Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/c0VCVaBEURFcE97h-7xmQxemuHo.roa
File: c0VCVaBEURFcE97h-7xmQxemuHo.roa (raw, json)
Hash identifier: mPF1UkNWGFpnpVD/kTqjA4/gmnXGb2M5mHao6szKxLs=
Subject key identifier: 73:45:42:55:A0:44:51:11:5C:13:DE:E1:FB:BC:66:43:17:A6:B8:7A
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 04BB
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/c0VCVaBEURFcE97h-7xmQxemuHo.roa
Signing time: Thu 16 Feb 2023 10:59:45 +0000
ROA not before: Thu 16 Feb 2023 10:59:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 2406:3040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1211 (0x4bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 16 10:59:45 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=73454255A04451115C13DEE1FBBC664317A6B87A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f2:ca:16:91:b0:d2:1f:f8:5b:28:4c:c7:a1:
44:78:0a:17:8c:eb:dd:ef:56:03:02:81:01:b5:bf:
dc:3a:7b:70:f5:01:e9:b1:79:5d:e6:01:bc:15:5c:
e5:82:36:26:3e:84:58:e7:bf:ab:60:ef:f4:36:3e:
23:5f:d8:76:cd:ad:62:b5:73:fc:b9:95:11:cd:6e:
89:80:e6:75:68:96:6d:13:f2:27:9b:d1:c4:70:73:
e0:f2:0a:54:c5:80:09:55:ea:63:cd:ad:95:31:8b:
53:29:ad:71:94:d9:6e:b3:f8:ed:c0:56:9c:60:ca:
2e:13:6c:7d:e7:d5:b8:eb:9b:3f:aa:7c:2c:6c:9f:
88:86:18:f3:4e:8e:30:14:83:9a:a2:08:d0:7d:8f:
45:64:f3:41:a1:6e:29:bc:2a:11:8b:3f:95:1d:d1:
bf:bb:8e:29:eb:bf:2c:af:ff:65:7b:88:43:b8:48:
5b:b9:16:bd:db:82:26:a2:0e:38:67:40:21:d3:46:
a7:1e:53:e7:a5:7b:a2:bf:9d:bd:c7:b2:4f:0a:d4:
63:4c:07:3c:1c:65:c5:aa:3b:e2:e3:b0:df:c1:8d:
ae:c3:27:8f:49:ab:7b:4b:32:3b:5a:fa:ad:f3:a5:
ed:80:76:8d:7e:0e:58:87:08:51:f3:94:be:ab:32:
76:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:45:42:55:A0:44:51:11:5C:13:DE:E1:FB:BC:66:43:17:A6:B8:7A
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/c0VCVaBEURFcE97h-7xmQxemuHo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3040::/32
Signature Algorithm: sha256WithRSAEncryption
6d:ee:2a:1d:16:b1:07:45:cf:3b:a6:3d:33:8a:05:18:c9:40:
5b:a0:11:9a:a1:42:2a:1a:d9:c3:6f:61:42:9b:62:eb:24:d6:
aa:9b:4e:e6:ab:d4:e0:99:00:b4:28:78:bc:ec:eb:f4:51:5b:
75:a7:41:96:07:58:5f:fa:f3:dc:1f:b6:a5:8b:e9:7e:bd:a3:
3e:3a:e0:26:ce:07:53:18:0c:75:81:be:a0:6c:b5:6d:f7:3f:
cf:fd:bc:ea:18:08:2e:56:27:37:45:a4:2d:bc:8e:36:01:7a:
10:61:6e:fd:70:84:ed:4e:76:db:eb:bd:e3:ff:1d:29:a8:1e:
84:2d:6d:6e:d0:26:06:43:2a:bb:dc:3f:a4:fc:e7:27:c5:df:
c6:ab:be:c6:61:31:c5:e6:e5:a0:2f:51:79:76:5c:79:6c:d1:
3f:5f:63:59:97:44:1e:d8:f8:19:16:4b:71:41:fd:c4:0f:0b:
10:5d:55:00:25:db:aa:aa:17:22:59:de:c6:be:ec:fa:06:73:
54:93:69:9b:56:60:21:90:b2:a9:81:18:5a:4d:6d:04:52:41:
8e:29:28:30:b0:eb:78:8f:37:0f:73:d3:ff:7f:30:25:3f:5e:
a2:91:90:7e:b7:15:63:60:c8:ac:4e:b4:a6:f2:f0:be:1d:99:
c5:22:6f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org