Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/2cTQF3dLVbtABVTvU87PpyZy5q4.roa
File: 2cTQF3dLVbtABVTvU87PpyZy5q4.roa (raw, json)
Hash identifier: bRyaq+HMOcK7EyLUI8p/FFBCq3FOrpl0a8zvNpqm+No=
Subject key identifier: D9:C4:D0:17:77:4B:55:BB:40:05:54:EF:53:CE:CF:A7:26:72:E6:AE
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0787
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/2cTQF3dLVbtABVTvU87PpyZy5q4.roa
Signing time: Tue 29 Sep 2020 10:06:58 +0000
ROA not before: Tue 29 Sep 2020 10:06:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d64::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927 (0x787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 29 10:06:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D9C4D017774B55BB400554EF53CECFA72672E6AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7a:b7:64:0c:5a:65:1d:bc:18:46:8c:7f:b6:
b1:f2:25:d2:67:8d:b0:71:97:8f:e6:b3:91:8e:56:
ef:af:77:fc:64:67:53:69:2e:fe:5b:bc:8c:28:1c:
09:98:7f:96:40:52:34:d5:64:df:02:32:d8:84:e5:
54:f4:43:e2:f8:1f:42:34:ea:63:a1:82:ce:ad:4f:
5e:7c:12:80:11:3a:63:5c:d8:1a:48:3b:13:ff:8c:
a4:d6:eb:75:25:49:d6:f8:f8:49:98:64:25:33:7f:
a2:8f:df:b6:20:b8:cc:ec:e3:62:a2:ca:f3:54:81:
6a:68:65:56:6c:d5:1e:21:2a:da:66:c0:59:59:6c:
8b:db:78:56:39:b7:89:50:e1:db:01:cf:9a:61:74:
30:ca:63:eb:48:3d:dc:ff:63:50:6a:99:7c:22:54:
16:8e:d2:a5:2e:a3:1c:d9:da:2b:10:8c:ad:54:2d:
02:05:95:1b:2a:03:6d:66:30:85:ad:9c:30:56:0d:
93:7a:56:36:74:c9:11:5d:ca:11:b3:4a:d0:5e:c8:
6b:3c:9a:b7:66:c4:ce:11:23:5b:dd:5b:62:7f:21:
83:29:4a:fb:9a:43:0d:c7:16:4c:34:a0:8e:0c:d8:
06:79:b1:1a:2b:14:61:43:5e:11:65:23:1d:43:78:
f8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C4:D0:17:77:4B:55:BB:40:05:54:EF:53:CE:CF:A7:26:72:E6:AE
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/2cTQF3dLVbtABVTvU87PpyZy5q4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d64::/64
Signature Algorithm: sha256WithRSAEncryption
74:31:48:ab:b1:2e:68:b8:85:10:25:ae:86:4d:0a:4c:0d:a4:
6a:a4:f2:f5:a2:34:37:f9:32:34:32:e9:db:8b:9c:21:1c:93:
15:b5:0d:1e:b0:e1:7a:75:e6:47:06:e1:45:8b:02:cc:c1:a9:
f3:36:19:76:82:29:99:5c:04:2e:26:a4:e7:64:ac:a2:6a:9e:
38:d5:03:7a:59:05:1f:83:8f:27:dc:8a:c5:b7:94:89:52:03:
8b:43:2c:86:72:f5:a6:41:e1:52:d9:72:08:a3:c2:2a:9f:93:
19:d5:cf:3d:25:ba:63:89:ab:1a:d7:63:5d:d8:b9:00:bd:82:
81:be:f2:1d:85:28:9f:bd:2c:c1:4a:c8:2b:91:ae:43:0b:86:
9e:7a:a2:12:8c:23:a8:a4:0f:21:52:db:56:fd:d8:c0:71:57:
ce:42:47:2f:86:14:ca:ff:63:bc:28:f3:7b:c9:33:de:c4:a4:
09:f2:63:52:ce:d2:60:a3:71:bc:55:ba:29:a8:d2:bf:0c:d7:
f0:fa:b1:37:a4:af:9d:07:a3:f5:0c:ba:7a:44:4e:54:56:ce:
ac:8f:a2:e7:7f:2b:cb:5a:c1:26:c7:7a:78:37:a7:ca:f0:1e:
66:1e:9f:63:6d:8d:a7:ae:37:c7:b8:8e:1a:4a:0a:2a:26:d6:
95:82:ff:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org