Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/DyHRcKRUNnHGc_-lAJ9WZJyAjBE.roa
File: DyHRcKRUNnHGc_-lAJ9WZJyAjBE.roa (raw, json)
Hash identifier: 2GbFAj2p7zQr6wn/qk/Hj0KoVf4Cvejqwn11WHvfv+8=
Subject key identifier: 0F:21:D1:70:A4:54:36:71:C6:73:FF:A5:00:9F:56:64:9C:80:8C:11
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0780
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/DyHRcKRUNnHGc_-lAJ9WZJyAjBE.roa
Signing time: Tue 29 Sep 2020 10:06:21 +0000
ROA not before: Tue 29 Sep 2020 10:06:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 2400:4e80::/32 maxlen: 124
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1920 (0x780)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 10:06:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0F21D170A4543671C673FFA5009F56649C808C11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:c5:4e:6f:95:81:d0:4b:ba:fc:6e:cd:3c:
80:07:6f:e2:b1:2d:17:58:22:23:9e:d8:ab:c5:cd:
eb:e6:f0:c4:d2:7a:42:d2:53:11:90:0e:68:c2:20:
cf:25:a5:50:c8:4f:99:26:38:87:de:4e:c1:52:c5:
b4:7f:7e:c1:2b:62:e0:48:ad:16:75:f6:67:01:13:
62:cb:33:5b:05:f5:d1:fb:67:49:0c:d5:bb:51:21:
ce:ca:ae:8c:2e:ff:ba:60:6a:ce:bd:4e:ab:9a:aa:
ec:12:81:76:77:1b:2f:56:0b:f2:89:70:98:a4:c4:
4c:c9:98:c2:07:48:78:8b:41:31:38:b5:17:e1:54:
0c:ae:53:24:5e:ad:24:0d:dc:d0:2b:dd:13:3a:e0:
63:c2:a6:91:7d:93:95:22:99:85:28:4f:1c:7d:f3:
77:57:35:1e:96:e7:29:5b:f0:30:76:25:63:7a:bc:
85:ff:a1:f4:a1:06:2c:bb:25:61:28:84:90:03:77:
01:3b:e1:fa:0a:ad:65:87:95:f5:b5:35:4a:fc:6b:
da:88:0c:51:7d:3d:93:3f:1b:8d:58:87:11:9b:09:
8f:24:d9:dd:c1:32:54:64:e1:2f:a0:09:4c:b2:79:
11:cb:95:2f:eb:56:6b:8d:fa:0f:83:ce:97:07:fd:
2f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:D1:70:A4:54:36:71:C6:73:FF:A5:00:9F:56:64:9C:80:8C:11
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/DyHRcKRUNnHGc_-lAJ9WZJyAjBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4e80::/32
Signature Algorithm: sha256WithRSAEncryption
d3:54:7f:10:9e:a9:20:24:71:20:ba:89:80:df:45:3a:09:e1:
18:77:ec:b4:89:67:f1:c4:73:d3:b8:b8:96:37:dc:4a:14:cc:
1b:1a:83:7b:3d:33:3b:29:07:8d:36:b0:05:e4:b4:67:22:9e:
9f:8f:63:03:1e:c0:83:47:c3:96:7f:92:d1:71:ad:ed:fe:13:
ff:76:ec:73:31:14:88:80:3d:56:38:c0:16:27:cd:2d:63:94:
fc:27:f7:fb:ea:ea:8d:36:d7:c3:09:80:0b:5c:2a:23:fb:fd:
d0:0a:35:32:43:d1:97:fa:01:8a:eb:25:b3:f4:bd:ec:0b:26:
77:8f:40:f3:53:b1:42:1e:0a:85:dd:af:6d:ab:97:26:ad:be:
eb:50:b2:be:94:8b:c7:9f:3f:88:52:e5:56:1c:3a:60:13:c1:
3a:15:d4:76:39:cb:ea:8e:d6:5c:09:93:4f:3f:22:f8:16:20:
60:e6:4c:b9:f2:58:4d:57:c4:96:dc:85:97:0b:4f:e8:1d:cd:
4d:fe:ff:ff:05:d4:68:3d:6f:1a:75:f0:01:2e:05:7a:be:a4:
3b:d9:82:c0:4a:1e:87:ec:4b:61:23:b8:d0:58:82:5e:d6:fe:
97:36:9f:06:29:7e:e4:1e:24:82:48:47:5f:35:bd:f4:4e:a4:
23:68:e5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org