Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RHzAubxHBN7IYQy_5x5-aL8nMQ0.roa
File: RHzAubxHBN7IYQy_5x5-aL8nMQ0.roa (raw, json)
Hash identifier: 34Ag+Uavs2P08So9+zCeOaZOCqvvKNzSPoyjo2XoO54=
Subject key identifier: 44:7C:C0:B9:BC:47:04:DE:C8:61:0C:BF:E7:1E:7E:68:BF:27:31:0D
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0791
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RHzAubxHBN7IYQy_5x5-aL8nMQ0.roa
Signing time: Tue 29 Sep 2020 09:53:05 +0000
ROA not before: Tue 29 Sep 2020 09:53:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 2402:c340:eeee::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1937 (0x791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 09:53:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=447CC0B9BC4704DEC8610CBFE71E7E68BF27310D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:a3:90:3c:25:22:53:bb:b6:71:d1:ef:35:
47:8b:2c:dc:ee:5c:07:01:7a:7b:20:70:a0:bc:e8:
50:65:4f:fd:e3:92:d2:a5:aa:b3:b4:07:55:17:18:
96:a8:60:63:ad:9e:80:27:9a:a8:28:59:61:c1:08:
98:fb:1c:5d:58:06:90:fe:d1:a7:ec:4b:92:2e:b6:
b5:32:8b:ae:b3:bc:f4:08:39:c3:b8:b8:50:9b:d9:
3d:ae:7e:62:af:a5:e8:59:0c:e3:66:ce:67:44:e3:
7e:be:85:bd:5c:bb:30:9e:c0:51:93:c4:28:fb:fa:
e2:8c:d4:1e:34:b4:31:20:80:01:94:0a:27:bf:1d:
a6:c2:92:91:31:74:48:cb:43:94:ca:f0:de:5b:1c:
3c:ef:2a:b8:8e:8b:d6:f6:cb:08:ca:55:37:4b:10:
5b:e8:45:ac:f5:58:66:7e:fd:4c:f2:d7:95:64:be:
bc:f4:65:a3:03:b8:da:49:e9:eb:34:30:1f:74:4d:
f8:38:13:d9:d6:ce:3f:b0:87:7a:ab:22:61:f9:ee:
81:cb:56:aa:c9:34:b6:44:fd:8a:7f:ad:94:b5:7d:
6d:76:41:4d:8b:22:42:d1:81:76:fe:c9:d2:7b:6a:
a0:22:73:9e:37:b9:fc:23:49:0d:5c:3d:7f:12:ef:
8a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7C:C0:B9:BC:47:04:DE:C8:61:0C:BF:E7:1E:7E:68:BF:27:31:0D
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RHzAubxHBN7IYQy_5x5-aL8nMQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:eeee::/48
Signature Algorithm: sha256WithRSAEncryption
9c:48:e0:0e:76:a7:9b:f0:b9:8e:7c:a6:90:e0:c5:28:17:25:
19:a0:fd:7a:f4:d9:58:c3:d1:0b:61:45:14:c2:c9:18:7a:3c:
15:4b:0d:db:d7:96:32:1e:9d:1c:87:20:ef:e9:c0:54:22:a1:
9d:74:13:11:3c:9d:c1:a9:c3:4a:5f:a1:46:a7:e6:6c:47:ca:
3f:9e:eb:79:31:ba:49:53:05:a1:46:37:98:f6:62:1e:bf:c5:
dc:69:72:8f:bd:fb:cd:38:d7:f0:24:08:d7:f8:88:f0:ba:e1:
2b:9c:b9:f5:ad:a4:59:3a:74:24:9c:8d:9b:1e:10:d1:50:66:
08:e8:7c:19:e3:ad:f7:49:4c:9c:5a:e2:4d:03:10:85:67:be:
69:9f:ea:b7:b7:0c:ad:ac:9f:db:aa:b9:45:87:57:00:4e:38:
8c:85:71:47:79:4b:da:b6:c9:5e:ab:d7:13:18:c2:61:ad:fe:
c8:73:f3:4d:c3:a4:60:e9:18:b3:91:8d:e1:15:89:79:b9:29:
60:e6:5b:22:12:6e:e8:e4:46:e9:7d:ed:44:70:37:5e:55:5b:
6a:bc:ac:bd:04:5b:54:a6:91:6c:3f:f8:04:65:0f:cf:80:c5:
ae:a4:2e:e1:83:1f:10:47:8c:89:62:64:ec:36:73:e7:54:5d:
95:4c:33:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org