Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/sLPClksji3B9_YKzHKXBIOdi_H0.roa
File: sLPClksji3B9_YKzHKXBIOdi_H0.roa (raw, json)
Hash identifier: DOjRnGe0BTTvBspDXvc9ofnCJahPHqzNQAOPzTh7BFY=
Subject key identifier: B0:B3:C2:96:4B:23:8B:70:7D:FD:82:B3:1C:A5:C1:20:E7:62:FC:7D
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 10
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/sLPClksji3B9_YKzHKXBIOdi_H0.roa
Signing time: Mon 13 Apr 2020 13:48:17 +0000
ROA not before: Mon 13 Apr 2020 13:48:17 +0000
ROA not after: Tue 06 Apr 2021 07:42:14 +0000
asID: 131642
IP address blocks: 2405:cdc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Apr 13 13:48:17 2020 GMT
Not After : Apr 6 07:42:14 2021 GMT
Subject: CN=B0B3C2964B238B707DFD82B31CA5C120E762FC7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b8:ad:f5:fd:38:9b:f1:97:2c:0f:9c:81:b7:
ac:17:47:d5:20:22:66:de:d9:7b:c5:bc:6d:35:06:
ee:95:6f:62:04:8d:64:46:e1:ce:11:55:7a:ba:75:
4a:f9:29:9c:ab:6d:85:ff:1a:40:70:26:58:e0:52:
38:53:d8:d6:32:5a:90:59:06:b6:cf:4c:c6:fa:8e:
ee:7e:68:0d:68:b7:c1:2e:cb:4c:f2:d5:b3:93:3a:
cd:a0:92:54:a0:7a:d6:54:d1:78:9f:39:46:67:13:
b8:ff:1b:45:23:36:77:20:c1:7b:20:38:b9:7b:5d:
1a:f8:7f:1c:d8:47:7c:70:85:f7:a2:7f:18:4a:a2:
38:32:91:2b:02:72:fb:3d:88:e2:f0:29:28:66:b5:
3e:38:42:6a:bb:7f:c7:0e:1f:50:91:ac:09:1b:82:
ca:e2:62:f9:c4:fb:c3:51:cf:51:bb:7e:c6:72:1f:
57:ec:79:10:db:e3:08:56:c3:8d:90:18:85:cc:12:
2c:0d:dd:ab:af:42:cf:c5:4a:70:71:30:21:e6:d5:
12:20:02:69:26:1a:18:21:d8:c6:fa:4d:be:f3:f8:
82:d3:f1:b8:b7:ee:a7:c2:53:f9:cb:eb:37:36:ce:
97:20:44:45:3b:1a:17:dc:80:70:c4:cf:aa:31:0e:
f2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B3:C2:96:4B:23:8B:70:7D:FD:82:B3:1C:A5:C1:20:E7:62:FC:7D
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/sLPClksji3B9_YKzHKXBIOdi_H0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
bd:b1:ea:19:2c:90:c4:81:b4:19:91:df:d5:c0:d0:38:13:54:
e8:3c:ec:58:15:68:bd:fa:d0:0a:48:00:37:38:e4:82:1b:d9:
8d:cc:cc:94:9e:e4:d7:73:ff:02:6f:f5:0a:e2:db:bd:22:af:
c6:8e:9b:0a:21:9f:f9:d3:36:67:fb:a6:92:e8:a3:71:26:71:
c1:2c:f5:78:36:0a:1e:5c:f6:2e:ba:8e:49:da:c6:32:e8:4b:
1c:1e:63:9d:48:22:29:8a:73:0d:4e:12:f4:c4:81:c8:40:c1:
4f:c1:8e:1b:7c:0a:0c:b2:dc:90:63:bb:a4:37:61:79:3f:be:
3a:a9:29:6c:d7:6a:da:ba:f2:47:fc:80:da:22:a0:c8:5c:5b:
27:21:91:f1:24:a7:50:9f:73:b8:9c:2b:33:09:4c:fa:ae:d0:
fb:f2:ce:a2:4e:40:b3:78:c8:f8:0e:87:c0:44:7e:c3:ef:0d:
33:d2:35:e7:de:93:26:bd:1f:2c:de:df:0d:ab:59:ff:ea:64:
e7:26:37:ac:ce:ca:08:6c:8a:40:bd:f3:d9:0b:85:a3:7d:a8:
20:8f:a0:aa:81:40:0e:c6:d6:16:fc:b5:af:18:6f:b0:f6:0e:
2d:2f:4f:c2:aa:f1:ea:98:a3:2d:b8:42:9d:e8:fb:9c:43:81:
ed:d0:b6:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org