Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/vzaRIIY2w3qnByZvN1S2Q5bYZIw.roa
File: vzaRIIY2w3qnByZvN1S2Q5bYZIw.roa (raw, json)
Hash identifier: dvQhcaMWiuBDar//l7qdLAPSIb16y+X0JF6zuEGpbHE=
Subject key identifier: BF:36:91:20:86:36:C3:7A:A7:07:26:6F:37:54:B6:43:96:D8:64:8C
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0774
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vzaRIIY2w3qnByZvN1S2Q5bYZIw.roa
Signing time: Tue 29 Sep 2020 09:51:40 +0000
ROA not before: Tue 29 Sep 2020 09:51:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38843
IP address blocks: 2400:b380::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 29 09:51:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF3691208636C37AA707266F3754B64396D8648C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:44:3f:41:e4:10:e0:8b:0c:e2:76:69:bf:
8d:1c:91:84:2f:b9:40:6f:da:7f:20:8d:3b:d3:28:
f9:3f:56:b4:00:21:6d:20:be:2e:09:3c:a3:67:70:
34:b0:97:6c:c7:6b:ab:69:16:f1:f2:87:d8:de:a3:
c1:ac:da:33:10:6b:c3:fc:32:a9:12:4d:b5:dd:1a:
95:02:90:fa:c4:ca:ff:0b:96:b1:f3:18:b5:47:27:
d8:52:15:31:cc:60:95:5a:4e:7a:56:37:1c:c6:74:
4c:e6:f7:7c:ef:d0:73:11:04:7d:1f:10:5d:66:ac:
4b:c9:04:8d:94:af:1d:4f:79:76:9f:d3:71:c7:dc:
5b:da:ac:7c:61:17:84:a2:37:c0:74:3d:6f:da:57:
4d:1d:36:fa:c3:63:ec:b0:6e:a8:16:c2:ba:45:4a:
35:19:61:6e:12:bc:27:af:7c:01:8e:e4:a1:93:07:
1b:2a:71:d8:6f:6e:1f:cd:b0:79:cf:34:d5:ec:f3:
2c:0d:7d:06:15:ca:20:bc:6d:8f:83:cd:6f:87:d6:
81:c7:0a:ce:80:44:51:48:e1:d7:03:2b:5f:a9:e2:
5b:d3:32:fc:8a:2b:60:75:a8:d9:3e:52:64:ce:23:
5b:3c:e7:64:d1:71:3f:d2:fe:b4:70:0b:57:3c:8a:
39:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:36:91:20:86:36:C3:7A:A7:07:26:6F:37:54:B6:43:96:D8:64:8C
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/vzaRIIY2w3qnByZvN1S2Q5bYZIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b380::/32
Signature Algorithm: sha256WithRSAEncryption
6f:8a:72:e1:42:64:65:ec:29:7a:ed:1c:f5:e7:58:83:e2:1a:
49:04:15:46:7a:78:a7:01:be:14:e2:06:5d:14:cc:3c:4d:4b:
b2:cc:66:2d:d9:d4:c4:06:6f:c1:6c:c7:93:3e:b1:03:07:be:
7a:ed:5e:83:39:0d:b8:10:8d:2a:8c:19:64:6b:d7:bb:d1:61:
a6:c5:ad:c3:cc:25:ca:eb:a8:ed:db:65:b0:65:de:c2:65:c0:
29:50:a3:a3:ef:8a:3e:23:7f:45:aa:b8:e2:d9:b7:0e:32:4c:
67:96:e5:60:bf:84:19:0a:96:e1:a7:ed:32:19:18:4f:d6:e1:
cc:b8:3f:e5:50:e6:0b:c7:2b:48:25:26:b3:02:bb:54:cd:71:
be:d1:41:cf:d8:7b:ec:01:73:7f:7f:25:30:36:13:ef:c0:e3:
a4:01:6f:6c:8b:46:a9:97:75:f9:05:3d:97:b0:97:d6:dc:99:
10:bd:83:ee:dd:29:25:be:a8:d1:8c:77:3a:fa:87:7b:4b:13:
c6:a1:64:d6:4e:06:66:b3:5c:66:7e:b3:c0:6d:1c:d1:48:04:
df:05:11:87:e2:40:20:98:4d:92:cb:94:f7:6d:6c:00:85:6c:
61:52:c3:ee:72:6b:af:2a:e4:7f:b2:ee:c7:0c:36:14:2f:1e:
42:74:ac:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org