Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/2xpIzuXIIbxJAI9Vyd_ImJPLpow.roa
File: 2xpIzuXIIbxJAI9Vyd_ImJPLpow.roa (raw, json)
Hash identifier: KjMKdqKKwxeFXwwSd2imHHKbHjIP8VRU9BZu1/nwNuA=
Subject key identifier: DB:1A:48:CE:E5:C8:21:BC:49:00:8F:55:C9:DF:C8:98:93:CB:A6:8C
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 0E58
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/2xpIzuXIIbxJAI9Vyd_ImJPLpow.roa
Signing time: Wed 29 Sep 2021 02:50:21 +0000
ROA not before: Wed 29 Sep 2021 02:50:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131633
IP address blocks: 2404:29c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3672 (0xe58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: Sep 29 02:50:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB1A48CEE5C821BC49008F55C9DFC89893CBA68C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:30:46:5b:d6:f1:c7:ee:6d:6b:4a:07:a0:89:
50:4d:5d:92:26:e5:c5:02:be:e0:5b:85:08:ac:58:
07:9d:19:d9:fb:e4:01:ab:41:16:20:6b:56:da:43:
a0:46:3d:58:17:60:2a:8b:fc:f7:d8:98:cb:69:b5:
e8:01:5f:1c:d4:db:58:28:f9:3f:df:49:49:ac:7b:
48:dd:1a:a5:18:cd:ee:f3:f6:f1:c5:de:14:8a:6c:
27:f3:a5:11:d2:c6:e8:cb:da:fc:16:2b:9d:78:40:
27:c4:41:d2:84:53:d5:80:40:55:9e:42:a0:0d:19:
45:86:b7:b0:aa:28:5f:e3:5e:2a:2c:e7:18:67:7c:
0a:03:2c:02:b3:c1:4b:e8:1c:34:b2:32:1e:c7:a4:
3e:85:73:52:0f:0f:bb:bb:2a:ba:98:fa:df:dd:ce:
59:4a:a7:fa:92:1e:c6:cd:7f:c7:53:fb:a3:e6:d7:
6f:d8:71:b4:20:db:2a:f6:c3:7a:19:07:da:0a:f8:
5f:3b:44:ea:9a:34:9f:e4:e7:41:6e:60:b1:c4:09:
f7:33:98:7d:0b:8a:fb:7d:3a:8a:38:07:01:3c:73:
07:09:c3:1a:26:c9:cd:f5:6d:0b:71:d4:3d:52:37:
09:d6:d9:7b:00:56:54:98:31:6f:30:36:e5:5f:a3:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1A:48:CE:E5:C8:21:BC:49:00:8F:55:C9:DF:C8:98:93:CB:A6:8C
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/2xpIzuXIIbxJAI9Vyd_ImJPLpow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:29c0::/32
Signature Algorithm: sha256WithRSAEncryption
ed:12:18:0c:2f:b6:9f:57:ef:81:e4:e8:f7:ea:fa:2c:16:f9:
40:88:0e:a8:a5:8a:c2:6a:da:c8:11:27:59:62:08:16:33:6d:
09:d1:da:01:6e:5e:38:5a:39:b0:46:8f:7e:8f:62:5d:af:4b:
65:cf:b7:31:ff:57:79:08:2d:e6:18:c6:91:d4:4b:e8:42:d7:
09:1b:51:55:48:26:a9:b9:c0:21:28:cf:8d:be:d7:4a:22:72:
fd:d8:24:e9:14:99:7a:ee:5d:38:c5:8c:91:da:c0:61:a6:79:
32:4b:5d:e7:4b:d2:6c:ce:8f:e8:8d:2d:cd:7c:fc:d8:a0:a2:
fb:a6:86:c3:43:fe:0d:74:2e:c8:1f:e2:fb:34:75:2b:a1:cd:
4f:48:a5:74:3c:64:0c:17:f6:c9:a2:5f:ee:41:82:49:d0:9d:
8c:44:3e:fa:63:b9:0b:6c:e3:b1:17:72:88:35:56:13:24:df:
6a:9e:0f:85:7f:a0:90:e9:ac:e0:58:fa:74:97:c1:ff:3f:67:
16:26:ec:6a:f9:95:1a:39:54:4a:dc:79:d1:ba:97:6c:3b:98:
42:90:e0:10:03:1f:92:87:d7:ca:d8:de:a3:96:06:e6:db:75:
33:4b:3e:73:27:2c:1f:cc:2c:20:9b:07:cb:06:54:12:fb:58:
08:1e:49:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org