Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h5bcgr0cBeZ6Ibxb99w50tLAqk8.roa
File: h5bcgr0cBeZ6Ibxb99w50tLAqk8.roa (raw, json)
Hash identifier: Io1qPCB473NiuSZHcth14TSBwXyGn18GNj0WbhFnvSI=
Subject key identifier: 87:96:DC:82:BD:1C:05:E6:7A:21:BC:5B:F7:DC:39:D2:D2:C0:AA:4F
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 044E
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h5bcgr0cBeZ6Ibxb99w50tLAqk8.roa
Signing time: Thu 15 Sep 2022 02:35:10 +0000
ROA not before: Thu 15 Sep 2022 02:35:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 2406:3040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1102 (0x44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 15 02:35:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8796DC82BD1C05E67A21BC5BF7DC39D2D2C0AA4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:6d:45:da:87:48:a1:7d:50:ca:30:7b:f1:
28:ec:06:52:9f:31:51:dc:da:5b:b0:fa:f7:99:53:
4e:d6:13:8c:6d:4b:fb:f4:3d:68:86:84:fd:10:c7:
57:f6:91:be:af:14:0a:c5:8b:42:64:3b:a6:48:16:
4d:4f:48:5a:f8:9b:c4:3d:50:06:26:49:96:9b:72:
2c:11:f8:ce:5e:09:57:27:61:a8:b6:99:65:bc:c7:
7d:5a:4d:cb:a2:01:7f:7f:91:32:d2:ed:13:1a:d2:
97:04:e8:e4:c5:df:e5:5c:f8:b3:00:89:cb:fd:e0:
97:2c:e4:2e:ba:69:ca:82:f6:aa:fa:99:a0:df:52:
a6:e5:6a:5a:ec:83:f1:3b:5d:cf:9c:d5:83:06:63:
e6:c4:30:7e:2c:13:82:cd:eb:49:99:1c:e8:a2:27:
a5:f5:84:e4:08:61:41:91:80:0f:09:b8:17:f0:fb:
7f:01:47:0e:0b:d8:d7:c9:cc:7b:81:02:f2:a6:5f:
00:0d:c1:79:d1:df:07:fa:c3:94:05:5b:d6:c0:42:
13:7b:d4:d8:f9:40:1a:f5:fb:f7:6d:4e:13:b7:07:
37:8a:e5:20:a6:f7:be:98:d6:ed:ad:76:7c:0b:e3:
68:94:88:15:54:7e:f7:92:39:66:29:22:6d:c1:80:
72:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:96:DC:82:BD:1C:05:E6:7A:21:BC:5B:F7:DC:39:D2:D2:C0:AA:4F
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h5bcgr0cBeZ6Ibxb99w50tLAqk8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3040::/32
Signature Algorithm: sha256WithRSAEncryption
a4:66:7d:35:57:a6:86:d9:85:92:5b:f3:51:6b:86:db:bb:42:
7d:e9:7d:3a:11:21:43:4e:15:28:be:67:b5:6c:25:64:a3:85:
7e:81:62:de:e8:6b:0a:6d:43:f0:0c:d0:1d:92:15:d8:80:87:
02:d0:56:ac:c2:c8:aa:0c:e6:e6:d5:13:a9:4d:93:d8:f3:81:
6b:80:89:e6:32:58:e5:90:ce:6e:3b:8b:6c:7b:f7:28:cb:32:
9e:50:00:2f:ff:ea:72:62:15:26:dc:44:31:bb:f5:f9:c6:c9:
52:63:08:70:fc:a7:52:9c:f0:a1:14:4f:81:ad:4d:e6:63:95:
ba:db:c7:d0:cf:50:9a:fd:a7:e7:42:b7:d6:d8:88:6d:2e:c0:
b5:35:cc:de:ff:88:d4:a3:b7:9f:42:56:18:14:6f:05:d5:92:
b0:85:cb:75:09:43:8f:b7:87:96:ac:cd:8d:ea:fd:6e:c0:7e:
26:b9:3c:fc:d1:e6:e8:d3:c3:c9:e3:25:ec:6d:f8:45:97:c2:
2c:6a:0b:ab:b0:17:2d:50:d6:b9:3d:cd:22:fe:0e:a0:94:9c:
c9:7f:8d:f9:51:0d:7f:55:d8:3e:43:f1:2a:b0:a8:5b:2e:dc:
77:ff:2d:86:f9:ea:e1:7b:2a:73:4a:ec:29:3b:34:12:98:8b:
66:07:67:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:11 2025 by rpki-client