Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/INQEPAZz3OQtg_lHurO8lPf0lt4.roa
File: INQEPAZz3OQtg_lHurO8lPf0lt4.roa (raw, json)
Hash identifier: b6jqIk6+c9gU7/LgZ7MKOOrn1JSbm6fNiFTM9l/WWV4=
Subject key identifier: 20:D4:04:3C:06:73:DC:E4:2D:83:F9:47:BA:B3:BC:94:F7:F4:96:DE
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C7
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/INQEPAZz3OQtg_lHurO8lPf0lt4.roa
Signing time: Wed 29 Sep 2021 02:42:01 +0000
ROA not before: Wed 29 Sep 2021 02:42:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2503 (0x9c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:42:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=20D4043C0673DCE42D83F947BAB3BC94F7F496DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9d:ea:a3:4d:19:07:fc:8c:ff:87:f8:ba:73:
74:70:d9:08:5f:2b:b7:15:57:8a:d9:93:51:50:cf:
2f:f6:82:83:6f:bd:72:b2:09:54:7b:25:a2:c3:ed:
b5:6c:43:a2:65:2e:65:50:02:9d:ce:ec:6d:e5:af:
4f:3e:16:64:cb:16:b0:de:b6:ec:fc:d8:af:b5:19:
4d:a0:ac:1f:f9:4c:9d:2e:c2:19:90:79:cc:09:57:
b1:d6:de:d3:8f:95:57:e1:8d:db:44:f8:59:8b:d5:
40:1f:17:c8:cd:bd:db:ed:88:c4:fa:74:5d:d1:70:
1a:cb:6d:09:8e:0c:ae:c8:e2:2a:8d:a1:af:31:b0:
40:f9:36:d3:05:e1:6d:ca:10:97:2c:10:d1:b5:6c:
98:15:6b:83:7a:af:01:7c:99:b2:73:71:4e:53:a5:
f6:39:3c:37:3f:f6:ab:ca:43:84:70:73:e8:ac:ac:
c5:bb:08:1a:a7:38:1d:cf:67:d0:31:97:fa:f2:36:
30:69:42:b9:cd:a7:1d:4e:83:11:75:dc:1b:2d:6e:
f5:2a:af:da:4b:45:4c:ff:eb:90:a3:35:84:c7:88:
aa:4d:77:6d:ff:3d:d6:93:18:f6:f7:e3:e3:15:0e:
92:1b:21:f8:e2:69:6a:e7:1d:4a:94:b8:ab:26:d1:
11:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D4:04:3C:06:73:DC:E4:2D:83:F9:47:BA:B3:BC:94:F7:F4:96:DE
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/INQEPAZz3OQtg_lHurO8lPf0lt4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
10:66:50:63:01:37:a0:b5:12:0b:2d:43:3d:15:6d:b2:81:00:
e3:07:91:db:f8:ee:72:92:63:47:c3:51:d7:e0:10:59:07:fa:
65:15:00:ca:44:b9:86:69:8e:d7:95:8a:ae:2c:bd:15:03:03:
d1:49:b6:74:b4:ab:dc:12:5c:e0:7b:99:71:82:58:a0:90:e4:
24:3e:0a:39:cf:6e:21:e1:9a:c2:4a:e3:54:23:dd:8f:c2:34:
a8:c1:1c:97:df:56:b6:ee:62:74:d5:e7:43:3c:b6:34:75:99:
97:a5:17:19:d8:9f:cb:3e:fc:e8:4e:40:1b:07:d0:61:a5:08:
10:1a:0c:1a:3d:9d:1b:54:40:9f:93:b7:fe:ed:6d:45:6c:e7:
91:2c:10:00:3a:33:3b:e8:b4:64:c1:84:b0:3d:9a:76:c3:1b:
4d:38:82:00:f3:0d:d6:9b:35:a7:3f:31:dd:49:65:a6:28:9a:
cd:65:c5:e9:c6:e0:cc:cd:c4:b7:21:21:6e:79:ff:fe:70:88:
1b:ca:64:17:32:4f:52:56:8d:b7:5a:d4:e7:c9:92:ea:e3:d7:
76:04:2d:97:61:90:b4:86:c2:5e:10:f9:8b:e5:48:d8:53:39:
ec:63:15:f4:48:46:d0:e8:6f:8e:7d:0f:1c:7d:41:60:7e:4d:
39:7e:f2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org