Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QUQaNDFO2S2p_TjEaUy9LmktNIg.roa
File: QUQaNDFO2S2p_TjEaUy9LmktNIg.roa (raw, json)
Hash identifier: Qh398mwFrwN4obCLj7xqjxg8LDQVNIzox2YgenuS0D0=
Subject key identifier: 41:44:1A:34:31:4E:D9:2D:A9:FD:38:C4:69:4C:BD:2E:69:2D:34:88
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 099A
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QUQaNDFO2S2p_TjEaUy9LmktNIg.roa
Signing time: Wed 29 Sep 2021 02:44:39 +0000
ROA not before: Wed 29 Sep 2021 02:44:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38047
IP address blocks: 2402:c340:eeee::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 02:44:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41441A34314ED92DA9FD38C4694CBD2E692D3488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:b2:ea:46:d5:b4:79:e5:ba:3a:55:d2:85:
b8:30:ed:6a:b5:ce:1a:77:f9:d1:26:c8:e4:06:fc:
51:ba:19:eb:e7:96:12:3e:ba:b8:79:b8:b0:1c:87:
3d:48:11:b7:31:f7:ff:d3:10:82:8f:e8:45:f7:9a:
e6:e4:3a:ed:22:70:bf:3f:a1:3b:92:6d:d1:b6:07:
f3:12:13:40:70:e3:55:cb:2b:1e:4b:3a:82:ee:1f:
cf:91:69:1c:72:d3:8b:93:d7:34:54:d5:c9:0b:96:
f5:1f:ed:b6:1c:f6:a9:99:10:93:d8:00:c6:54:ff:
44:66:b4:0b:47:ca:bb:a5:86:ad:c6:bd:8d:e6:04:
65:7d:1e:1a:a3:6c:0f:c0:48:9a:8c:ce:4c:67:ca:
c4:fb:3b:8b:f7:58:fd:93:7a:64:d3:a6:c4:95:59:
0e:04:c3:3e:07:73:c8:1c:8a:04:40:92:bb:5c:f6:
84:f3:7e:24:00:83:7b:11:52:93:20:5d:d2:28:cc:
f2:b0:5e:a7:28:a8:d7:e4:2f:21:59:44:9d:3b:44:
12:94:b7:a8:5d:02:87:75:b9:62:0e:11:7c:cb:1a:
b9:ec:af:23:3a:44:87:8a:2f:31:66:6a:4e:9b:80:
d9:b3:a0:9e:10:0b:27:0b:5c:2b:e2:06:29:14:20:
28:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:44:1A:34:31:4E:D9:2D:A9:FD:38:C4:69:4C:BD:2E:69:2D:34:88
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QUQaNDFO2S2p_TjEaUy9LmktNIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:eeee::/48
Signature Algorithm: sha256WithRSAEncryption
2c:e1:40:db:43:c1:d7:d1:11:d7:e9:fd:63:3e:d3:4d:a2:c0:
f1:9c:51:bc:9d:78:05:9c:1e:d5:15:71:90:b9:d1:f4:51:b5:
74:02:0b:30:86:fa:27:a3:60:33:c7:92:12:e0:24:12:7b:db:
68:0d:08:dc:d4:05:ad:ff:54:fb:30:fd:b7:fc:0a:a4:b3:e0:
87:14:1f:be:65:07:ed:df:3f:05:03:81:63:1e:a8:6c:fc:c0:
9e:76:e9:e9:a8:14:87:54:ef:e9:93:6f:bf:12:39:c7:c5:60:
52:6d:d9:e4:d8:e0:1b:04:30:40:b2:07:04:b1:43:2e:e2:5e:
68:35:42:2c:da:4a:cd:63:12:21:7e:e1:c1:4c:fe:45:68:d1:
5c:ad:46:c6:7c:ee:6b:eb:10:1e:4b:2a:59:fe:8b:e0:0a:5b:
bb:37:e7:17:4e:57:28:a4:1c:60:c5:f8:42:f3:5a:c0:47:11:
54:6e:6d:96:51:df:4d:55:95:d1:b4:65:ce:5c:1a:27:59:56:
72:eb:51:8d:02:eb:43:d4:65:a2:74:d2:08:78:13:63:29:18:
17:87:49:83:b5:59:28:28:ec:ba:79:27:6d:c5:e4:64:b4:e8:
8f:9c:2d:e6:70:d3:8a:30:e3:cd:09:d0:c0:ad:32:66:28:61:
26:66:8f:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org