Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/7pJSKYL4FbSGRPbqiNCvQ1uf7ss.roa
File: 7pJSKYL4FbSGRPbqiNCvQ1uf7ss.roa (raw, json)
Hash identifier: 2+GkDxL5uTwUGi0+BSidAc7A2u8wxJoryz7mZm5AhLA=
Subject key identifier: EE:92:52:29:82:F8:15:B4:86:44:F6:EA:88:D0:AF:43:5B:9F:EE:CB
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0775
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/7pJSKYL4FbSGRPbqiNCvQ1uf7ss.roa
Signing time: Tue 29 Sep 2020 10:00:48 +0000
ROA not before: Tue 29 Sep 2020 10:00:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 2403:7f40:ff00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Sep 29 10:00:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE92522982F815B48644F6EA88D0AF435B9FEECB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7c:20:c5:0b:d1:0e:30:2a:6a:5a:88:3d:b3:
e8:0a:f1:6e:61:5c:8a:22:e4:7d:ae:fd:e9:be:2a:
57:27:1b:76:00:16:36:7f:93:e5:08:6a:90:ae:c2:
f0:50:2b:9a:ab:d7:de:08:d2:a5:dd:d8:09:38:da:
7a:99:c1:d0:c4:d3:b1:90:47:26:85:00:38:c0:1f:
93:3b:e4:86:17:4d:8f:34:80:fe:b8:3c:32:52:c2:
ce:44:3e:bf:24:02:b3:30:c5:c5:23:a1:08:3d:2a:
1c:b6:b2:57:53:39:0d:e1:d9:fb:04:52:6b:eb:8b:
e6:f6:04:43:db:a3:de:65:73:ef:d8:77:c8:b8:ea:
cd:47:72:71:dc:24:2e:a5:8b:7f:0e:1b:13:5d:4c:
77:56:f3:5e:84:f4:8f:89:3e:15:6e:8d:86:8b:33:
07:24:48:b4:ba:82:c9:b4:3e:a1:14:97:f0:7b:84:
35:bf:17:43:14:64:49:06:3f:1b:64:4a:3b:97:9f:
df:67:47:84:ae:81:b7:ff:85:db:38:29:98:bf:ec:
68:24:a6:9a:83:5b:e7:b8:a7:da:70:94:20:e1:90:
7b:ca:b1:70:c9:50:dc:15:ac:a7:8a:96:9f:1f:3d:
45:21:6c:74:6c:da:a7:5a:05:55:1c:1d:c6:04:d2:
60:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:92:52:29:82:F8:15:B4:86:44:F6:EA:88:D0:AF:43:5B:9F:EE:CB
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/7pJSKYL4FbSGRPbqiNCvQ1uf7ss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7f40:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
05:aa:8e:07:31:84:23:06:d8:9e:64:80:a0:1a:a7:b4:22:92:
e9:27:71:3e:99:a0:6d:c0:da:df:c4:be:44:d8:59:48:8a:00:
60:5f:ad:06:fd:f7:6d:76:00:00:41:f2:d5:2b:ce:02:98:c6:
a1:ff:fa:b3:8e:02:8f:72:67:cb:40:22:26:63:9e:87:aa:ed:
47:dc:5b:f1:65:a4:39:a9:94:24:0c:fa:f8:43:0a:16:32:39:
22:d9:d0:1d:3e:69:0f:f6:24:f2:cc:6e:4e:da:b6:fd:11:76:
60:86:ab:20:0d:54:4b:2e:1e:06:3e:8f:b5:59:e1:25:9a:95:
4d:46:84:36:1e:14:5a:40:9c:6b:0b:f3:45:c1:79:43:eb:30:
71:2d:94:89:79:2a:3b:d6:ee:cd:26:5d:55:5d:16:7f:60:ad:
e2:89:29:b6:1c:9d:7e:62:b5:4c:f3:77:f1:d8:a1:41:75:19:
53:28:1d:b2:b9:33:b4:81:8f:38:f2:63:04:dd:74:04:c6:1a:
1d:27:fb:e2:f9:f7:af:9f:66:f8:14:f3:5d:79:45:59:ae:69:
84:b1:d0:4b:0c:7f:59:2c:4a:b9:07:02:82:ff:6a:94:8c:a3:
be:25:bc:4b:8b:1c:33:62:9b:59:24:e0:ef:88:d5:7e:11:54:
7c:04:5e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org