Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/DN2c3MSBGOWb7yEITIVfJKWyivE.roa
File: DN2c3MSBGOWb7yEITIVfJKWyivE.roa (raw, json)
Hash identifier: c4Ay38LczZVhQRMxizmxCwtMsoRZv8J/EJuM8bN4KLI=
Subject key identifier: 0C:DD:9C:DC:C4:81:18:E5:9B:EF:21:08:4C:85:5F:24:A5:B2:8A:F1
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0AD4
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/DN2c3MSBGOWb7yEITIVfJKWyivE.roa
Signing time: Wed 29 Sep 2021 02:41:08 +0000
ROA not before: Wed 29 Sep 2021 02:41:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 2001:288::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2772 (0xad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 29 02:41:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0CDD9CDCC48118E59BEF21084C855F24A5B28AF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:63:2e:db:8a:88:3b:a5:d4:2e:3c:55:ba:
04:34:fc:ee:29:cf:32:c9:f5:7e:0e:ed:e7:01:f1:
b1:b6:ea:c0:58:c6:cd:42:bb:16:61:14:72:05:d8:
6b:ca:ba:06:49:ad:b9:67:e5:d6:6e:9e:b6:ec:3c:
e7:ed:95:19:d0:59:c2:6c:81:a0:9c:16:48:e7:f5:
4c:04:94:c3:88:f1:16:54:8a:4f:c9:63:7e:bb:95:
6c:ba:6f:ed:be:b7:63:d1:ca:e1:01:bc:1e:ff:cc:
05:39:a3:1f:d6:08:af:be:06:10:66:42:1f:ec:cd:
00:42:ac:54:69:fa:1d:f0:a6:62:89:e8:74:48:42:
06:57:25:b4:9a:50:81:9e:fa:87:a9:40:55:45:cd:
1e:f6:63:1b:0f:60:65:8c:2e:25:b8:a3:e9:12:bd:
78:07:e8:10:6c:49:d1:54:0d:44:93:b3:5b:0f:1b:
0f:24:38:53:bb:ad:27:72:d1:59:00:0e:01:65:27:
78:d8:1b:b2:f3:c4:f7:e5:e8:1d:a8:df:e4:f0:3d:
1b:d0:57:7e:8d:e6:fd:48:d3:a9:d0:6c:56:97:f4:
60:e6:47:00:09:23:36:f6:1e:b6:88:7c:bc:3f:b9:
bf:6a:75:91:bb:9c:76:f7:65:33:0b:96:07:7d:0b:
6c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DD:9C:DC:C4:81:18:E5:9B:EF:21:08:4C:85:5F:24:A5:B2:8A:F1
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/DN2c3MSBGOWb7yEITIVfJKWyivE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:288::/32
Signature Algorithm: sha256WithRSAEncryption
57:44:75:e0:ba:40:a1:29:9e:85:d9:14:b2:56:63:7a:d6:0d:
1f:5b:54:6c:ee:d2:70:3d:19:21:4d:a1:c5:3b:51:c5:7f:7b:
b8:c6:cf:1f:51:71:fc:39:29:51:5a:37:73:ed:86:d0:83:02:
6e:df:4d:aa:bc:44:96:74:43:cf:5b:9d:99:11:f6:47:bd:03:
6e:75:77:53:ca:9f:31:65:bb:4f:11:ab:8d:fd:54:f5:d9:64:
b1:9e:76:2c:2e:fb:f2:1c:1c:4c:c0:f0:20:ca:63:70:a2:13:
41:e1:90:23:c2:9c:d2:e6:b8:fe:73:95:7d:fd:a6:b0:b8:a2:
f7:e3:ce:8a:0e:c5:82:14:4b:d1:00:28:4f:54:a3:37:ca:8e:
cd:05:5c:5f:0c:49:c3:69:54:ce:69:a5:28:8f:5d:43:7b:f0:
fc:74:87:00:7e:9e:d6:f4:87:e2:a0:9b:1b:55:e2:b1:89:12:
1f:7e:a4:fc:2f:e8:59:bb:da:9d:35:1a:55:78:2b:ab:14:8a:
c3:6e:ea:01:ab:4e:6c:12:e0:98:88:5b:ef:16:6f:c9:12:d9:
0e:36:e4:c5:89:1e:d4:22:42:e7:6f:95:6f:a8:4f:49:8d:a5:
24:34:ac:81:00:97:79:01:32:a8:c4:ea:ea:4e:98:21:f4:a4:
4d:04:49:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org