:d9:27:13:7e:fa:ec:09:ed:b8:03:0f:13:99:6a:29:82:
82:b0:e0:49:b4:04:99:6b:2f:1d:43:56:94:e0:8b:99:ab:2b:
7e:6a:5b:31:a2:8b:97:50:4b:1a:46:f5:da:d0:a5:68:12:c8:
71:f1:fd:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org