Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/kxbo8mbrMqMCMFGoliZRZKhfS5E.roa
File: kxbo8mbrMqMCMFGoliZRZKhfS5E.roa (raw, json)
Hash identifier: PAMgaF4YnI9xwnopqw2x+taFibgNnw+eUlxzetwwcGA=
Subject key identifier: 93:16:E8:F2:66:EB:32:A3:02:30:51:A8:96:26:51:64:A8:5F:4B:91
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0A4F
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/kxbo8mbrMqMCMFGoliZRZKhfS5E.roa
Signing time: Wed 01 Jun 2022 04:00:37 +0000
ROA not before: Wed 01 Jun 2022 04:00:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131613
IP address blocks: 2402:c340:54::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2639 (0xa4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Jun 1 04:00:37 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9316E8F266EB32A3023051A896265164A85F4B91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a9:11:26:b2:f7:c1:a8:f5:e3:be:fb:89:ac:
3f:fd:81:f3:ea:47:b7:c5:47:59:85:fb:50:2e:8d:
e0:f7:0d:57:c0:cb:40:f5:61:77:e0:cf:db:85:89:
d0:c1:c5:7a:83:50:ec:e6:0e:64:3d:5a:fe:e5:4a:
74:cc:32:18:2c:de:ac:96:ef:56:ac:4f:74:49:54:
4c:e1:cc:f4:e8:b9:78:21:78:eb:4c:c3:15:84:23:
d4:b3:18:e7:fd:15:4c:89:01:4a:a3:0f:48:f8:e3:
68:35:d5:7b:7c:1c:8c:1d:15:f8:49:6e:99:5b:5b:
e4:dc:8d:0f:26:60:c0:e3:e4:0d:13:26:14:54:77:
34:1f:20:15:e5:cb:49:e2:84:17:4e:5d:51:ef:07:
36:90:32:24:3f:9b:8c:b8:15:c5:c3:54:a2:fb:e5:
7f:e1:6a:d5:b8:53:61:82:31:1a:cd:9b:5b:6e:a2:
15:97:5e:14:43:c4:b6:35:a8:bb:e0:87:cd:91:b8:
5e:ab:5e:1a:e4:ae:e6:b6:ee:e6:76:e4:2a:9a:6e:
26:8b:cf:48:41:12:36:c6:1e:53:af:ee:a7:07:72:
27:45:f3:43:98:67:91:58:1c:f1:61:df:41:bf:10:
f7:74:94:2c:cf:4d:b0:6b:05:1e:c2:ca:6f:e8:14:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:16:E8:F2:66:EB:32:A3:02:30:51:A8:96:26:51:64:A8:5F:4B:91
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/kxbo8mbrMqMCMFGoliZRZKhfS5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:54::/48
Signature Algorithm: sha256WithRSAEncryption
60:8d:bd:62:42:bf:ae:4d:87:79:cc:af:3d:db:27:47:e7:07:
61:1b:e5:c7:88:be:16:96:4f:c3:f1:ab:47:33:d3:b3:85:04:
da:d6:88:b7:83:d8:49:b6:65:c6:cd:31:41:1a:cd:33:5f:e8:
49:33:35:bb:06:03:da:67:58:54:cf:9c:d5:d9:ed:7f:b3:8b:
f6:13:02:e0:b3:23:77:43:34:f6:58:cf:23:fa:fd:7b:8b:e7:
bb:e3:94:6e:7a:bc:2b:8b:2b:21:28:53:51:63:62:16:e7:91:
1a:15:69:86:5d:f8:bc:ea:30:04:e6:3a:ef:7d:70:e9:3d:8f:
3f:f6:ab:85:fa:b9:fc:3a:52:83:ab:38:87:68:bc:62:1a:44:
fc:d3:72:0f:ea:2e:b6:c6:3e:f1:a8:2a:44:cc:cd:0d:00:0f:
f8:52:7d:5c:bc:6e:4e:f0:57:08:db:29:2c:18:2b:44:a8:20:
e4:8f:ef:f5:30:ad:48:30:ed:45:76:8b:c4:9c:da:fe:b8:b0:
dc:09:f0:8e:82:3a:8c:f5:6f:67:d1:f6:3b:6e:b4:80:31:de:
ef:5e:54:43:49:39:ff:bc:68:a1:63:ea:d2:1f:1b:20:86:cb:
97:4a:23:91:0b:da:00:ad:ae:92:f4:bc:d5:12:e7:d4:34:8d:
53:24:2f:22
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org