Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/hcbvWlCWUsB1nXdmIQaLbBFV-kU.roa
File: hcbvWlCWUsB1nXdmIQaLbBFV-kU.roa (raw, json)
Hash identifier: RatQFYg6uIyCJusds9mQH3ScXikF1V14GVOkBIe23OU=
Subject key identifier: 85:C6:EF:5A:50:96:52:C0:75:9D:77:66:21:06:8B:6C:11:55:FA:45
Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
Certificate serial: 07
Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/hcbvWlCWUsB1nXdmIQaLbBFV-kU.roa
Signing time: Fri 28 Jan 2022 03:53:15 +0000
ROA not before: Fri 28 Jan 2022 03:53:15 +0000
ROA not after: Sat 28 Jan 2023 03:36:51 +0000
asID: 131642
IP address blocks: 2400:5120::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
Validity
Not Before: Jan 28 03:53:15 2022 GMT
Not After : Jan 28 03:36:51 2023 GMT
Subject: CN=85C6EF5A509652C0759D776621068B6C1155FA45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:55:22:53:f0:a6:d9:45:5e:d9:fb:af:96:dc:
cf:da:71:78:c2:83:fd:2f:b0:ee:31:e8:66:17:bc:
57:0a:91:bc:82:91:59:74:f2:68:df:3b:02:aa:32:
d1:09:b7:54:f4:6d:9c:30:95:f0:c3:11:13:1e:f3:
54:31:2f:8b:ab:fd:d7:07:b5:08:bb:73:e4:f6:b2:
ee:fa:4d:5e:88:f0:6d:df:38:ba:eb:a1:3e:b2:b2:
8d:3f:46:bb:45:d3:d4:3f:00:ea:fb:ba:6a:42:f6:
f7:bd:fc:42:72:85:69:e5:b3:28:5c:29:a5:1a:28:
f5:cd:54:c6:bf:94:d7:0a:36:37:60:5f:7d:6d:87:
dd:ae:b9:39:7c:de:0b:b3:59:85:24:92:a2:ac:cd:
3d:3f:10:5d:63:13:ee:2c:cf:f9:dd:24:e7:2b:19:
58:c2:bc:e8:7f:2d:fa:68:57:2b:13:4f:e7:3d:72:
60:52:13:3f:95:79:b5:cb:90:d3:15:9b:18:e3:27:
23:94:af:cc:b2:c2:cc:98:66:a9:9b:27:59:41:1b:
1f:3c:fd:82:1d:d5:2e:45:b8:81:33:35:47:e1:c8:
b0:b3:6f:13:c6:69:b8:dc:9e:b6:5e:35:27:ea:80:
15:86:4b:a7:56:1b:61:50:02:f2:74:b6:74:4c:04:
59:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C6:EF:5A:50:96:52:C0:75:9D:77:66:21:06:8B:6C:11:55:FA:45
X509v3 Authority Key Identifier:
keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/hcbvWlCWUsB1nXdmIQaLbBFV-kU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5120::/32
Signature Algorithm: sha256WithRSAEncryption
a5:e3:c1:7d:9d:18:57:e6:6b:cb:de:0f:c5:35:9c:be:62:37:
5e:23:72:98:35:ba:8d:5f:7a:f4:1b:eb:c5:46:02:2a:91:a9:
5a:60:d7:0b:6d:6f:55:2b:19:39:d6:f8:da:5c:c3:82:95:7d:
4b:ac:2f:1a:1d:3c:46:f0:12:91:62:17:bb:b5:68:4b:52:71:
36:c8:b2:f6:c4:aa:aa:f6:8c:56:e2:78:b4:d1:8b:d9:6c:99:
24:c9:1d:99:b9:5a:6f:fa:8c:4f:a1:18:c2:7b:eb:88:62:7d:
8a:24:5f:db:b4:0c:79:92:28:68:53:8a:99:3d:b1:43:ce:fc:
5d:53:9c:2c:7e:1f:51:2e:38:d7:85:7a:da:0f:af:13:df:65:
ee:fe:42:34:21:ea:8d:20:59:0d:79:1b:55:c0:d7:df:77:04:
ef:2c:dd:d7:35:86:39:f6:0c:e3:30:eb:31:73:fd:d0:eb:d0:
bd:f7:47:9f:c1:d7:5a:d6:f7:a5:c9:58:09:3a:88:21:6f:c7:
5a:4b:55:ac:20:b3:58:48:f2:9b:d1:ec:66:b8:e5:45:66:d6:
f1:a1:dd:b2:02:66:f5:01:31:55:2f:1a:58:31:47:d4:ad:d6:
c9:55:b9:1c:8c:d6:d6:f6:17:87:03:1f:ec:88:8d:4d:a7:96:
21:e5:b2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org