Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/p2pkUzdtJJOiXEzS3jWipBihUf4.roa
File: p2pkUzdtJJOiXEzS3jWipBihUf4.roa (raw, json)
Hash identifier: jBdt+rPpaN8zSZp2A4XPxdF3tb9FDBwQLiYBcsC8w/I=
Subject key identifier: A7:6A:64:53:37:6D:24:93:A2:5C:4C:D2:DE:35:A2:A4:18:A1:51:FE
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1104
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/p2pkUzdtJJOiXEzS3jWipBihUf4.roa
Signing time: Thu 15 Sep 2022 02:50:53 +0000
ROA not before: Thu 15 Sep 2022 02:50:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131631
IP address blocks: 2403:aac0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4356 (0x1104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 15 02:50:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A76A6453376D2493A25C4CD2DE35A2A418A151FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e4:20:48:d9:6d:fd:1d:40:cc:df:ce:68:0b:
b6:8d:16:5c:4a:9d:a2:7f:ad:78:d2:51:70:87:65:
12:a8:01:12:8a:bb:25:be:cb:4a:c1:ac:a8:26:b1:
c1:d8:46:42:dc:4f:1f:a6:e9:af:7f:33:38:a5:a9:
69:e5:4a:c2:0b:ab:96:84:56:9a:72:fd:90:99:e6:
91:87:ac:e8:b2:a0:57:e9:8a:1a:50:2e:81:73:b2:
2a:86:ad:ba:e9:12:8c:d5:67:18:16:18:c2:8c:5f:
7b:03:50:d1:b3:70:46:25:69:d1:86:5e:fe:5a:e0:
24:b6:07:aa:6c:bb:d7:26:81:91:1e:6d:b4:1c:1e:
18:43:d8:95:b0:d0:09:a6:3d:bc:db:e4:e9:b5:a8:
29:6c:06:b5:71:c6:f4:d2:5c:6b:5b:15:4c:9a:2d:
df:b2:aa:de:02:7f:94:b0:fa:e0:2c:0c:45:18:4b:
08:a6:02:a1:d3:68:7d:c3:4e:24:9d:e1:35:b8:10:
86:b4:50:d8:18:4f:17:38:82:ec:d8:c6:a3:37:98:
04:b6:4e:22:d3:04:5a:01:8e:82:a7:fe:38:01:a6:
18:68:42:10:8e:9e:7b:56:29:b0:b1:83:80:f9:2d:
88:ae:04:0a:fa:f3:c7:d2:7c:90:28:87:9b:55:2a:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6A:64:53:37:6D:24:93:A2:5C:4C:D2:DE:35:A2:A4:18:A1:51:FE
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/p2pkUzdtJJOiXEzS3jWipBihUf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
d1:8e:1e:92:35:69:79:04:22:e8:cb:dd:6a:06:21:09:84:5d:
1b:b8:f2:20:b4:11:af:72:f5:21:74:00:14:69:38:ea:33:c6:
e2:25:55:75:5e:70:4d:7b:07:e0:1b:39:7b:13:70:83:f2:05:
e4:ff:d6:3d:3c:5f:39:d4:5e:f6:01:15:65:fc:f8:e6:6a:5d:
56:fb:57:8d:ee:d7:85:d5:60:30:cb:5c:40:66:92:be:bf:e0:
8f:6e:d4:cb:44:0b:a1:91:98:cd:31:59:71:8c:79:e2:33:cb:
ca:40:71:e8:d0:92:29:9f:17:57:8d:4e:a1:22:22:72:59:1f:
82:41:32:9d:8a:61:b4:9d:aa:9e:8b:00:d0:17:b7:6a:be:77:
00:f3:02:a1:53:c2:69:79:47:f0:2c:00:80:28:51:d0:01:f8:
e3:89:df:80:01:62:c1:b1:b6:2a:8e:65:d9:65:61:b7:09:a3:
41:de:1b:9b:39:76:ef:a3:03:29:5d:2d:04:2a:d4:6c:da:76:
61:1b:a1:6b:b0:6f:73:d2:07:a3:5e:d7:22:a1:5d:a2:73:57:
fe:02:0b:ec:7b:a2:eb:72:1c:94:05:11:fb:fc:72:97:20:ba:
bf:2c:fe:b6:85:08:db:54:d2:f8:8a:9e:93:44:a9:0c:3c:28:
71:78:3a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org