Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/bjSKYNG9z3srE-WwZSqMM_Irk4I.roa
File: bjSKYNG9z3srE-WwZSqMM_Irk4I.roa (raw, json)
Hash identifier: MGbbxRA/u769JRAd4QkMDweUC3jl1qhn3nAzZfof0nc=
Subject key identifier: 6E:34:8A:60:D1:BD:CF:7B:2B:13:E5:B0:65:2A:8C:33:F2:2B:93:82
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0A61
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/bjSKYNG9z3srE-WwZSqMM_Irk4I.roa
Signing time: Tue 29 Sep 2020 10:05:37 +0000
ROA not before: Tue 29 Sep 2020 10:05:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131658
IP address blocks: 2404:aac0:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 10:05:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E348A60D1BDCF7B2B13E5B0652A8C33F22B9382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:aa:be:8b:fe:da:08:86:be:e3:9c:0d:2c:
de:85:db:0e:17:ae:4e:9e:34:3d:fa:ae:2b:07:42:
ac:02:df:56:1d:8a:44:e2:44:05:48:a8:a4:d2:c5:
eb:6d:2e:b2:fd:69:29:d9:0f:90:a7:e2:7e:94:16:
77:16:16:17:14:3e:cc:f9:69:a8:de:20:07:eb:f2:
37:b8:0e:4a:f1:91:b3:f4:c0:c5:16:22:9a:86:3a:
ef:f0:b6:b4:dd:0f:6d:d2:2a:89:46:1a:1b:89:5d:
69:3e:4d:29:76:4d:da:9b:03:f8:89:2b:44:63:27:
b0:d2:e7:18:a9:f2:c4:4f:d5:7e:bc:2f:bc:b1:db:
fb:18:80:4e:57:8e:9c:9b:a0:44:8d:54:9c:43:8e:
a8:c6:37:73:07:52:b7:07:f3:bd:0d:d9:1d:c8:1a:
ff:66:16:6d:f8:8f:9f:5c:52:81:4b:05:ae:38:e6:
91:f0:35:3c:17:de:e0:5e:ba:d5:dd:76:8f:e0:93:
0a:f8:b9:50:ca:bc:a4:65:de:13:fd:90:39:9a:f6:
ec:bb:0c:f6:e2:bb:97:15:21:9f:1d:20:01:e9:aa:
76:7a:a6:99:3c:27:90:5c:4b:88:15:f4:03:96:9e:
bd:f9:f0:15:5d:83:25:4a:74:38:fb:c7:79:f3:eb:
3b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:34:8A:60:D1:BD:CF:7B:2B:13:E5:B0:65:2A:8C:33:F2:2B:93:82
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/bjSKYNG9z3srE-WwZSqMM_Irk4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0:10::/44
Signature Algorithm: sha256WithRSAEncryption
53:f5:83:5f:53:64:dc:c0:4a:d4:e3:33:57:26:33:e7:95:77:
3b:56:1c:4f:e8:12:ec:a0:96:28:8d:7b:1a:60:3c:34:0c:34:
61:eb:78:bc:02:24:59:ac:0b:e0:fb:c0:39:7e:7b:6c:a0:ca:
6b:a5:d5:cd:a2:c3:d4:ea:d1:d9:14:dd:08:de:a3:0b:43:35:
9e:30:f4:83:b0:ce:ce:f5:48:4d:4c:3e:b0:e6:5a:df:8d:ca:
d3:5d:c2:35:06:7a:9a:7b:81:27:99:42:35:06:d2:f5:78:69:
6e:c8:92:fd:5c:eb:70:40:8d:19:8d:89:ea:3c:66:27:67:df:
09:fe:45:ad:05:6b:d2:cd:64:02:f0:91:c5:19:a5:fc:91:5a:
e2:c3:03:cf:8e:ca:d9:b2:ee:23:c6:67:ac:c3:67:d4:41:06:
26:ad:fb:59:63:90:d3:2c:88:52:02:f9:13:3e:f5:82:4b:25:
43:6f:99:cb:69:70:8b:97:24:de:8c:1f:05:48:a8:04:8d:51:
97:5f:a3:a9:36:e3:18:f2:da:d9:0b:b0:3c:22:a7:2d:7f:41:
29:aa:6b:b4:49:16:54:2c:3e:05:23:a8:a7:00:97:7d:7e:8d:
3c:41:0a:f2:16:76:05:5b:bd:32:a7:00:29:6f:b7:94:31:be:
ba:37:d5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org