Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/R6SYjBP8YXguHdmdpEC7p67vv4E.roa
File: R6SYjBP8YXguHdmdpEC7p67vv4E.roa (raw, json)
Hash identifier: Cb5TXCzIBzMeBLRPPH5fQSXqBnuEezGInxyGP+yMhm0=
Subject key identifier: 47:A4:98:8C:13:FC:61:78:2E:1D:D9:9D:A4:40:BB:A7:AE:EF:BF:81
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0A61
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/R6SYjBP8YXguHdmdpEC7p67vv4E.roa
Signing time: Thu 15 Sep 2022 02:38:34 +0000
ROA not before: Thu 15 Sep 2022 02:38:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d67::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 15 02:38:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=47A4988C13FC61782E1DD99DA440BBA7AEEFBF81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d7:57:0f:d6:31:e9:0c:b6:f3:5d:82:e8:6b:
2e:1d:f2:34:e4:c0:27:2e:a2:ea:45:b1:b5:25:c7:
ab:16:6b:e1:2e:d7:ef:cc:12:f1:7b:0a:90:1e:ff:
07:0b:a8:e0:e5:fa:d4:bd:de:02:0d:7d:b3:55:a5:
5d:7c:7a:90:de:25:f4:51:d6:7c:22:de:fd:05:0c:
23:0b:14:4c:62:f4:02:21:1e:a5:ce:78:3d:f5:b7:
a0:bb:52:92:de:ee:63:a0:cc:31:80:27:6c:ec:2e:
5e:97:d5:e4:ed:b8:50:ff:ce:1a:fc:79:a0:fa:a5:
13:29:ff:e3:8e:60:55:6e:c3:ab:dd:53:86:76:ed:
31:6a:10:81:cd:5b:e6:46:c1:83:0b:5b:02:06:c2:
e6:f1:3d:3e:fc:37:7f:15:29:34:78:bd:3c:52:d5:
7a:90:97:2c:e6:08:c2:6a:29:0e:5e:15:f5:aa:c5:
88:7a:54:83:10:f1:d5:15:f1:fa:de:82:88:a3:01:
14:6f:19:31:02:ff:2c:3e:b1:0b:9a:75:14:28:1d:
b3:90:ea:3c:fd:0b:40:f7:81:99:c2:bb:dc:e4:a0:
c3:b0:64:89:92:3c:83:01:66:a8:8e:f1:e6:38:15:
94:cf:8b:e4:60:50:83:dd:d4:bd:f5:0a:df:d6:68:
67:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A4:98:8C:13:FC:61:78:2E:1D:D9:9D:A4:40:BB:A7:AE:EF:BF:81
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/R6SYjBP8YXguHdmdpEC7p67vv4E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d67::/64
Signature Algorithm: sha256WithRSAEncryption
b3:af:da:30:6c:a9:6d:2f:e8:10:38:cd:4d:27:b6:a3:35:2c:
98:e1:39:ab:6c:be:a4:8c:34:46:78:6e:71:ce:e2:a8:8c:2a:
18:52:19:c5:fb:40:7b:e3:ee:c9:2b:24:4e:9a:f5:e3:41:6d:
7b:7d:14:aa:6d:78:20:09:58:8e:f5:17:f0:b4:8b:08:5d:e9:
84:ea:af:52:c2:1a:6d:81:89:53:ce:c7:99:24:e0:a3:c0:55:
12:85:5f:09:e7:29:f6:51:3d:61:e2:5c:06:7f:b5:40:17:b1:
8d:25:d2:20:f9:9a:3c:29:ad:f6:d2:70:ae:27:33:95:ef:5c:
9b:81:42:df:7c:60:ca:c4:7f:97:f8:d3:75:73:2a:dd:8a:7b:
6a:7c:fb:c7:be:47:fc:4c:98:a0:c5:9a:92:3b:9c:47:55:51:
b2:9f:6a:b0:43:70:c3:63:b9:06:3a:0b:a1:25:2e:a1:31:d2:
6b:21:49:d0:1e:05:57:57:54:08:83:68:fe:91:3d:e5:92:2e:
f8:d0:49:d2:10:87:ee:4d:16:e4:89:14:d4:09:23:7d:1e:21:
58:41:ed:f9:94:98:c1:8e:78:ac:53:af:00:5a:9d:22:72:2c:
bf:b6:39:b9:6d:a3:08:dd:c1:35:76:66:77:74:26:cf:56:71:
ac:75:0a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org