Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/Eo11rbU1pAxnj0C-boM9AbEaPXM.roa
File: Eo11rbU1pAxnj0C-boM9AbEaPXM.roa (raw, json)
Hash identifier: 2DwVOfTM3q6GMIAh3qvxzlpqFvEYA9jz7wYTSAmzUqc=
Subject key identifier: 12:8D:75:AD:B5:35:A4:0C:67:8F:40:BE:6E:83:3D:01:B1:1A:3D:73
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/Eo11rbU1pAxnj0C-boM9AbEaPXM.roa
Signing time: Thu 15 Sep 2022 02:38:08 +0000
ROA not before: Thu 15 Sep 2022 02:38:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131642
IP address blocks: 2404:aac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=128D75ADB535A40C678F40BE6E833D01B11A3D73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f5:e6:58:21:0f:5b:12:eb:30:ad:59:4a:aa:
7b:3b:87:79:87:5c:7c:5b:71:45:dc:d8:a8:cb:06:
95:41:53:cc:aa:fc:11:29:63:8f:df:71:d2:10:6f:
98:69:45:1d:e7:21:55:32:36:23:99:1c:1e:01:c9:
eb:0f:80:4b:e0:d4:f8:8a:84:cf:4f:69:09:cb:51:
e5:11:12:1d:36:7a:f8:03:c3:cc:da:da:72:e5:21:
67:38:b3:87:ba:d4:e9:92:94:76:74:de:3c:b6:e8:
1b:17:f9:6d:08:30:b2:d7:d3:8a:43:68:03:c1:a8:
7d:90:8d:d7:6c:82:33:c7:6d:01:dc:f6:6b:b2:ce:
4e:bd:15:82:86:e7:d2:ec:a1:ed:f5:ae:a2:fd:17:
50:e4:fd:29:ea:44:91:cc:0c:55:c6:5b:79:3d:4c:
30:da:24:7d:a8:29:15:61:cf:7a:cb:e5:51:5c:d5:
4b:85:35:08:d6:ff:23:12:92:99:0b:53:0e:b1:a6:
bb:77:03:2b:0a:b8:9b:e6:6e:d4:ef:91:4b:59:c3:
85:83:e7:ca:55:25:f3:f0:85:c4:e0:91:10:ee:f0:
7f:c0:f4:9b:c8:87:17:64:2f:7a:2d:19:c5:c1:b5:
76:76:14:1d:fd:fe:fd:9a:74:e9:c3:8d:b5:5b:a5:
c4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8D:75:AD:B5:35:A4:0C:67:8F:40:BE:6E:83:3D:01:B1:1A:3D:73
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/Eo11rbU1pAxnj0C-boM9AbEaPXM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
d5:e1:b1:e2:a3:67:c5:26:3d:3f:73:be:3f:30:c0:9d:19:d5:
da:64:dd:3c:67:73:16:81:b0:2e:92:bb:dd:eb:e2:a4:b9:3a:
4f:32:63:d8:0f:79:e1:68:05:ae:ca:50:04:6d:61:b4:36:64:
05:02:32:9a:3b:91:84:72:9e:87:06:d5:20:02:19:86:e6:4d:
e2:5b:2e:83:e8:47:b7:7d:50:f8:09:c6:0f:79:64:6b:60:e8:
fb:f1:23:02:6a:d3:fb:16:98:6e:f2:c5:aa:0d:ba:0c:cd:b1:
a3:c4:ef:98:b5:08:11:a8:43:54:46:ea:78:1f:a2:db:e9:c8:
bc:7e:cf:55:96:0f:84:9b:7c:c7:34:dd:81:f4:08:0f:ef:e7:
59:18:7b:ad:66:24:07:f2:e6:96:59:03:db:19:16:02:82:fa:
e6:d9:0d:21:51:89:9c:f6:d2:3a:36:4d:50:f2:ec:d2:65:52:
a4:0d:c6:eb:70:aa:17:85:64:41:90:cc:d7:c6:c3:01:f7:68:
77:de:0e:0c:eb:78:1d:89:71:12:81:fe:30:93:63:c6:b1:02:
fe:ff:be:f4:03:0a:0e:e2:8b:24:3e:76:58:4b:e0:fd:c9:3f:
7f:58:26:18:ff:65:e5:4f:83:d3:ef:71:1c:ba:ee:1d:26:03:
9d:2d:5b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org