Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Y3HPcVYTo9ihVeSbDudyINXDAAg.roa
File: Y3HPcVYTo9ihVeSbDudyINXDAAg.roa (raw, json)
Hash identifier: 6j5WvQZtNjD/cnsexJMT5vs4+oTK7HP6hLDIOZIg8Eg=
Subject key identifier: 63:71:CF:71:56:13:A3:D8:A1:55:E4:9B:0E:E7:72:20:D5:C3:00:08
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Y3HPcVYTo9ihVeSbDudyINXDAAg.roa
Signing time: Thu 15 Sep 2022 02:51:03 +0000
ROA not before: Thu 15 Sep 2022 02:51:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 2403:5200::/32 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 15 02:51:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6371CF715613A3D8A155E49B0EE77220D5C30008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:06:ed:9e:4f:8d:e1:62:e6:45:1e:ba:86:4c:
36:60:a0:e3:41:3d:8f:fc:f0:58:f5:da:f4:fa:d6:
5a:f5:13:2c:d7:f2:42:9f:8c:74:23:90:40:54:7b:
13:88:07:52:c3:98:ee:bd:89:09:4d:ea:2f:b2:f3:
75:4e:16:e6:36:ab:07:c7:59:b0:02:06:c7:3f:1c:
78:4b:6b:3e:c4:09:08:5a:1e:1c:2d:5b:f2:d7:98:
34:fd:a7:82:51:7c:b2:b6:15:aa:3d:53:51:5f:ec:
e6:0c:72:92:11:d3:04:e2:35:f0:61:05:12:ce:f4:
09:31:8d:c0:7f:29:32:bc:42:2d:7b:97:5b:ea:4d:
80:50:4a:6e:e2:4b:fc:4a:81:dc:e8:e1:9d:18:be:
50:09:4c:ff:35:69:cd:e8:75:ef:06:18:e4:e7:df:
8b:97:ee:bd:74:8b:cc:6b:cb:da:28:28:5a:36:34:
2d:33:73:80:b3:26:80:29:bc:58:1e:f9:35:88:b3:
92:88:a4:d7:94:9a:c3:40:b1:71:db:19:8a:dc:51:
e5:02:40:c6:8e:95:5e:50:8b:fe:83:47:38:a3:ef:
35:b2:6e:ef:e9:ac:5c:b6:12:3f:8c:a9:d7:a0:1b:
02:69:11:37:4c:c3:10:91:4d:1c:f3:8a:d1:1d:f3:
27:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:71:CF:71:56:13:A3:D8:A1:55:E4:9B:0E:E7:72:20:D5:C3:00:08
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Y3HPcVYTo9ihVeSbDudyINXDAAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:5200::/32
Signature Algorithm: sha256WithRSAEncryption
56:13:fc:ae:4e:e5:b4:f9:ae:11:4a:c7:98:4a:2f:d8:aa:38:
db:e5:39:94:d5:d1:ee:e4:c9:de:4b:13:e3:be:87:96:20:86:
e6:55:a0:29:e4:fa:4c:c6:32:bb:5d:dc:99:f6:e3:53:65:dc:
7f:02:e4:89:76:bc:7e:24:38:a9:3c:36:b7:ac:71:df:9d:3a:
9e:bf:ff:73:d4:87:e0:3a:66:b3:ee:b1:c1:23:be:05:1c:d4:
de:ce:75:89:db:d0:39:2b:82:bb:1a:88:fc:a3:ff:ac:ee:5d:
7e:f3:64:01:46:e2:29:62:03:83:6a:9d:38:b0:a6:a7:0f:e7:
3e:f0:90:65:cd:45:37:39:06:eb:96:cf:7a:48:4b:1d:42:c1:
78:2d:55:1f:3a:09:72:49:93:92:a3:fc:20:37:1e:67:52:8b:
27:0a:e1:84:89:48:32:76:a0:96:6b:d8:33:db:2b:9f:ec:84:
e9:d4:1f:30:35:cd:4a:95:aa:ea:49:b6:09:18:d4:86:98:7f:
92:76:8f:48:04:0e:d8:96:61:c7:fa:43:ad:56:38:68:c7:8f:
96:2c:03:05:bf:f5:62:c3:5e:eb:42:be:e5:32:00:65:6f:32:
94:64:9c:ca:fa:68:e3:6f:74:90:be:f7:0c:8c:6d:23:cb:a1:
35:82:14:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org