Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/hNGcppk1CiWAjx43o-4G85vqDNc.roa
File: hNGcppk1CiWAjx43o-4G85vqDNc.roa (raw, json)
Hash identifier: 9Cy3WnNMvS6N6NVvJgbbZi7tHmKHOfO+nfloSjpY1rI=
Subject key identifier: 84:D1:9C:A6:99:35:0A:25:80:8F:1E:37:A3:EE:06:F3:9B:EA:0C:D7
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0A5B
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/hNGcppk1CiWAjx43o-4G85vqDNc.roa
Signing time: Tue 29 Sep 2020 10:05:35 +0000
ROA not before: Tue 29 Sep 2020 10:05:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131642
IP address blocks: 2404:aac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2651 (0xa5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 10:05:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84D19CA699350A25808F1E37A3EE06F39BEA0CD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:01:ac:ec:7e:aa:48:73:2c:1e:60:db:d1:1e:
b7:f8:3c:dc:3a:a4:34:d4:6d:75:30:d9:f3:ad:42:
36:94:f2:40:05:f1:66:7d:63:ed:07:54:e0:64:1f:
ef:e4:07:c3:1f:55:77:6d:d8:3c:85:3b:d6:fb:8e:
ef:67:c0:71:0b:19:8f:68:13:a2:1c:47:64:31:31:
73:cf:1c:72:f4:5d:ab:97:00:df:12:9a:8b:f5:27:
48:ab:1c:79:40:6f:bb:43:3d:aa:05:ee:72:d8:d4:
36:f4:5b:93:54:6b:8f:1b:8b:70:d4:c1:aa:a5:28:
04:96:c5:02:ed:e1:6c:45:3e:7c:8e:ca:17:0a:c0:
e2:31:a4:6f:e9:9f:dc:27:48:a6:b2:fc:f5:1c:4a:
d3:39:bc:37:73:38:70:fb:ff:4a:54:c6:bd:d5:91:
b1:11:8f:60:ea:3f:4c:5f:07:d5:53:82:c0:c6:bf:
1e:7c:da:29:88:ac:78:1c:d4:15:ba:0b:cb:be:3e:
0a:c5:19:61:de:59:5e:74:6b:af:a8:ac:a9:08:6f:
08:6a:8d:4f:75:fa:c5:7e:1c:cd:cd:1f:08:e7:b0:
ec:8b:f9:e2:56:07:9c:e9:e4:95:ab:30:56:57:a7:
43:11:7d:75:dc:9e:4d:3a:ff:b5:97:ff:d3:ca:d0:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D1:9C:A6:99:35:0A:25:80:8F:1E:37:A3:EE:06:F3:9B:EA:0C:D7
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/hNGcppk1CiWAjx43o-4G85vqDNc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
29:3e:f7:49:46:39:f9:27:7c:ea:d0:b7:a7:de:3c:8e:5b:11:
b0:c3:2e:a5:71:d5:22:9b:4b:cc:fc:33:f3:57:d7:8c:d1:b3:
c8:d8:73:dc:b9:1f:67:5d:05:09:dd:d1:3c:c2:1d:e8:16:77:
67:f1:ff:3a:1f:e8:aa:e1:68:03:6f:9d:2e:16:9c:9e:47:d5:
6c:07:0b:fb:5c:59:be:6a:1c:5f:23:7e:c4:c8:32:db:ba:7c:
c8:e4:8c:8c:32:47:30:37:c1:8a:2c:9d:39:d6:df:8f:96:54:
9a:f2:b2:83:dd:b3:08:ac:0f:53:a6:64:ec:7f:92:3f:f5:cc:
bf:35:0f:2a:55:57:a6:67:d3:d3:a8:b0:e7:3b:89:79:36:24:
92:bb:86:1f:c7:1e:9f:4b:3e:7c:2a:fe:ae:f3:8d:25:a8:ca:
82:ab:ee:a4:87:74:41:50:46:60:f3:87:14:8f:00:6d:40:fe:
29:f0:92:b6:fe:62:84:ab:0c:93:aa:ff:c9:53:3d:88:d7:34:
57:98:2c:b3:5c:5c:0b:bb:11:12:f5:a4:e1:ac:5c:93:98:16:
c8:0c:e2:d1:f9:e7:4d:11:8d:14:20:27:31:8e:99:70:8c:1f:
ba:1c:fe:09:2b:88:9c:b2:85:23:58:ab:26:bb:cf:2a:12:76:
95:73:db:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org