Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/vC9O1UfsooitXIED-zZppG_J7_4.roa
File: vC9O1UfsooitXIED-zZppG_J7_4.roa (raw, json)
Hash identifier: mpvyX6A0/Itcf+VOk7EBq7Tnl5yYoel5g/7CP4kP9eA=
Subject key identifier: BC:2F:4E:D5:47:EC:A2:88:AD:5C:81:03:FB:36:69:A4:6F:C9:EF:FE
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 087A
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/vC9O1UfsooitXIED-zZppG_J7_4.roa
Signing time: Fri 29 Jan 2021 11:54:38 +0000
ROA not before: Fri 29 Jan 2021 11:54:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131633
IP address blocks: 2403:86c0::/32 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2170 (0x87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Jan 29 11:54:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BC2F4ED547ECA288AD5C8103FB3669A46FC9EFFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5c:49:91:68:3a:4e:ff:bc:f0:d7:1c:5f:3d:
00:1c:4d:3e:af:ee:b4:7c:f0:21:7e:90:cf:60:7c:
54:2b:45:43:19:4a:2e:e1:66:74:f4:58:df:00:90:
64:d1:fa:36:02:82:b6:d2:80:fa:06:35:ce:c4:3f:
1b:3c:52:b5:12:c1:1e:51:b0:5e:6a:96:5c:bd:a0:
af:b3:52:22:15:00:13:0c:ab:7f:bc:53:89:c0:2b:
4a:1d:cb:ae:82:70:4e:56:59:3f:38:18:d6:a9:24:
cf:e8:73:0e:b9:8d:d5:61:1a:e6:48:e6:b1:fc:e9:
6d:44:f1:46:27:51:c8:5c:34:78:a2:9a:9e:95:c5:
65:29:7f:06:49:3c:26:f7:cd:55:7f:f6:d9:8c:ce:
a3:dc:c2:70:aa:41:f3:cb:d2:ff:23:7a:36:c3:d4:
81:c1:88:e3:68:b7:52:09:83:20:2d:e1:a5:fa:3f:
d4:fe:55:92:41:3c:70:52:8b:92:47:4a:9c:80:d1:
9a:32:41:9d:a0:49:ec:0c:15:d6:d7:06:a4:70:6e:
4e:57:d9:46:7b:ce:7a:a3:b9:3c:1f:cf:ad:8b:a9:
93:9d:5f:b4:9c:46:20:5f:dd:ed:31:74:db:68:d3:
52:ec:ff:75:2e:1b:99:9b:46:bf:0e:08:8e:bb:bd:
b6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2F:4E:D5:47:EC:A2:88:AD:5C:81:03:FB:36:69:A4:6F:C9:EF:FE
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/vC9O1UfsooitXIED-zZppG_J7_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:86c0::/32
Signature Algorithm: sha256WithRSAEncryption
99:3b:5f:ce:64:c3:c8:ac:db:88:af:57:a2:0a:1e:7d:8a:ba:
bb:ae:35:17:55:22:29:99:b5:61:d6:c6:18:35:25:80:91:b7:
f0:a6:02:ab:ae:05:91:18:96:7b:b2:4c:4f:2b:6d:1b:71:1e:
16:36:69:d4:0a:3b:05:07:28:a9:44:b1:cc:e5:d0:67:f7:6c:
82:dd:f5:55:2f:d6:e3:e6:0c:cd:e9:df:e2:e8:6f:be:dd:c0:
58:f4:d2:d4:aa:77:47:da:6e:b4:41:f8:11:4c:01:3f:d5:3d:
bf:9f:f3:d7:5e:bb:be:4f:21:43:b5:8c:8d:9f:f6:08:b9:4a:
f9:c7:b5:c8:7b:f4:95:74:87:63:50:b8:e7:7e:59:18:d2:c7:
c0:f1:87:01:95:28:9f:aa:37:67:f7:0d:87:72:3e:b3:ac:b2:
56:df:40:02:e8:1e:f2:b3:8c:f0:35:ad:60:39:77:b3:e5:c4:
c1:bf:2c:09:77:8d:75:f9:f6:d9:92:b0:c3:b8:c3:34:5d:82:
7a:33:97:27:bf:31:d6:b4:67:2e:77:69:0b:89:ba:1d:a9:a9:
b0:95:1d:94:c9:a6:3b:c3:26:6f:ee:78:62:ca:a4:a3:fd:81:
9f:3b:c7:a0:3a:e4:25:e7:75:ce:85:b5:48:4a:d9:64:1d:d2:
b7:c1:b5:88
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:08 2025 by rpki-client