Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/5job4Wjauml45cnhehZxJFBddA0.roa
File: 5job4Wjauml45cnhehZxJFBddA0.roa (raw, json)
Hash identifier: oswpTiDcyW23pxwukLwRpaLMr+/Y9NNkdUwxdp38sgM=
Subject key identifier: E6:3A:1B:E1:68:DA:BA:69:78:E5:C9:E1:7A:16:71:24:50:5D:74:0D
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0E43
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/5job4Wjauml45cnhehZxJFBddA0.roa
Signing time: Wed 16 Aug 2023 12:45:00 +0000
ROA not before: Wed 16 Aug 2023 12:45:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131642
IP address blocks: 2404:aac0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3651 (0xe43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Aug 16 12:45:00 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E63A1BE168DABA6978E5C9E17A167124505D740D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f6:2d:9b:25:52:11:ff:1b:ea:84:6e:bd:0b:
95:55:c8:42:66:0c:3d:c9:71:20:2d:ee:83:46:12:
e6:5f:4f:c0:2a:9a:1e:d2:96:e1:90:98:e3:49:83:
6a:5c:11:ed:74:c1:ec:e6:e1:e7:90:bb:c9:09:73:
b1:be:6a:c5:f0:62:7f:de:7b:14:26:93:d0:df:d1:
15:96:31:a8:72:3c:aa:7c:70:25:a4:d1:d5:cb:dd:
9f:58:e5:c3:e1:84:00:fe:26:70:b7:17:01:93:17:
ba:ae:3a:c7:70:09:aa:3a:6c:84:60:36:eb:b2:e6:
35:1b:4f:a1:a0:6f:4f:a3:49:ff:a2:a3:b3:f8:2c:
c2:e6:70:3e:4e:39:e9:57:a8:38:be:f5:4a:54:d9:
8c:7f:1e:94:5c:d1:27:d1:83:1f:0e:cd:12:fa:2c:
af:9a:52:fd:88:d7:b0:00:61:cb:63:8d:8f:c4:d1:
ad:4a:af:29:36:8a:bd:92:27:1c:02:92:ad:6e:0c:
08:64:b4:79:99:47:be:6e:08:b3:f4:d9:14:c9:e5:
fa:07:ae:80:6b:6a:8f:89:26:ff:7b:eb:50:a1:93:
e9:34:4c:69:47:56:ea:21:5d:64:36:26:ff:75:3c:
33:ff:8b:5b:fc:04:bb:8a:ca:39:33:5a:a9:82:31:
b8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3A:1B:E1:68:DA:BA:69:78:E5:C9:E1:7A:16:71:24:50:5D:74:0D
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/5job4Wjauml45cnhehZxJFBddA0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
9c:b9:88:a0:17:c4:0d:6d:71:d1:a3:72:a1:c3:82:75:4b:a8:
fc:86:41:08:25:17:8c:4b:59:99:81:64:e8:e6:99:71:6e:ec:
a8:c5:5c:a3:2d:c9:7b:51:b9:62:bb:c4:10:91:47:6b:68:39:
8d:ee:19:07:9a:cd:26:06:c7:ea:0d:b2:48:d9:da:81:b4:23:
af:39:3d:f3:56:b9:7f:75:eb:97:77:f8:a7:8a:f6:97:bb:3b:
46:06:65:d2:47:1a:13:b4:2d:ff:e0:f8:ef:0c:29:52:bd:53:
88:a0:40:5b:8a:82:87:58:8f:aa:a4:fa:2a:8c:b3:de:30:58:
7f:12:e9:13:bf:bf:cf:b3:c7:28:e0:09:da:35:84:9a:51:a6:
a6:5d:3d:eb:aa:e1:86:43:a3:ad:19:83:14:72:ca:c6:5d:c0:
0f:a8:d3:9f:16:00:25:4b:04:bf:d6:6f:74:a2:5f:63:4e:0f:
39:de:4b:53:3b:da:86:9e:0d:8c:9a:89:44:95:bf:2e:71:0d:
45:b6:04:4f:29:05:f0:f7:6e:55:80:f4:4e:8b:2f:81:75:49:
07:1f:01:de:73:f1:9a:11:81:78:37:51:e4:e2:ca:69:c8:e5:
43:9b:36:53:b7:b3:ba:35:e2:54:04:da:7a:82:7e:c8:ee:a6:
99:7c:a1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org