Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FsR6fy9pkTqTGzCR8p55Tsk4zO0.roa
File: FsR6fy9pkTqTGzCR8p55Tsk4zO0.roa (raw, json)
Hash identifier: x6joEE0RU/drEe7AZsR1r+FfODTBudfrMCPvVjFK/Ps=
Subject key identifier: 16:C4:7A:7F:2F:69:91:3A:93:1B:30:91:F2:9E:79:4E:C9:38:CC:ED
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FsR6fy9pkTqTGzCR8p55Tsk4zO0.roa
Signing time: Thu 15 Sep 2022 02:41:46 +0000
ROA not before: Thu 15 Sep 2022 02:41:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=16C47A7F2F69913A931B3091F29E794EC938CCED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ce:63:eb:9d:55:7e:af:2d:bf:65:14:79:67:
94:4c:b8:78:9f:fa:fc:18:e1:bd:be:ec:cb:f8:1a:
b7:c4:76:69:1e:a9:e8:31:59:7a:3d:d5:0a:fc:a3:
a1:0c:24:d4:90:61:8f:9a:57:f9:12:10:e9:ec:4a:
6a:ac:b1:8e:b0:ec:87:d8:47:61:45:4e:db:dc:37:
19:65:f6:55:b6:3e:da:eb:83:ee:dc:4e:68:b4:3c:
27:6c:44:33:96:fe:d1:d8:88:fc:c1:cf:d7:95:18:
ce:e1:f4:65:24:c4:06:d8:2f:9f:dc:ff:f7:72:78:
53:10:07:a3:fd:6a:1b:92:01:c5:62:79:f0:d1:7b:
39:17:bb:66:37:a5:86:0f:9d:b9:40:27:52:9c:e1:
b4:8c:a3:88:f2:86:4e:71:69:8f:a6:de:0a:5d:bd:
cd:42:a6:d6:4a:f0:a3:d1:fa:e8:97:d8:c9:53:9a:
96:60:ad:fd:e3:87:ee:b2:05:90:18:f9:bb:12:ce:
bd:37:05:27:30:2c:d8:a1:03:32:b9:7f:b6:5d:0f:
43:fa:89:fb:65:d8:f7:ba:f0:47:7c:7d:85:75:29:
36:66:a3:c8:da:fd:7c:2f:92:ed:78:c7:35:4b:ef:
ee:16:65:85:a3:84:d8:ef:92:e8:bd:75:ef:b9:4f:
7a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C4:7A:7F:2F:69:91:3A:93:1B:30:91:F2:9E:79:4E:C9:38:CC:ED
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FsR6fy9pkTqTGzCR8p55Tsk4zO0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
67:7c:61:ae:09:44:14:1a:bb:fe:00:87:30:95:da:3b:6b:fd:
fa:db:a0:cf:07:28:9a:50:62:62:8a:42:93:32:7e:99:09:eb:
3c:bd:90:cf:5a:a7:07:e0:6c:d4:98:c4:38:ce:6e:0d:22:54:
4d:c7:92:b2:c0:1f:54:f8:fe:8b:91:0e:3a:d8:7d:2e:bc:60:
40:0b:7d:5c:d8:e5:55:2e:16:6c:6f:f6:2c:c9:d8:34:57:35:
4e:3c:f9:3c:78:b9:3f:a0:e1:9d:7d:d2:3a:6a:c5:2b:d4:2c:
2f:c1:df:a7:ec:ff:0f:6e:74:bd:a7:18:f9:c2:40:da:a5:78:
db:15:07:f0:ea:5f:bf:29:60:da:16:5a:75:9c:36:6f:ea:31:
3f:d6:55:83:86:a2:5b:a9:df:cb:8a:cc:d9:89:0a:93:f3:1b:
40:92:ca:d9:97:d8:8f:ee:1e:79:c8:8f:e6:3d:46:d4:05:08:
7c:d1:bf:ef:a0:2e:9d:02:0b:27:40:45:f5:c8:76:5c:48:a2:
c5:88:3e:7e:3c:86:42:a6:1e:64:6e:8b:c8:c8:34:65:bf:e5:
65:9b:cc:cf:0d:cf:f3:8a:73:85:c3:6f:62:02:82:8b:aa:c0:
b2:f1:c6:0a:49:df:88:50:46:13:57:a9:ba:d9:21:2c:70:e5:
3d:be:eb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org