Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KNJ8YPkWdYxoiDfLJnY3i9oR2nQ.roa
File: KNJ8YPkWdYxoiDfLJnY3i9oR2nQ.roa (raw, json)
Hash identifier: ZBSOkPuDpHHAUOERUQMf3RjpDPtqAmzR5k52bUygbNs=
Subject key identifier: 28:D2:7C:60:F9:16:75:8C:68:88:37:CB:26:76:37:8B:DA:11:DA:74
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 077D
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KNJ8YPkWdYxoiDfLJnY3i9oR2nQ.roa
Signing time: Tue 29 Sep 2020 09:59:55 +0000
ROA not before: Tue 29 Sep 2020 09:59:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 2405:9200::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1917 (0x77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 09:59:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=28D27C60F916758C688837CB2676378BDA11DA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ec:74:ea:e5:f1:b3:8d:1e:93:d4:5f:79:60:
a0:03:9a:f3:42:39:1d:19:4f:c4:b1:ff:6a:f8:f4:
a1:8b:01:e7:8c:5b:8a:4c:6e:14:f9:92:a1:76:41:
c6:13:b5:32:71:03:59:d6:b4:b0:30:28:64:f8:b1:
e2:0c:b0:8b:e3:e1:dc:c8:65:97:a7:f8:0f:c5:cc:
87:c8:39:53:27:79:87:f0:a1:51:d3:c6:9d:55:22:
fc:12:ed:ab:5d:34:c8:5b:78:52:d4:67:ad:9f:b6:
c9:2a:ed:c0:35:c4:42:45:d2:69:83:e8:9f:b0:5a:
0e:0a:94:28:99:20:b5:9b:96:3b:4d:a7:73:94:19:
0b:92:01:32:69:b2:03:fb:60:5f:d1:f2:2c:0b:1c:
b4:cf:f6:92:a8:a6:95:53:13:f8:06:de:b8:a7:9b:
86:9d:c0:7f:68:82:25:75:83:f7:ce:28:0c:80:f6:
62:7d:ae:46:71:13:e4:62:a4:7c:6d:3e:4a:c4:be:
e0:ca:80:46:87:b0:b8:80:bd:d7:e9:5a:18:e8:27:
a1:f2:63:0a:53:b7:12:56:af:9e:56:af:2d:5e:e8:
47:8b:1e:d6:95:7a:73:f9:51:9b:59:8b:46:0a:29:
cb:4e:3b:a7:41:10:a5:d5:1f:84:3b:4d:72:33:0d:
86:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D2:7C:60:F9:16:75:8C:68:88:37:CB:26:76:37:8B:DA:11:DA:74
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KNJ8YPkWdYxoiDfLJnY3i9oR2nQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:9200::/32
Signature Algorithm: sha256WithRSAEncryption
ab:9d:20:be:ab:2c:75:2a:0d:c9:1a:0a:d7:92:f8:df:91:d2:
6b:06:e9:35:6d:f0:22:96:09:8e:b9:40:f6:fb:7f:bb:b1:be:
db:61:09:ee:85:3d:b9:54:54:69:e1:1b:98:4a:16:b5:e6:95:
44:5c:44:d0:90:3c:a2:42:b6:4f:7d:cf:d2:85:9a:c1:8e:bb:
93:8d:0c:52:1b:6e:ab:6b:5c:a1:cd:be:f6:a8:d0:41:b2:ab:
e7:c4:bc:05:e1:66:2c:a4:18:88:ca:34:e0:08:2b:69:99:f2:
a6:db:f6:2b:de:07:1b:f1:40:66:b9:28:82:1a:50:8e:63:43:
2c:64:a9:52:67:92:fe:d7:6d:6c:69:39:92:8b:dc:42:24:6d:
49:4e:74:67:be:27:50:c0:36:8e:d5:61:3c:14:b7:e8:a0:9d:
78:1c:9c:8d:10:14:2f:20:f3:95:b4:02:6f:19:ee:38:ed:a2:
e4:fb:e7:3c:77:06:17:50:96:59:5f:33:4e:a0:f9:a7:49:f4:
e2:f0:ba:d7:f8:2c:10:db:fb:e4:31:be:7d:cd:6e:ee:e0:0a:
fc:ce:eb:b4:a8:4c:70:55:3e:b5:d3:62:ba:82:46:10:d0:f4:
07:97:69:42:50:51:7f:64:a8:0c:69:ff:4f:a1:bc:9f:d6:f0:
55:e5:2d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org