Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/uOVTootT4aYI4K-IWcvmOqK9dVg.roa
File: uOVTootT4aYI4K-IWcvmOqK9dVg.roa (raw, json)
Hash identifier: GMK2fffuHaBR1/o2G9V45uDR7lxjHwNaZHYfwez2H9A=
Subject key identifier: B8:E5:53:A2:8B:53:E1:A6:08:E0:AF:88:59:CB:E6:3A:A2:BD:75:58
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 097F
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/uOVTootT4aYI4K-IWcvmOqK9dVg.roa
Signing time: Wed 29 Sep 2021 02:51:54 +0000
ROA not before: Wed 29 Sep 2021 02:51:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 2404:80::/28 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2431 (0x97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B8E553A28B53E1A608E0AF8859CBE63AA2BD7558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:ad:41:82:0a:48:24:e2:d4:77:16:92:ae:
74:ba:d0:5f:ab:27:29:31:aa:13:a7:82:a0:54:a4:
0a:33:cc:cd:f5:f4:4e:db:c1:a1:88:89:fe:c7:84:
73:d0:e7:5c:2e:b6:d1:bc:1c:8b:6c:33:18:c7:55:
72:08:3d:cc:56:92:3d:0d:8a:0d:4b:ee:71:79:dc:
88:7e:df:e6:2d:5b:f8:b7:e5:b0:a0:84:c4:75:81:
95:27:73:7a:b1:0d:67:1a:b6:73:f4:d6:81:52:cb:
34:13:18:db:e2:7c:91:a5:4f:07:16:16:86:21:80:
8a:cf:0b:0d:da:64:54:42:96:ff:47:fc:77:11:0b:
1d:67:16:96:e9:54:07:18:d3:0f:c2:f6:63:38:19:
99:27:14:35:76:fe:6b:90:af:5c:94:be:88:e3:0f:
63:6f:2c:ad:a0:61:c4:4a:0f:fa:51:bd:e1:2e:ee:
86:45:bd:2c:e9:dc:05:ac:4c:5a:d8:79:92:3a:1e:
c3:74:27:fc:04:4b:d3:d5:d1:78:e9:7e:b1:8f:eb:
6c:15:d7:d9:64:ca:b2:76:12:ba:9d:2f:2a:19:58:
38:9b:38:d3:9b:d6:21:58:59:2f:65:d6:df:32:16:
78:c4:f1:ff:58:a5:00:35:e1:6d:dc:16:7e:94:be:
3a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:53:A2:8B:53:E1:A6:08:E0:AF:88:59:CB:E6:3A:A2:BD:75:58
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/uOVTootT4aYI4K-IWcvmOqK9dVg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:80::/28
Signature Algorithm: sha256WithRSAEncryption
ad:4d:a4:63:71:59:12:d8:46:4a:16:ff:9c:1d:97:9e:74:87:
cc:e9:65:d4:10:b5:6d:5c:f7:ed:18:30:e0:62:0d:68:4d:ab:
12:2d:19:9d:a1:e8:0e:de:7c:9b:ab:35:de:59:77:46:85:a2:
1a:c4:ca:cd:70:78:6d:89:35:c9:f3:99:e1:f9:c9:27:4f:8b:
ce:db:c4:41:4f:80:e9:bb:6f:96:87:34:94:5d:3f:20:25:5d:
da:66:78:eb:9a:82:e4:7e:29:2c:90:b9:72:3f:b9:da:26:9b:
ff:0b:53:3b:5c:1a:b1:28:66:d4:12:1c:a9:97:66:80:2e:62:
d9:e6:76:8f:b7:b6:a9:4a:f8:bb:b8:0b:24:d2:41:76:e4:33:
e7:cc:72:33:a6:a6:d7:2e:42:67:f1:09:b7:e7:89:5b:72:f6:
eb:e4:e7:b2:24:e6:df:f6:57:fd:ad:4a:5b:67:81:94:ca:c7:
ad:e6:04:4b:dd:bc:35:6f:98:a6:ea:dc:d1:de:2a:16:9a:71:
33:10:10:90:44:b5:c2:cc:70:1a:f7:c9:36:f4:2e:e7:fa:5c:
c5:f4:29:86:e9:d3:dc:be:e3:40:09:d9:d3:82:34:8d:b4:e3:
60:58:91:d6:ae:9b:d7:ec:eb:30:08:67:3d:5e:41:05:a4:2f:
be:6e:8c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org