Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/HPXxo8Tx_YXxQ2herf-k2SaiJHM.roa
File: HPXxo8Tx_YXxQ2herf-k2SaiJHM.roa (raw, json)
Hash identifier: pqsNsRvw0Yd+Y8o0rH422I03urEm9WZsYaJoSNO5gMQ=
Subject key identifier: 1C:F5:F1:A3:C4:F1:FD:85:F1:43:68:5E:AD:FF:A4:D9:26:A2:24:73
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/HPXxo8Tx_YXxQ2herf-k2SaiJHM.roa
Signing time: Thu 15 Sep 2022 02:38:08 +0000
ROA not before: Thu 15 Sep 2022 02:38:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 64271
IP address blocks: 2404:aac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1CF5F1A3C4F1FD85F143685EADFFA4D926A22473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:e1:de:f3:dd:12:ed:bf:d3:03:32:dd:0d:
44:ff:ee:d0:01:da:8a:7c:4c:a3:81:4f:0a:98:55:
ad:76:2f:73:93:f4:0f:b5:01:4a:2b:16:87:28:c5:
9c:08:6b:dd:1f:04:c9:6b:aa:16:6a:41:d7:8b:76:
56:de:49:7a:7e:af:1a:6d:d4:56:ef:18:94:e8:e6:
b7:21:b6:a1:b0:f8:42:2b:70:1b:fa:37:b7:13:05:
fa:dd:6f:5b:d5:44:8a:18:e1:00:c5:71:ee:7e:c9:
ca:22:19:51:7a:ce:90:df:09:45:06:d6:9d:17:7e:
02:51:56:14:cd:18:86:f7:ff:7c:35:11:2d:3d:33:
63:b6:22:d9:e1:32:47:29:4a:17:99:02:26:bb:0e:
60:03:bc:0a:48:ef:2a:4f:b7:9d:23:95:f6:73:31:
28:15:be:88:52:07:20:0e:e3:80:8e:0c:b4:2a:e0:
d4:3a:8f:cc:0b:f6:4d:1e:34:73:50:73:12:61:74:
6e:7c:54:16:96:dc:7b:b7:05:a5:c6:7f:ce:28:00:
50:44:3b:fc:23:e8:c5:be:8c:03:84:7b:08:3d:1c:
b4:e5:08:29:6f:77:35:51:87:2e:e8:46:dd:99:a4:
02:92:31:62:74:03:5f:3e:e8:d1:15:43:6c:71:ab:
ed:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F5:F1:A3:C4:F1:FD:85:F1:43:68:5E:AD:FF:A4:D9:26:A2:24:73
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/HPXxo8Tx_YXxQ2herf-k2SaiJHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
ac:8b:0c:f7:9f:51:94:bf:7c:87:f8:ea:81:9a:81:47:20:98:
cc:49:fb:d2:8d:9c:2c:17:08:6c:cd:6b:0b:c5:31:92:75:84:
6d:ea:38:11:73:65:7a:8f:2b:24:f0:82:ea:33:af:11:cc:29:
f3:a6:12:2e:c5:1f:96:b5:85:47:10:2d:fa:dd:af:2e:ab:28:
51:52:3a:84:f3:57:1e:d1:d8:5b:46:84:5c:2d:23:31:a7:f8:
38:88:7c:bb:6f:48:9f:41:a4:67:25:30:b9:a0:2b:9e:65:9e:
5f:ed:55:3d:22:fa:69:5d:3d:c3:b8:52:27:ea:4d:3a:43:a8:
cb:62:16:d0:3c:87:dc:ac:8b:ee:b8:c5:b2:86:94:59:33:cd:
bb:f8:e6:ab:c1:96:22:2b:a8:d7:51:d0:12:52:94:66:02:2d:
4b:ef:4d:a5:4f:bf:3a:be:e1:ab:7f:40:a9:0f:04:04:cd:01:
5b:29:f0:8f:e0:66:60:46:ed:dc:20:c2:74:f3:0d:75:b6:77:
b8:c2:ff:fa:ac:26:81:e9:fa:48:e0:8e:e5:81:67:b4:e5:c6:
44:4b:72:70:32:80:12:d7:47:5c:95:c2:47:5a:11:f3:39:58:
39:fa:66:6a:26:ea:7d:3e:ec:41:f2:ef:fe:25:62:63:a6:3d:
55:38:4f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org