Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/i13R5XULiXK2zBkBRP5alq2FfMs.roa
File: i13R5XULiXK2zBkBRP5alq2FfMs.roa (raw, json)
Hash identifier: ETahL7K4hCwIVPJOJQwxopC14DgNcpzF7lMf5KXjUA4=
Subject key identifier: 8B:5D:D1:E5:75:0B:89:72:B6:CC:19:01:44:FE:5A:96:AD:85:7C:CB
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0783
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/i13R5XULiXK2zBkBRP5alq2FfMs.roa
Signing time: Tue 29 Sep 2020 09:59:21 +0000
ROA not before: Tue 29 Sep 2020 09:59:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 2404:80::/28 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 09:59:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8B5DD1E5750B8972B6CC190144FE5A96AD857CCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:55:77:e9:48:df:e4:ab:e5:43:54:4b:4d:ef:
72:1d:ab:dd:b9:11:07:96:11:b3:56:e0:fd:88:f3:
53:79:0d:79:4b:a0:95:37:38:09:bd:a6:ab:1d:cf:
47:5f:d7:26:6e:17:0a:96:f7:0d:cf:b5:84:5b:1a:
e1:12:5e:92:e7:aa:f4:51:02:f6:1c:d2:e3:67:da:
f6:86:42:29:d3:62:81:37:cb:04:5a:2d:60:47:00:
22:e4:5a:62:4f:49:f4:6c:ed:12:41:b7:7f:8b:a2:
9a:23:19:16:80:bf:55:c6:0b:2d:72:bc:c8:7f:29:
8f:7c:72:29:e6:7b:2a:d3:33:f9:3a:c7:17:60:0d:
24:37:9b:22:95:0a:20:f5:7b:b8:83:3a:60:83:06:
3e:63:09:af:35:7d:7c:db:83:ca:f6:61:60:a2:ac:
c9:dd:76:44:32:c9:ba:18:b5:1c:5f:1f:97:7b:bb:
c5:fa:d3:d5:e9:41:cc:3c:31:c8:84:03:4b:d6:e2:
1a:7a:05:d1:2e:9b:2c:11:26:69:3e:fd:b9:20:01:
92:25:77:32:da:5a:50:2e:91:89:d6:f5:e9:7e:6e:
77:9d:01:60:b9:7d:be:51:fb:0d:67:bd:59:92:9e:
5f:14:a3:1d:d7:0c:75:04:0e:3f:51:14:6a:0c:9c:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5D:D1:E5:75:0B:89:72:B6:CC:19:01:44:FE:5A:96:AD:85:7C:CB
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/i13R5XULiXK2zBkBRP5alq2FfMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:80::/28
Signature Algorithm: sha256WithRSAEncryption
60:5a:5f:a4:d5:36:5d:c6:cd:cd:83:f8:d1:89:1e:86:46:c8:
f3:85:73:52:85:4c:b7:94:3c:c6:ab:17:0d:6e:8b:b0:9a:76:
be:f1:4c:79:05:ed:2e:68:c1:d7:3d:db:5e:4f:c7:a9:d8:be:
58:35:eb:55:ec:af:64:d8:0c:b8:44:0f:c5:7a:06:29:cb:5c:
05:27:4c:00:35:ed:c7:40:bd:f3:2f:5e:92:e4:bd:54:63:26:
a7:37:9d:d4:18:db:dc:d7:eb:35:94:ae:7d:34:3d:ab:07:0a:
13:90:6c:eb:f6:5d:64:73:11:2a:be:77:67:9b:5f:93:c8:c1:
cc:81:2b:6e:bb:1c:fc:be:87:6f:52:a1:49:79:3d:da:55:c5:
91:9b:da:c7:7e:a3:e7:c6:fa:c4:b9:c2:50:53:51:09:dd:9c:
f7:ab:0e:06:7d:25:89:1e:72:b3:13:a0:d8:fa:69:fe:40:9a:
df:fe:13:d1:0a:bb:60:65:95:a2:d1:6f:77:5f:6c:01:67:c8:
b1:3f:02:fb:1f:f3:a9:43:ea:e1:f6:61:54:5d:db:ec:4a:7c:
7a:19:77:19:08:e5:89:09:1f:3e:04:00:c0:bc:72:8a:b8:d6:
01:3c:9a:59:27:e7:89:00:46:1d:24:4b:46:bc:69:e5:21:88:
26:15:6e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org