Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/6VyuNj--7wHuBY1x-5IwHRM4ZLI.roa
File: 6VyuNj--7wHuBY1x-5IwHRM4ZLI.roa (raw, json)
Hash identifier: ZZSe4rydi7A0P9NTVLXpZH8/dQ63qVB4o6ZittyEnLA=
Subject key identifier: E9:5C:AE:36:3F:BE:EF:01:EE:05:8D:71:FB:92:30:1D:13:38:64:B2
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0A0E
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/6VyuNj--7wHuBY1x-5IwHRM4ZLI.roa
Signing time: Thu 15 Sep 2022 02:47:45 +0000
ROA not before: Thu 15 Sep 2022 02:47:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131633
IP address blocks: 2403:86c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2574 (0xa0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Sep 15 02:47:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E95CAE363FBEEF01EE058D71FB92301D133864B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:31:2a:e6:b7:d2:81:a0:e4:df:8e:18:e8:9a:
c5:85:a4:9d:ef:d8:9c:e4:d5:24:78:ae:14:6b:0d:
f0:c5:85:89:12:4d:96:94:1f:c2:16:12:73:6a:a2:
d7:bc:c0:dc:68:38:6b:64:7d:d3:99:3a:c0:15:65:
39:58:11:cd:9f:ce:cd:2c:cd:93:e3:9a:b1:f1:88:
44:f9:05:1d:d2:d1:d6:3d:a7:af:a5:9c:43:90:7f:
51:42:7f:bf:02:e9:d0:39:98:f9:4c:1e:fa:2f:e5:
a1:b8:5a:ed:ce:86:d7:a6:08:92:01:49:bb:59:08:
d5:6b:99:fd:ed:f0:7c:e6:90:11:34:f6:23:fc:49:
18:3a:36:8f:78:bd:87:7d:38:aa:7d:3f:51:2b:82:
f2:96:a8:bd:fc:f4:44:4f:d6:a8:31:9c:5f:90:e0:
bf:df:81:29:b3:16:6c:d2:97:b4:cf:a0:81:45:ca:
0c:c1:3d:d6:fd:4b:c0:7c:b6:11:07:1d:40:5d:97:
54:d3:7a:ce:76:17:5e:ba:93:9a:2e:a9:06:35:e2:
31:55:06:61:94:d3:7a:dd:14:e5:2d:c9:00:bb:6d:
9a:e4:6a:f0:f6:4e:fe:17:a3:ac:8a:8a:02:da:17:
80:45:8e:af:8b:c1:f7:e2:1a:d3:5d:a1:e2:b3:7c:
8d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5C:AE:36:3F:BE:EF:01:EE:05:8D:71:FB:92:30:1D:13:38:64:B2
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/6VyuNj--7wHuBY1x-5IwHRM4ZLI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:86c0::/32
Signature Algorithm: sha256WithRSAEncryption
a5:40:be:c6:f2:bb:14:74:76:1b:6d:67:26:ad:36:b6:87:d5:
90:70:5b:47:10:fb:4a:36:fb:56:36:03:91:cc:72:fa:ce:a9:
49:1a:36:87:07:1e:13:3f:5f:77:3e:d0:e8:c6:2e:aa:37:c7:
8f:4b:83:cd:66:29:58:b1:d5:c0:17:27:60:05:b2:ed:05:61:
e7:29:99:32:d6:a0:cd:3f:7b:43:35:de:34:69:9e:9b:d7:3c:
0b:c0:06:27:d1:45:4d:46:e8:37:d7:e2:56:a6:6e:8d:7f:3b:
5d:0e:6f:11:05:fc:66:07:d6:ee:ec:fe:04:62:57:3a:6e:de:
1d:2a:10:ce:9e:1d:6c:b4:8c:04:de:b5:70:e3:d8:78:dd:8d:
a2:c3:23:2e:97:d2:ab:c3:88:85:e4:68:d8:29:a6:84:80:8a:
06:d4:dc:6c:bf:8c:17:12:e3:7b:b8:ce:fa:a7:9c:4a:c9:27:
2d:c5:9c:b6:a2:31:d2:da:2c:4c:9a:42:6a:e4:43:43:78:c1:
5a:1d:e7:19:9d:08:a1:42:95:3d:2c:e8:10:89:a9:2c:27:8a:
23:8a:1e:61:70:7b:83:b0:f6:69:8d:e5:f0:d7:e0:bb:75:58:
5e:49:57:50:53:6c:e9:5b:70:41:dd:a9:c6:a0:91:47:61:f0:
1b:33:21:9f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org