Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/OHdaVJd2A3Ls4K0UzAWIi67ETiY.roa
File: OHdaVJd2A3Ls4K0UzAWIi67ETiY.roa (raw, json)
Hash identifier: tokzhIhG74sxbLomdlzdJYKeUGAvxkBt7Gutl7TpPEQ=
Subject key identifier: 38:77:5A:54:97:76:03:72:EC:E0:AD:14:CC:05:88:8B:AE:C4:4E:26
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 08C0
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/OHdaVJd2A3Ls4K0UzAWIi67ETiY.roa
Signing time: Thu 31 Dec 2020 02:55:21 +0000
ROA not before: Thu 31 Dec 2020 02:55:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38047
IP address blocks: 2402:c340:cccc::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2240 (0x8c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Dec 31 02:55:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38775A5497760372ECE0AD14CC05888BAEC44E26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:91:ad:d9:d2:ac:da:25:e6:5e:a0:38:a8:
12:eb:35:1a:a0:08:6f:01:fe:30:b2:c9:b9:3c:dc:
f6:e5:5c:67:95:c1:11:36:db:08:c4:82:18:78:03:
cb:b3:0f:f0:12:ce:de:d9:ae:01:0b:c6:a3:2f:74:
48:18:a6:f7:42:42:4c:40:6d:7d:04:59:d0:31:1d:
a9:72:1b:c8:c7:e1:96:7a:d1:c5:33:75:7a:8c:fe:
ce:ca:31:e1:29:aa:fc:37:40:84:16:67:37:f5:6a:
d3:99:90:07:db:9c:6d:e4:76:5e:08:c5:f4:81:7e:
1e:27:02:b4:ea:14:f5:8b:16:ad:e7:88:2a:2b:5a:
14:76:d3:24:b5:18:96:d9:55:77:de:bd:c9:1a:d1:
ba:d5:c9:91:49:1c:5b:8c:8d:09:8a:2e:fe:fb:96:
d3:91:ab:dc:ae:14:3e:34:fc:3f:41:71:4b:3f:58:
44:df:ee:cd:1a:9b:87:da:a4:cf:bb:a8:25:f6:ac:
f5:1d:63:3b:cc:41:5d:5a:ec:9c:24:71:90:57:dd:
e7:08:e7:bc:04:e8:96:74:bb:18:78:ed:38:35:48:
d0:60:7d:18:f1:b7:4f:25:14:47:4b:ab:32:20:92:
71:dd:34:4e:19:a3:16:fb:4b:72:9f:fa:f4:8b:1b:
8d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:77:5A:54:97:76:03:72:EC:E0:AD:14:CC:05:88:8B:AE:C4:4E:26
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/OHdaVJd2A3Ls4K0UzAWIi67ETiY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:cccc::/48
Signature Algorithm: sha256WithRSAEncryption
2d:d5:b1:4d:90:9e:96:e3:7f:54:37:c4:48:6a:92:66:23:e1:
16:72:e4:d8:94:11:17:1d:2b:34:15:64:67:e0:56:e2:1f:34:
4b:80:f1:57:a7:26:9c:76:19:e5:d2:28:65:9a:f1:c1:61:9d:
d3:95:d0:4a:0f:43:01:56:e2:17:9b:52:30:69:eb:f3:af:c3:
bf:8d:59:c8:0d:b6:a8:f9:1b:26:58:cd:9b:27:b8:4e:11:a0:
4b:51:c2:a4:61:a8:e1:8f:14:92:c9:9e:0d:3f:b2:f0:da:00:
58:60:f7:85:48:6b:b9:2d:fe:c5:f3:09:5e:0f:58:ec:56:0b:
73:29:a5:9e:a3:4a:e9:e3:9e:c2:0a:00:ab:0a:91:74:d1:b3:
03:28:22:42:d5:76:43:a3:5f:1b:f7:bd:69:cb:a7:b1:5d:a8:
49:4d:b8:e4:c0:c6:35:43:dc:6d:6f:53:35:57:bf:0b:3b:22:
e5:4c:a8:93:d4:f9:af:da:00:11:fe:5b:49:58:0e:60:ef:b7:
67:05:12:31:79:98:f0:77:61:cc:b7:ab:82:ee:c0:04:b2:c5:
5a:73:59:69:20:87:ff:cc:7f:74:be:34:db:12:c1:b4:3e:f7:
e7:1b:f9:7d:b8:4f:81:26:2c:07:67:77:5c:15:bd:53:3a:d4:
78:b1:07:65
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org