Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/jXXHX9DqaJAeB_qEUZ4nDf6bi1o.roa
File: jXXHX9DqaJAeB_qEUZ4nDf6bi1o.roa (raw, json)
Hash identifier: IHoWwk5rwVT2EKJBUw/l96J4Z5HRQ1e2ftxB7LMP3qA=
Subject key identifier: 8D:75:C7:5F:D0:EA:68:90:1E:07:FA:84:51:9E:27:0D:FE:9B:8B:5A
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0A5A
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/jXXHX9DqaJAeB_qEUZ4nDf6bi1o.roa
Signing time: Wed 01 Jun 2022 12:42:56 +0000
ROA not before: Wed 01 Jun 2022 12:42:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38047
IP address blocks: 2402:c340:54::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2650 (0xa5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Jun 1 12:42:56 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8D75C75FD0EA68901E07FA84519E270DFE9B8B5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d5:b5:ff:5b:5e:fa:2b:c3:59:0e:f1:3b:c9:
02:23:5b:a6:61:04:bf:59:61:dc:02:1f:1e:83:d3:
49:c1:a6:b8:fd:9e:5d:cf:2a:5c:f6:43:c3:5b:47:
54:5b:e5:04:49:56:23:74:34:77:63:b1:b9:be:c5:
7b:bd:ed:97:29:ea:af:a1:2e:3a:91:86:1d:11:ab:
22:e8:f6:37:e7:3a:86:65:15:0a:5f:31:10:c1:b9:
4e:80:f3:eb:66:73:81:fb:d6:b7:f0:ef:90:67:f7:
b8:01:b4:0a:cb:21:9a:d3:63:0d:2e:2f:c1:a1:83:
95:9c:6d:e1:a8:15:ab:68:f0:ee:71:7a:8d:a7:e3:
d4:20:3a:c2:f9:38:8c:b8:41:8a:eb:54:75:a2:2c:
c8:b2:c1:51:59:0a:33:a3:28:af:98:0a:d0:d8:3d:
16:06:b8:be:d6:e2:cc:7d:98:d3:44:2a:6d:ce:16:
c4:79:ae:d6:44:11:ad:0e:41:8e:c6:60:4e:ed:2d:
a5:8a:09:c1:91:18:4d:db:70:fa:d7:0f:be:4c:1f:
07:09:c0:5b:26:89:1b:84:2c:dc:8a:7f:93:6a:37:
56:87:bc:51:42:5a:4f:bb:47:cc:ed:b7:27:b4:fd:
1f:61:d7:2f:11:e9:64:1a:5c:29:e5:17:a9:5f:0d:
06:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:75:C7:5F:D0:EA:68:90:1E:07:FA:84:51:9E:27:0D:FE:9B:8B:5A
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/jXXHX9DqaJAeB_qEUZ4nDf6bi1o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:54::/48
Signature Algorithm: sha256WithRSAEncryption
66:fe:e1:02:f6:ec:ca:10:83:f1:e4:28:f6:93:18:0a:e3:9c:
40:32:8e:2d:7a:13:b1:fe:52:b6:96:3c:e7:ee:5a:70:c4:eb:
7a:38:f9:c4:94:dd:3f:a1:cb:49:8a:19:95:ce:4f:8b:59:7c:
33:f2:3e:3b:25:05:52:eb:40:de:55:75:76:44:12:58:19:b9:
74:d9:de:81:98:82:5f:7c:d4:18:42:83:bb:92:54:8f:16:66:
cf:4b:bb:c7:ca:41:2d:08:f6:3e:50:83:b8:dd:ed:7e:b5:4c:
05:8c:3b:25:ff:d1:dc:fe:3e:77:d5:42:0f:1d:e6:d6:0d:df:
e2:cb:77:d1:9f:b0:8a:9a:8a:a5:3c:3f:cc:38:2f:d5:a9:b6:
02:bf:da:d8:ca:1b:3c:9c:63:a3:8d:30:5a:c1:fa:ac:99:a1:
55:11:61:4a:da:a9:f8:26:b8:23:91:52:5d:ba:28:59:de:19:
c0:30:a1:5e:9e:c9:3e:9b:c0:1e:b9:54:c5:28:4f:38:55:d3:
dc:f3:1e:23:a8:db:d7:10:1b:9c:a0:a0:cc:bc:d4:72:dc:b6:
66:9d:76:e2:c8:43:22:d8:eb:5f:00:7e:dd:5e:1d:95:d4:8b:
9c:5f:87:26:70:5a:9f:da:2b:21:b7:1a:f1:11:ce:51:3d:8b:
11:6f:a9:db
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org