Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
File: 0JgmG3--lBYZAvZrsYQNL_lNtj4.roa (raw, json)
Hash identifier: RPORlsUfwHayMr/jriGcjg9OjQBFATdJh+gbA72eijI=
Subject key identifier: D0:98:26:1B:7F:BE:94:16:19:02:F6:6B:B1:84:0D:2F:F9:4D:B6:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D89
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
Signing time: Mon 04 Oct 2021 01:46:42 +0000
ROA not before: Mon 04 Oct 2021 01:46:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 2407:4d00:ff0a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7561 (0x1d89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Oct 4 01:46:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D098261B7FBE94161902F66BB1840D2FF94DB63E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2a:ce:27:21:a3:2c:e5:5e:47:5d:90:38:be:
2c:29:2b:27:cc:6c:07:64:62:95:40:30:99:0c:55:
58:1a:2f:4e:ab:14:95:0c:54:13:3a:47:3c:c4:2c:
d2:1e:f2:10:7d:75:ba:3c:4e:32:35:da:50:3a:9c:
85:c6:ef:4f:79:5b:7c:cc:c0:81:72:59:6f:19:57:
15:0b:22:9a:dc:f9:fc:53:b4:ed:22:56:25:dd:02:
95:6e:89:26:f6:19:3a:e2:3a:f9:2e:83:04:27:cc:
b7:73:1e:42:bf:89:4e:63:6e:74:56:da:be:57:a0:
71:4a:a1:31:57:1b:1f:0e:ef:4c:a7:b7:64:cc:ad:
02:88:a9:00:19:75:73:26:1a:87:d3:a3:69:23:64:
d2:2e:5e:ac:3f:71:67:b3:6c:84:a7:8f:49:62:96:
b3:49:e5:48:ba:30:02:b3:08:ba:94:2b:ab:22:7f:
ee:83:6b:b2:56:b6:48:c4:bb:4c:bf:09:e1:89:a8:
29:74:69:91:8e:58:85:29:83:ff:1d:13:f4:9f:0b:
ba:26:f8:7b:4c:43:2b:17:48:b9:83:b4:c7:18:28:
6d:64:60:bd:82:33:f0:df:ee:dc:ab:c1:f2:13:79:
f4:5d:de:6d:9e:87:eb:05:90:d6:3f:54:25:45:9a:
e5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:98:26:1B:7F:BE:94:16:19:02:F6:6B:B1:84:0D:2F:F9:4D:B6:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff0a::/48
Signature Algorithm: sha256WithRSAEncryption
4f:67:bf:de:94:8f:c9:7d:df:86:8c:f4:f6:25:dd:f2:22:cb:
a4:bc:55:1e:28:ba:30:45:ca:76:53:09:4d:e8:d1:d9:a6:3a:
11:a9:a8:bc:ea:0f:15:43:31:55:05:ae:8d:32:28:8d:d7:18:
56:2e:28:bb:08:33:c7:54:b3:b2:d3:ea:aa:83:50:85:c7:12:
a4:bb:96:4e:78:60:af:cb:fb:ff:74:36:2b:f1:10:30:77:9a:
67:f3:14:5b:7f:49:bb:d1:f2:3b:dc:59:96:0d:fe:58:cc:2a:
89:d2:34:15:69:48:d1:a0:fd:a2:c0:5d:83:27:da:4b:10:59:
e3:6c:a4:e4:31:ea:04:67:1b:fd:7f:67:6a:da:c9:62:95:32:
f6:fe:61:e5:62:72:ec:b0:c8:93:b2:2e:e1:e2:d8:49:6f:7e:
be:b1:d4:bd:d6:74:94:17:e5:76:6d:9d:ec:09:da:c2:ca:04:
17:b1:4e:2f:37:94:f5:05:85:f5:eb:3a:67:95:23:64:73:af:
5d:78:31:18:eb:69:ac:62:8a:73:0e:3f:66:fc:ae:d9:03:af:
1b:35:cc:01:f6:ec:7e:2a:46:28:7a:15:28:f6:59:dc:2b:e8:
2b:3a:32:87:f4:74:c9:03:61:d1:96:19:f2:53:20:94:1a:cf:
9d:28:12:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org