Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/IljIc4j1RYwSP2lCJbPhnvtj4e0.roa
File: IljIc4j1RYwSP2lCJbPhnvtj4e0.roa (raw, json)
Hash identifier: bXOXVYzGGJ0ZHZGO9DmiK0ZyO8ObIL+O1ihmuN4+Z9E=
Subject key identifier: 22:58:C8:73:88:F5:45:8C:12:3F:69:42:25:B3:E1:9E:FB:63:E1:ED
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0586
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/IljIc4j1RYwSP2lCJbPhnvtj4e0.roa
Signing time: Wed 29 Sep 2021 02:37:32 +0000
ROA not before: Wed 29 Sep 2021 02:37:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131642
IP address blocks: 2405:cdc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1414 (0x586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 29 02:37:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2258C87388F5458C123F694225B3E19EFB63E1ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:dd:25:c6:1f:2a:2d:27:bf:d5:f2:0a:55:25:
0a:aa:9f:79:5b:21:f5:7b:a9:8e:3a:ad:c4:63:c1:
b0:d2:ba:a9:f2:9b:dd:16:47:ef:b7:af:4e:2b:53:
e2:f4:52:bd:6e:bc:a9:0b:ad:44:53:d7:6c:5a:53:
d8:47:d9:31:1b:d8:e2:6b:b4:b6:d1:4b:d3:97:94:
0b:56:2c:a5:7f:89:18:a2:c1:1a:66:7d:50:ad:ca:
9e:fb:8b:9d:88:b9:7d:98:d6:f5:ea:d6:ef:41:5e:
6e:d0:69:54:ad:7d:92:1f:89:0e:45:18:96:2f:c0:
ed:89:b3:ca:25:26:19:73:2c:8c:8c:a3:ec:be:e7:
49:bb:9e:17:5b:9d:e1:24:bf:21:28:3b:54:75:5b:
a7:05:6b:fd:13:5f:8c:e7:24:81:6f:c3:79:01:48:
84:fd:d5:55:3e:6c:25:59:a2:d1:ce:ef:f7:b0:57:
e0:59:67:d7:e2:31:6c:03:71:35:90:86:69:77:63:
af:e9:74:88:14:62:55:20:42:fc:7a:66:bb:ca:78:
4f:f5:85:5f:fe:95:7f:4a:15:f3:1e:61:d3:bd:ee:
24:95:b4:70:d7:d3:34:ef:66:ac:5d:8d:55:56:d2:
c8:cb:cb:96:f4:ea:c3:44:e8:0b:38:f0:fd:7e:ae:
77:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:58:C8:73:88:F5:45:8C:12:3F:69:42:25:B3:E1:9E:FB:63:E1:ED
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/IljIc4j1RYwSP2lCJbPhnvtj4e0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
7e:da:fa:4a:23:0c:27:de:bd:0d:a8:0f:a4:b8:ec:30:2e:6d:
6c:6f:2d:8a:bc:23:a3:b4:4e:35:68:11:c8:1e:7d:81:a5:f4:
36:f9:12:68:fd:f9:f0:d2:a8:25:9f:04:9f:53:60:23:db:16:
82:a0:b7:ed:eb:49:3d:2c:fa:49:68:ae:a9:a1:93:5a:55:e9:
a5:d5:83:03:52:0a:27:b0:8a:e1:cc:53:8a:bc:fe:2f:2d:2a:
d9:0d:4e:ed:f1:af:b0:9f:d7:2f:fb:9b:b1:48:ed:5d:bd:24:
5d:89:97:64:92:d3:42:1a:6e:3a:ed:b3:f0:b5:95:d4:72:ab:
75:5e:d1:8c:c7:58:12:fb:4c:1a:4a:5b:4c:65:bc:ed:cd:6f:
29:ad:ba:1f:12:3d:a5:7a:80:14:be:b4:38:14:a1:d9:5f:08:
65:00:d0:9f:a8:8e:86:06:f6:93:ab:6e:7b:b6:d3:a2:69:1b:
28:dd:e7:cd:1a:c1:ae:c4:09:43:c8:26:ba:c4:0f:d4:af:0a:
55:b3:12:8d:9b:5a:9c:72:84:69:49:34:4e:3f:21:fa:6f:01:
7e:5d:f9:ed:4a:b3:68:a4:78:a9:8b:9f:73:02:c0:13:39:4e:
76:48:ab:4c:97:05:56:44:8c:ef:88:14:77:51:9b:5a:77:f3:
1d:8b:a6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org