Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/0W1WsCHQIO9EIlLV6vNrsEvXZ-k.roa
File: 0W1WsCHQIO9EIlLV6vNrsEvXZ-k.roa (raw, json)
Hash identifier: qCLiFNvaXQHLmi2eJ3FJ6uHAp2RJTrOWUYPJKN4ZdDE=
Subject key identifier: D1:6D:56:B0:21:D0:20:EF:44:22:52:D5:EA:F3:6B:B0:4B:D7:67:E9
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0C68
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/0W1WsCHQIO9EIlLV6vNrsEvXZ-k.roa
Signing time: Wed 29 Sep 2021 02:37:20 +0000
ROA not before: Wed 29 Sep 2021 02:37:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131658
IP address blocks: 2404:aac0:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 02:37:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D16D56B021D020EF442252D5EAF36BB04BD767E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:73:cd:09:ea:ca:82:d9:78:9e:27:37:60:ff:
fe:e2:e9:55:19:bb:cf:fd:8a:b8:50:60:53:16:fd:
83:1c:e8:f9:ae:1d:95:80:d8:02:e7:a7:b8:93:3f:
b5:8f:4c:e5:38:90:d4:e1:92:3c:e5:02:e4:d9:64:
a3:8e:a3:1e:8d:18:2d:24:7a:79:ef:6d:b6:ae:65:
61:d6:7c:ed:77:41:2d:46:17:bd:83:07:4c:3f:9c:
eb:a2:3e:35:89:de:51:55:80:2b:ad:bc:6c:c3:96:
0c:ae:ae:0e:b4:6b:bc:b9:33:06:18:d3:e8:9e:c8:
5a:4f:f1:08:f0:28:95:55:1b:03:bb:75:0c:dc:aa:
00:95:df:35:80:f0:9c:86:45:af:96:fe:41:b8:33:
a0:3a:27:62:33:f0:bc:b3:7d:a7:41:13:47:ad:e3:
9b:68:56:bc:5d:ab:dd:21:ca:db:3c:16:e6:1e:ef:
a2:e6:84:ce:3e:0a:a1:d7:31:fd:60:94:b8:d4:d7:
63:1e:fb:c2:17:7a:3a:7e:74:be:5c:18:bc:b3:49:
a8:0a:02:de:05:9d:58:06:bb:74:9a:33:48:09:a9:
04:3a:b0:6a:4f:75:0a:9d:42:7a:0c:0f:e6:e8:88:
10:b4:ac:7a:11:a4:b3:fa:e5:3b:02:16:5f:9b:1d:
c7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6D:56:B0:21:D0:20:EF:44:22:52:D5:EA:F3:6B:B0:4B:D7:67:E9
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/0W1WsCHQIO9EIlLV6vNrsEvXZ-k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0:10::/44
Signature Algorithm: sha256WithRSAEncryption
5a:5d:07:53:08:e7:10:39:40:35:44:48:b3:16:f6:d1:ae:da:
d1:fc:8e:dd:20:10:fb:de:1a:56:74:7b:8f:36:d5:2a:aa:3d:
a8:0d:22:ff:d0:ae:fd:1b:59:f1:f2:9d:11:d4:cf:cc:00:38:
1e:32:69:c7:c6:9c:e8:d3:19:ec:c7:c4:97:22:89:1a:29:7d:
d3:64:c2:b1:6e:5e:a1:83:53:58:5f:49:bd:45:d2:30:5a:85:
ff:10:76:f2:0d:9f:c5:97:a5:a8:7d:05:f1:c7:56:0b:4e:b9:
69:60:a9:e1:e5:90:6d:47:2d:3d:14:9e:1d:1f:8c:ba:82:20:
a9:5c:54:a6:f4:5a:71:98:30:56:c9:0c:6d:9d:f5:7d:08:c0:
f3:08:6b:ba:a1:a0:1d:d1:12:1c:98:11:cb:4f:8b:d7:5c:20:
9e:34:ea:cd:4c:cf:9c:7c:06:65:af:1d:a0:1a:b1:5e:74:d5:
07:87:c7:fa:9f:0e:5d:a4:7d:81:c7:9e:38:3f:50:ed:97:76:
48:9c:c7:8f:a0:ef:7d:fb:ae:4c:a6:13:43:04:48:fe:ba:c4:
4a:d2:d1:36:d3:d3:3a:f2:17:9a:7a:5b:a2:f3:50:78:d6:0c:
f2:c7:b7:f5:d2:1e:b8:13:4a:c5:f5:0b:85:72:b3:8e:52:fb:
81:80:af:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org