Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/HOU8yEy1t26ZgO56zeXEPT-LoZw.roa
File: HOU8yEy1t26ZgO56zeXEPT-LoZw.roa (raw, json)
Hash identifier: 0tGsR8DWauTCs36kwjcEWhW/qQBdW66pOsbsONKD7gk=
Subject key identifier: 1C:E5:3C:C8:4C:B5:B7:6E:99:80:EE:7A:CD:E5:C4:3D:3F:8B:A1:9C
Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
Certificate serial: 05
Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/HOU8yEy1t26ZgO56zeXEPT-LoZw.roa
Signing time: Thu 01 Jul 2021 02:02:01 +0000
ROA not before: Thu 01 Jul 2021 02:02:01 +0000
ROA not after: Thu 30 Jun 2022 07:27:03 +0000
asID: 38853
IP address blocks: 2407:9a40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
Validity
Not Before: Jul 1 02:02:01 2021 GMT
Not After : Jun 30 07:27:03 2022 GMT
Subject: CN=1CE53CC84CB5B76E9980EE7ACDE5C43D3F8BA19C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:26:d6:b8:d3:92:29:6f:f0:ec:7b:84:49:
f0:4b:f8:11:32:88:7c:06:01:13:a4:64:f4:94:62:
f4:5e:67:30:c6:dc:be:4a:da:d0:46:a9:d2:c8:a2:
ae:91:31:ee:1f:67:61:b4:7e:e6:94:d4:52:6a:50:
82:cc:b3:02:0f:91:89:70:60:cb:d3:06:89:3c:f7:
43:ca:11:c1:69:5f:a9:83:ab:91:76:8f:f8:1f:fa:
c3:b3:d7:95:3c:5a:0e:f0:44:5b:33:bb:08:ce:49:
5a:ce:bd:22:f8:ba:0b:d3:71:17:12:60:1c:9d:7d:
1b:ab:37:c3:af:12:68:ba:09:f1:4a:ec:46:9e:71:
48:5c:d7:e7:11:d2:97:cb:25:ba:26:b5:09:1a:43:
0c:91:66:6f:81:55:32:b8:03:52:54:10:6f:fa:46:
6b:98:2c:c8:c7:44:4a:97:3b:f7:81:66:1e:a9:af:
61:0f:34:bf:a8:60:b1:2d:06:c1:a6:0f:7e:b0:c6:
aa:18:a6:f9:5b:bc:2d:8f:05:72:4c:4a:11:0a:c1:
10:fc:cf:c2:46:db:1b:95:76:ff:a0:99:91:bb:00:
66:9c:50:52:e0:50:fd:a4:d3:e4:1f:ea:31:54:29:
b9:dc:23:a0:5a:76:bf:00:74:b7:dc:0f:19:51:22:
a1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E5:3C:C8:4C:B5:B7:6E:99:80:EE:7A:CD:E5:C4:3D:3F:8B:A1:9C
X509v3 Authority Key Identifier:
keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/HOU8yEy1t26ZgO56zeXEPT-LoZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:9a40::/32
Signature Algorithm: sha256WithRSAEncryption
9a:d9:1c:d4:af:7b:40:05:b9:c4:58:93:a6:00:3f:8c:2f:b3:
95:fb:53:75:1c:f5:c1:1a:e3:1f:83:e7:a1:57:62:0b:38:97:
20:99:a4:16:7c:59:98:69:38:93:25:64:c7:f7:2f:95:44:26:
19:09:54:21:4c:2a:73:3e:d0:d1:4f:f2:3c:a3:01:d4:cf:9f:
5c:7c:ab:09:33:c1:f8:32:d1:4e:c1:85:f2:d0:d9:90:9b:31:
46:17:65:26:96:2d:81:09:87:df:e8:c8:6b:ec:00:e9:2c:8f:
40:b7:c6:f3:12:b1:6a:bf:4e:ba:17:d6:8d:4e:9a:da:6c:73:
ce:20:e9:6d:26:7b:8a:21:75:ad:a7:1f:ae:89:76:a0:54:74:
6a:7d:8c:cf:1d:cc:02:3e:f1:d3:ff:bd:b6:31:1e:77:5a:ba:
ad:e1:f7:17:e6:8a:77:95:10:42:d8:2c:e8:85:cc:b7:47:2f:
38:13:79:d1:4e:e9:3e:43:62:c2:64:43:8c:74:a5:a7:e0:9b:
a5:8d:71:f2:9f:a4:6d:c9:8a:97:f3:94:b5:f6:f0:9d:2b:a0:
98:4b:19:78:c6:2c:b8:c2:7d:c4:6d:f7:6d:ba:3e:83:96:96:
4e:6c:38:d6:bb:b0:0e:2a:fb:90:1f:a3:e1:27:42:ff:38:09:
46:0d:1a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org