Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/vUkm3087t4eeTePg7KJ5QqUiMPA.roa
File: vUkm3087t4eeTePg7KJ5QqUiMPA.roa (raw, json)
Hash identifier: ccekCeoWeD3ex/gQh3RqDoEDkegGveUowrer9AC7zbk=
Subject key identifier: BD:49:26:DF:4F:3B:B7:87:9E:4D:E3:E0:EC:A2:79:42:A5:22:30:F0
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1121
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vUkm3087t4eeTePg7KJ5QqUiMPA.roa
Signing time: Wed 05 Oct 2022 01:00:07 +0000
ROA not before: Wed 05 Oct 2022 01:00:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131631
IP address blocks: 2403:aac0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4385 (0x1121)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Oct 5 01:00:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BD4926DF4F3BB7879E4DE3E0ECA27942A52230F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:71:3c:c7:4c:be:ec:c4:7f:8a:33:3a:a7:
e3:69:ea:c5:0f:8e:26:4a:d9:7b:f2:79:90:d7:c5:
f1:a6:3d:8a:6c:da:88:77:00:41:01:ae:39:69:2d:
2c:d8:eb:89:25:c6:94:4a:63:bf:1a:64:66:a3:f4:
8d:d2:dd:23:57:fc:28:04:cb:2b:43:4b:37:69:70:
9a:3c:4a:98:b0:35:1d:42:46:eb:b3:b0:d2:43:dc:
ab:bf:37:d0:5c:2b:fb:e4:e0:ad:33:51:9c:12:c9:
1a:b4:f4:51:2d:71:e6:73:a6:0b:66:3e:a6:b7:08:
80:94:40:d7:7e:0b:5a:47:94:7e:a0:6a:5d:45:02:
17:aa:2f:03:01:8a:91:1f:b5:ac:d9:d3:24:7c:66:
08:63:cd:e2:f7:bf:d1:d8:99:eb:87:70:c7:c0:a4:
47:59:4f:d5:4f:c4:3f:9c:38:89:07:9b:47:67:84:
8a:db:16:87:db:3a:8f:4c:8e:bf:a8:a3:e5:80:dd:
b9:fb:8f:9b:6d:0a:57:9d:99:98:ff:e8:ae:2a:f2:
48:db:a1:62:b7:b9:bf:57:34:a9:e7:68:3a:8d:ae:
4a:93:fd:a2:70:7a:ae:3b:fb:f2:58:af:2d:03:4b:
ee:b1:03:e5:49:75:9e:4c:9c:c4:a1:4a:f2:e1:b6:
24:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:49:26:DF:4F:3B:B7:87:9E:4D:E3:E0:EC:A2:79:42:A5:22:30:F0
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vUkm3087t4eeTePg7KJ5QqUiMPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:aac0::/32
Signature Algorithm: sha256WithRSAEncryption
c7:d4:f7:6c:27:46:a7:9c:4a:f9:b0:96:1b:3f:af:46:2c:c2:
8d:2d:12:06:a8:8d:d0:47:b3:1b:ed:85:14:b3:70:7b:fe:7a:
75:f5:d6:a5:d1:27:b5:e5:55:d1:f6:f0:a2:b8:0e:c9:59:05:
e1:b3:e4:ed:9d:be:9a:da:c2:7a:9b:89:39:eb:9d:78:2c:45:
eb:fb:e4:48:97:c3:e7:38:12:0b:51:4c:cf:6a:94:16:1e:8f:
78:59:ea:0b:cd:f3:5c:31:23:19:dc:ef:95:4f:fe:11:1e:24:
05:36:70:6b:09:81:29:2c:1c:87:c1:c8:4d:83:84:bd:55:f4:
7c:65:a2:88:85:c9:aa:02:a4:c4:66:51:4d:5e:fc:95:de:9a:
c4:21:a1:c3:5c:1c:e5:4c:af:35:cf:66:36:87:de:3d:fc:9e:
40:88:56:29:b9:5a:d8:a0:a0:22:5b:84:dd:dd:ec:0b:7a:7d:
8d:b5:41:b5:a4:9c:9e:9b:03:02:bd:82:d6:36:18:54:ba:34:
d0:57:c6:56:f8:11:03:7e:6d:17:54:d4:e7:06:3f:d2:3b:2e:
f1:67:05:61:49:95:15:00:1b:09:c4:bd:3c:4c:a2:32:78:97:
10:b1:47:b2:94:c9:dd:6f:0c:cb:ab:60:b7:10:58:6a:68:1d:
e7:cc:00:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org