Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/yO2dSArf4Va6Ku5eh4_WYTFfklQ.roa
File: yO2dSArf4Va6Ku5eh4_WYTFfklQ.roa (raw, json)
Hash identifier: N2PgNHWpDx886SbXS/aJH71Nvx5/WEfE7VHaAmOOf2A=
Subject key identifier: C8:ED:9D:48:0A:DF:E1:56:BA:2A:EE:5E:87:8F:D6:61:31:5F:92:54
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 078F
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/yO2dSArf4Va6Ku5eh4_WYTFfklQ.roa
Signing time: Tue 29 Sep 2020 09:53:05 +0000
ROA not before: Tue 29 Sep 2020 09:53:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 2402:c340:e168::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1935 (0x78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 09:53:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8ED9D480ADFE156BA2AEE5E878FD661315F9254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:81:11:09:a1:f5:4e:ab:be:c4:a6:a7:f9:
e1:0f:64:1c:08:ca:86:12:ec:3b:14:eb:e1:b4:f8:
bc:fb:f9:ab:da:5a:93:bd:62:08:51:51:2f:17:27:
53:4f:e9:9d:c7:80:17:ae:4b:d7:9b:7e:7d:dd:11:
a9:fb:ac:49:b7:23:ef:29:84:c5:72:3b:98:98:80:
8d:51:9c:24:fe:ce:1d:65:e2:ce:7b:31:04:19:86:
07:ed:91:7f:4a:9c:ce:89:f9:f2:04:d7:52:f1:33:
3c:bb:1b:c1:9b:60:1d:0b:11:0a:1e:b7:a5:22:98:
d2:c6:4e:11:47:d4:c5:09:65:22:b5:bf:14:17:fb:
67:1a:7e:f7:9c:01:15:e1:06:e4:b8:cb:bf:c4:8f:
e8:53:c2:b7:2a:15:4d:d6:b3:08:fb:c3:7d:85:28:
2a:43:38:ff:84:26:14:e5:15:92:a6:dd:51:0a:86:
96:0f:0e:ce:d7:15:40:4c:7f:ba:cb:4d:75:d8:03:
00:40:dc:46:22:4d:e2:c6:85:6b:55:3b:d1:4b:72:
9e:41:2a:96:0e:e0:2b:a2:ea:5a:71:4a:fc:53:83:
b3:b9:a9:52:bc:10:ed:a3:ed:71:25:d8:9e:2b:13:
bf:f9:79:79:8c:6e:33:49:1d:19:cb:f3:63:ed:e9:
d3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:ED:9D:48:0A:DF:E1:56:BA:2A:EE:5E:87:8F:D6:61:31:5F:92:54
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/yO2dSArf4Va6Ku5eh4_WYTFfklQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:e168::/48
Signature Algorithm: sha256WithRSAEncryption
6d:33:fc:4e:05:72:49:a4:48:45:9b:87:d4:5c:23:a1:6a:a2:
e3:e4:23:14:ef:5a:b2:b9:fa:73:db:33:9d:3b:ed:06:fc:52:
b5:8e:06:36:b9:ca:93:7f:79:73:a3:f9:1a:fa:04:5b:0b:a6:
3b:e5:ed:29:69:7f:4a:b8:c4:93:67:98:07:e1:25:f4:cc:64:
ea:aa:62:66:53:9e:bb:88:03:cc:1a:43:bd:7f:d8:9f:e1:70:
aa:15:5e:3f:7e:88:15:d7:0f:d1:f7:8e:79:f9:8c:7d:ba:ed:
dd:74:1a:00:49:0e:d3:55:d1:2b:94:0e:e6:93:91:52:d9:4b:
03:d8:93:03:04:20:8e:74:ef:a7:25:3a:f9:9a:dc:07:42:0a:
54:d7:dc:a3:01:b5:30:98:05:1d:b8:51:03:40:11:f0:fb:21:
60:01:2b:ef:fa:f6:72:aa:3f:15:07:f1:d0:27:f9:d1:6d:f0:
18:25:a0:89:46:84:b7:de:96:06:5b:0a:bf:42:56:07:3a:40:
de:7b:74:96:8f:a4:e6:90:35:c0:00:45:c8:dc:19:50:93:19:
d2:55:17:32:94:e6:f2:1a:44:aa:8b:b6:8f:00:0a:da:66:93:
d5:bd:70:a9:86:23:54:18:97:95:b3:28:f8:d2:a7:f4:a9:ac:
f1:c7:65:db
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org