Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/zHEIUYnEovChFFah6a-J4LGV-Wk.roa
File: zHEIUYnEovChFFah6a-J4LGV-Wk.roa (raw, json)
Hash identifier: phzLag2etifuymCcvRuRMciijYF3Nxq83MNh4JGziEc=
Subject key identifier: CC:71:08:51:89:C4:A2:F0:A1:14:56:A1:E9:AF:89:E0:B1:95:F9:69
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0A6A
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/zHEIUYnEovChFFah6a-J4LGV-Wk.roa
Signing time: Thu 15 Sep 2022 02:37:36 +0000
ROA not before: Thu 15 Sep 2022 02:37:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4783
IP address blocks: 2405:a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2666 (0xa6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 15 02:37:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CC71085189C4A2F0A11456A1E9AF89E0B195F969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:82:e8:21:46:3c:f1:9e:dc:27:ac:af:98:49:
76:ca:06:1f:ab:49:2d:1e:c6:44:0d:d7:08:ed:34:
9e:3f:e4:9f:94:24:43:16:fd:8f:5d:3a:ac:bf:6c:
5c:c9:9a:46:ef:fd:65:84:d8:fa:4d:5c:57:e4:98:
24:a9:c6:70:3e:6d:aa:4d:b6:03:d3:a9:10:10:11:
6c:ef:86:40:7e:01:a6:0b:05:0e:af:33:cf:6a:df:
ca:13:5c:aa:43:2d:21:d3:05:38:4f:c1:d1:3e:cb:
21:b8:15:a7:1e:80:78:ef:87:a5:8d:b3:c7:49:f5:
22:07:14:27:63:9e:ed:f3:c7:1b:b4:86:b0:b1:56:
38:21:ee:4d:3a:47:74:3f:d3:63:04:9a:9f:9e:5a:
f7:68:83:16:d2:00:a5:d2:71:5f:d6:8f:92:b3:a6:
65:de:b4:ea:59:19:a4:46:f5:a6:9a:bd:50:e2:00:
5c:57:56:e2:96:6c:fe:de:5d:35:30:87:a1:80:4b:
34:54:06:fc:86:73:a9:cc:16:3b:67:51:ea:c5:76:
cd:ac:29:66:06:67:bd:9a:b5:ff:45:5f:5f:25:b1:
21:ef:c9:ab:f6:68:80:8c:f8:e9:65:50:42:54:c7:
71:fc:f6:b9:c1:38:b5:69:5c:67:93:04:0b:11:6e:
8d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:71:08:51:89:C4:A2:F0:A1:14:56:A1:E9:AF:89:E0:B1:95:F9:69
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/zHEIUYnEovChFFah6a-J4LGV-Wk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:b8:82:7a:c7:eb:51:11:b0:7f:4a:a3:14:33:3a:4f:db:e0:
e0:06:ef:70:fa:b4:7c:b4:d3:f4:a1:da:50:3d:5e:43:8e:76:
4e:7b:42:79:64:b7:73:56:fa:c1:35:04:f9:6b:c0:70:d9:3f:
d8:a6:c4:74:2a:79:13:72:05:e2:1e:27:c7:b7:84:40:02:a3:
05:4f:da:b5:59:d2:a3:de:f7:c5:5f:e2:d8:63:6c:76:82:61:
04:75:06:b3:96:52:51:bb:37:c4:fa:dc:07:81:56:77:12:6f:
be:19:f8:42:c5:cd:9f:7c:5d:2d:8b:64:bc:5a:3e:96:97:ea:
5f:f2:ba:89:72:ca:85:54:ca:5d:8f:26:42:71:43:ae:1c:47:
24:71:2e:29:18:90:e3:39:d4:a2:2c:f6:8d:a8:d8:75:b9:7a:
d5:63:38:cb:d6:59:a5:c9:19:79:5a:af:78:c5:b0:6c:3a:32:
67:33:13:c5:2a:3a:a2:f4:68:68:3c:ae:94:13:a2:42:4b:84:
22:fb:e2:03:93:85:e3:36:10:2f:43:cf:01:b8:b1:b4:52:9d:
55:8f:40:06:e4:c4:48:d6:45:20:b3:30:61:5c:78:96:b9:b8:
ee:e6:6a:a9:0f:46:3c:3e:e8:59:8e:b9:ea:b4:3c:ba:a5:a2:
e2:56:ef:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org