Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/iI7HvGAgOxX5BdpYJga8O7LRkYI.roa
File: iI7HvGAgOxX5BdpYJga8O7LRkYI.roa (raw, json)
Hash identifier: wZueIyfnkXZjLEeOx57MIPDKUtH4Lo6zeqkPLEVAP9s=
Subject key identifier: 88:8E:C7:BC:60:20:3B:15:F9:05:DA:58:26:06:BC:3B:B2:D1:91:82
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 078E
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/iI7HvGAgOxX5BdpYJga8O7LRkYI.roa
Signing time: Tue 29 Sep 2020 10:06:18 +0000
ROA not before: Tue 29 Sep 2020 10:06:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4783
IP address blocks: 2405:a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1934 (0x78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 29 10:06:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=888EC7BC60203B15F905DA582606BC3BB2D19182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:87:16:67:22:4c:b0:a1:4f:b2:d9:7c:90:a8:
4d:2a:a3:47:91:40:45:70:9f:88:6d:d8:b3:18:2e:
69:4b:be:26:ec:0c:b3:7b:f3:5b:41:ac:4b:4e:1e:
61:3a:8f:56:ea:3a:07:18:b3:1f:46:d5:41:28:89:
da:3d:d8:1b:ea:ee:10:6b:65:31:04:4b:25:f9:ae:
79:b5:40:17:67:0a:d1:2f:55:04:f9:e3:23:61:83:
14:5e:a2:24:9f:23:39:27:af:2f:b9:7e:7b:0d:99:
6f:f0:45:06:03:6a:b2:fa:a7:4c:7d:90:32:3e:c1:
75:56:67:bf:b5:2d:a7:50:48:bd:57:c0:e6:cf:14:
b4:73:e4:22:55:d6:45:b6:61:a5:bc:69:ed:3c:b8:
2e:0a:bc:dd:3b:11:11:41:c7:85:9c:61:d6:ec:e7:
c6:7e:b1:83:ea:d5:e1:4d:bc:83:cd:0d:77:12:54:
d8:b7:60:2c:cc:9d:b2:6a:da:5b:9e:4d:8a:43:06:
3e:5f:ac:03:b7:dd:96:2e:19:a1:23:bb:3b:55:6e:
50:d9:68:c3:b7:cf:69:fe:d0:55:87:5b:fc:3b:8f:
91:92:f0:71:11:70:e1:83:1e:2d:88:a3:f5:f8:86:
4a:88:2b:95:8a:24:1b:88:47:24:2b:9c:26:61:63:
c8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8E:C7:BC:60:20:3B:15:F9:05:DA:58:26:06:BC:3B:B2:D1:91:82
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/iI7HvGAgOxX5BdpYJga8O7LRkYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a00::/32
Signature Algorithm: sha256WithRSAEncryption
58:72:ec:d4:92:ba:aa:b8:0b:1f:85:f9:53:99:f7:45:97:f3:
9e:df:31:85:93:18:7b:45:4e:f2:70:01:b2:c4:de:ef:ae:69:
e2:22:a8:56:58:25:24:b4:c2:7c:88:cb:59:ec:81:fd:9d:83:
00:fe:89:20:37:60:52:c7:ba:28:5c:36:a7:65:b2:54:43:ed:
a2:40:b8:9a:22:85:5d:8d:64:49:cf:25:32:fa:25:2f:ca:f7:
01:16:26:d9:c9:ae:a0:50:92:cf:69:11:43:e6:16:d3:bf:f9:
31:bd:6c:47:70:42:ea:3e:0a:34:ce:05:94:56:79:eb:46:7c:
99:43:30:ab:8f:ca:bc:32:e1:ff:b5:1a:74:9f:e8:e1:ae:05:
f3:3f:79:4a:f5:9d:ca:28:c1:06:41:e1:b7:f1:bc:2d:4c:cf:
4c:be:3b:e2:b6:ba:d6:f5:b1:8c:a1:79:f2:54:5d:c5:c1:d5:
3b:69:fc:82:c2:68:d5:08:e5:20:2c:17:24:06:95:89:62:47:
23:a9:c4:91:34:4d:84:a7:d4:88:2c:d0:c1:ef:f5:dc:e5:a4:
1a:e0:06:78:ef:41:d6:ac:18:07:09:f5:00:e2:65:fe:ee:aa:
98:33:5c:4c:65:b4:79:b0:2f:7b:ad:36:9d:fe:7b:17:71:ca:
8c:26:9e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org