Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/yRm92QCA0trzWcg4d7cSP-tMraA.roa
File: yRm92QCA0trzWcg4d7cSP-tMraA.roa (raw, json)
Hash identifier: B8egOSr1G1OnwmVNNLI/epO/84LAJW8LU7lwd9BMSoE=
Subject key identifier: C9:19:BD:D9:00:80:D2:DA:F3:59:C8:38:77:B7:12:3F:EB:4C:AD:A0
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0777
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/yRm92QCA0trzWcg4d7cSP-tMraA.roa
Signing time: Tue 29 Sep 2020 10:00:48 +0000
ROA not before: Tue 29 Sep 2020 10:00:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131639
IP address blocks: 2403:7f40:f000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1911 (0x777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Sep 29 10:00:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C919BDD90080D2DAF359C83877B7123FEB4CADA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d0:17:f4:4a:77:c6:71:6d:24:34:90:05:d5:
65:6a:41:34:9d:07:d5:b7:80:4f:ec:a6:98:c2:74:
37:2a:b0:b9:4b:50:65:5e:7b:93:0e:0f:a5:06:52:
7a:89:9f:06:7c:54:e0:eb:c6:f6:c3:a8:26:ce:15:
94:f4:7f:71:93:a1:e5:a7:07:a8:bd:f2:55:c4:f9:
9c:a0:af:c5:e2:1a:ce:84:75:5a:cc:d8:ad:90:12:
83:21:e3:79:50:39:a4:79:8a:d0:33:4a:a4:04:57:
bb:cc:0e:7c:91:5d:0e:28:3b:df:29:0e:71:cf:13:
0b:b1:f7:97:35:db:82:54:d0:cb:44:be:9a:6e:70:
5e:90:46:34:bf:b0:a8:32:98:ca:06:f2:34:24:31:
05:83:91:4a:ba:c4:bd:be:4f:b3:e5:ff:f8:a0:ec:
56:d2:69:0a:93:a5:54:a4:1c:1d:7f:a0:db:19:1d:
f6:64:87:6c:0a:f1:04:9d:67:e1:90:63:9a:d9:9c:
a7:fc:a9:03:59:6e:d2:c7:a6:7f:8c:0e:8f:47:4f:
b9:c7:35:28:08:d0:31:b5:98:a0:06:78:a4:26:aa:
45:bc:31:38:0d:9a:44:2d:98:16:50:6e:65:aa:ba:
9e:f6:40:7e:7b:16:ad:36:5f:0e:9d:92:b4:e5:f8:
b1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:19:BD:D9:00:80:D2:DA:F3:59:C8:38:77:B7:12:3F:EB:4C:AD:A0
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/yRm92QCA0trzWcg4d7cSP-tMraA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7f40:f000::/48
Signature Algorithm: sha256WithRSAEncryption
8e:2d:b3:68:33:47:94:23:9d:52:a6:53:29:63:05:bc:e8:03:
4e:79:cb:22:c9:4d:f2:67:24:21:81:d8:f2:4f:d4:c9:06:bc:
f8:21:ca:48:f3:2d:60:1e:3a:15:93:f7:94:f7:fc:e2:f2:8c:
1a:0f:78:df:f9:d5:58:36:e7:09:14:8c:11:c8:30:27:98:f2:
af:9b:eb:43:41:bd:8e:45:54:1d:ed:64:46:76:6c:58:73:d0:
e8:17:38:d0:79:6b:d8:3f:fe:9f:72:83:2b:14:aa:09:bd:41:
3b:f7:1c:2c:2e:49:51:37:3f:4f:8a:83:b5:ed:26:dd:bb:69:
80:d9:f7:a5:ad:f3:d2:6f:04:46:a7:4a:39:4e:17:24:ad:92:
03:12:67:5e:2d:10:08:48:6c:e6:f1:d2:ff:5a:5f:00:b3:fe:
c4:37:ad:ad:cf:c1:4e:81:ec:0f:09:89:f9:95:f4:75:7a:1a:
c6:75:9e:b1:b4:4d:3f:96:9a:bc:b1:77:8e:65:b2:49:76:55:
f3:d0:35:8d:2e:d1:d8:44:37:64:2c:63:cf:7a:47:09:10:fa:
be:bc:e4:9e:ec:3c:cb:54:20:95:df:72:31:9d:0c:c1:eb:ba:
92:65:53:1d:45:e7:db:1c:04:d5:10:2f:cf:7a:bf:00:3b:ae:
f9:c4:ae:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:18 2023 by rpki-client on console-fra.rpki-client.org