Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/M6VJZFfTWvMYCL7BNjTNwVY4R3k.roa
File: M6VJZFfTWvMYCL7BNjTNwVY4R3k.roa (raw, json)
Hash identifier: hqBxfBCErdQRRskxzFybeVFHOFcBkt3adIig9UeH5TA=
Subject key identifier: 33:A5:49:64:57:D3:5A:F3:18:08:BE:C1:36:34:CD:C1:56:38:47:79
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0972
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/M6VJZFfTWvMYCL7BNjTNwVY4R3k.roa
Signing time: Wed 29 Sep 2021 02:42:15 +0000
ROA not before: Wed 29 Sep 2021 02:42:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 2400:4e80::/32 maxlen: 124
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2418 (0x972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 29 02:42:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=33A5496457D35AF31808BEC13634CDC156384779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e1:e3:ed:c9:71:92:9f:a9:d3:fd:d2:ce:58:
8a:8d:09:b6:43:e7:86:2f:6a:8c:81:0e:3b:fe:29:
dc:e0:97:d5:29:f7:f8:b7:a9:ff:4e:b4:cd:ed:92:
30:52:c8:1b:9d:a9:7b:b8:1c:73:02:19:08:c8:03:
93:43:47:4d:ea:62:e2:3d:5f:6d:7f:0a:eb:fb:cc:
ac:97:e9:1b:92:83:2f:b4:2d:b4:13:5d:1c:b0:63:
34:d1:d6:41:ab:d9:c3:4d:5a:05:b5:53:ff:5f:e0:
37:fd:b4:cb:a1:34:d2:5a:21:66:36:13:1e:03:d5:
e1:af:fc:dc:b7:2c:d2:f1:bc:f5:89:ce:12:42:80:
2c:0d:9b:6b:19:7f:e7:15:a6:90:c0:98:64:88:80:
c1:5f:73:d2:8c:1e:f9:66:5b:bd:43:5a:ab:de:c6:
83:42:5b:83:07:89:e1:3f:2e:af:e0:e6:e0:41:ab:
25:08:da:f3:9d:30:0d:09:78:db:1f:b9:60:55:58:
16:43:d8:7a:5c:1c:3f:17:cf:e7:2b:1d:e6:24:8c:
6c:a5:3d:a6:f1:b8:2a:8e:58:60:0a:51:ab:bc:f4:
ea:4d:ac:ca:ad:1c:98:ed:6e:6a:76:d1:e3:a6:4b:
81:39:d6:2e:40:fe:6d:2c:fe:a9:0d:eb:b0:03:1a:
2e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A5:49:64:57:D3:5A:F3:18:08:BE:C1:36:34:CD:C1:56:38:47:79
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/M6VJZFfTWvMYCL7BNjTNwVY4R3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4e80::/32
Signature Algorithm: sha256WithRSAEncryption
85:2a:fd:84:07:59:c0:4c:71:8e:51:45:fc:32:7a:33:58:c4:
25:ef:64:3e:19:8c:bb:7a:16:c9:53:cd:7b:57:62:3f:9b:cd:
88:00:68:78:fa:67:b1:a3:19:c6:ce:b6:6a:08:5a:b9:b8:83:
b9:7c:a6:1f:71:bf:8e:c4:24:0c:18:05:1b:96:0a:8c:84:5f:
a2:0e:b1:71:55:11:57:8a:25:bb:88:fb:c2:37:c9:24:71:fd:
88:97:6d:91:67:78:a5:c3:80:da:17:29:b5:28:f8:e1:62:d1:
ae:a6:7b:f5:61:4d:ac:70:1c:69:fe:51:1c:08:2c:90:21:10:
a3:2e:c8:fd:6c:75:1c:90:8c:1a:73:46:26:b6:4b:df:70:f9:
66:cb:bd:07:13:65:8b:39:e0:55:78:f3:77:27:f7:d9:fa:c4:
dd:33:c6:a2:16:12:1b:71:2c:b4:8f:2e:2d:1b:bc:0e:a7:72:
b3:70:8e:42:03:ad:03:4d:78:0b:89:77:4e:62:5c:76:34:74:
55:b9:fc:9d:a0:58:be:cb:67:be:ce:7b:40:08:b0:c7:8d:48:
ec:66:7d:28:0e:9b:06:29:e7:1a:3d:09:43:55:50:46:f6:c3:
1d:19:6d:35:ce:a9:0a:b5:e5:1f:58:12:d5:5a:65:19:f1:62:
27:19:54:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:29 2025 by rpki-client