Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/X50HlfzcVGYG6jRPfl6wHDzyjPM.roa
File: X50HlfzcVGYG6jRPfl6wHDzyjPM.roa (raw, json)
Hash identifier: Z9Qqhc2THTyPiVTecGnXFR61ivvcnB4+CT5dT2anJUY=
Subject key identifier: 5F:9D:07:95:FC:DC:54:66:06:EA:34:4F:7E:5E:B0:1C:3C:F2:8C:F3
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X50HlfzcVGYG6jRPfl6wHDzyjPM.roa
Signing time: Thu 15 Sep 2022 02:41:12 +0000
ROA not before: Thu 15 Sep 2022 02:41:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 2001:288::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3032 (0xbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 15 02:41:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F9D0795FCDC546606EA344F7E5EB01C3CF28CF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c5:91:82:74:0c:93:34:06:17:17:85:b0:31:
ac:b2:62:4c:b8:05:97:59:00:e5:be:45:7e:c3:54:
9e:17:3f:ce:a3:52:e0:21:5d:ce:f0:9f:6d:87:bc:
b5:d9:99:81:05:3b:9e:e0:b2:e2:13:10:83:8d:72:
f7:88:4e:7f:1c:ef:08:38:7b:4d:48:1f:29:80:69:
f4:df:04:c3:82:d5:f0:63:8e:f0:da:7c:05:de:4d:
66:a3:34:0b:90:5e:7f:d8:1e:53:2d:b9:29:e0:f5:
80:ee:48:5e:da:b1:d9:59:3b:63:a0:fc:e2:a7:ee:
5d:27:9c:70:c8:be:7b:db:58:5f:f7:3b:d8:df:9b:
c4:b6:5c:d8:20:a6:db:83:48:3e:34:c3:33:e7:9f:
76:62:2a:74:4b:42:50:c0:8c:77:3a:2e:fe:c0:8a:
a3:d0:89:ae:9d:34:a6:2e:32:c7:da:fe:25:12:d0:
ea:4e:84:00:e8:e7:45:da:12:e2:51:d3:da:b1:b1:
fb:d1:63:9b:47:fb:d0:11:cc:1c:5b:f9:53:f4:b6:
3e:8c:84:9f:af:b9:5d:59:2b:5b:af:fd:0d:6f:dd:
dd:c8:a3:c6:f8:1f:20:52:f7:ad:2b:7b:a8:bd:c7:
cc:d2:fa:06:08:d2:23:82:81:cb:1e:ad:76:c0:fb:
0a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9D:07:95:FC:DC:54:66:06:EA:34:4F:7E:5E:B0:1C:3C:F2:8C:F3
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X50HlfzcVGYG6jRPfl6wHDzyjPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:288::/32
Signature Algorithm: sha256WithRSAEncryption
4c:5f:56:fc:ca:37:a8:cd:e6:ed:6f:03:9f:2d:f2:09:6c:90:
8b:4b:17:96:50:7e:ca:c4:67:6d:ee:3f:0f:ec:45:fe:68:16:
5a:d6:51:83:4d:2f:8c:11:1f:90:b7:78:84:da:23:36:7e:90:
63:cc:0f:00:8e:eb:9f:0b:ce:e3:28:da:02:0b:31:38:58:3c:
be:53:56:53:85:28:11:87:40:35:b8:b5:43:db:17:04:09:fa:
d9:a4:af:f3:08:5f:90:f4:ab:a0:7c:76:55:43:da:ab:b0:82:
a7:7b:2c:41:01:44:00:bd:ac:d8:57:21:3f:d5:2c:fd:09:f7:
62:c8:39:34:d3:98:a1:36:f9:85:b7:68:08:e2:f3:7f:77:92:
2f:0e:87:42:0f:a5:9f:c9:7e:a0:d9:aa:9d:52:30:7b:37:d9:
f5:22:5f:54:5c:b7:49:c4:d0:17:cf:0c:8a:45:1e:ce:ad:8b:
23:1e:6f:a0:ff:80:4f:76:5d:e8:00:9f:a4:e0:2b:16:15:d4:
dc:b9:0e:5b:e6:e4:15:f1:0d:1e:26:45:16:44:af:40:f0:3e:
85:0e:6f:34:be:15:ae:6a:ed:90:ab:14:5b:14:a9:08:1c:96:
d8:cb:81:44:71:2b:e2:f6:bb:9b:df:cc:77:c9:8f:20:d1:aa:
0f:a9:5c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org