Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3mUXjlipzIfsPnQBoIfSwUDKMO4.roa
File: 3mUXjlipzIfsPnQBoIfSwUDKMO4.roa (raw, json)
Hash identifier: RMZlNbvNvoXAgqTr0+DK/Kue/DKP/NZAK+V0i72Kbio=
Subject key identifier: DE:65:17:8E:58:A9:CC:87:EC:3E:74:01:A0:87:D2:C1:40:CA:30:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3mUXjlipzIfsPnQBoIfSwUDKMO4.roa
Signing time: Thu 15 Sep 2022 02:46:20 +0000
ROA not before: Thu 15 Sep 2022 02:46:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00:fd02::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DE65178E58A9CC87EC3E7401A087D2C140CA30EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:18:29:a2:f9:f0:00:94:1b:2f:a5:c5:dc:
a6:c0:ac:4e:e9:71:70:4c:03:3b:86:9e:f9:db:f9:
a3:09:41:2e:95:30:7e:7b:1c:ce:30:13:18:7e:61:
a8:2b:76:de:bd:61:1b:48:f9:b5:73:99:d5:f7:52:
91:7f:96:5b:00:ed:de:9a:50:54:d2:24:0f:c8:ff:
ac:1d:e1:1b:27:0d:a6:08:6a:ba:a8:4f:e6:d9:66:
a7:66:89:21:0c:81:2b:5f:ff:bf:53:15:f8:cb:95:
c4:96:a2:8d:3a:1f:74:6b:b9:3b:5a:ca:f2:2e:60:
34:1f:7e:49:0e:bb:7f:c7:fd:35:7a:bb:b0:17:71:
a5:95:48:cd:9d:49:68:ac:e9:34:c1:d9:bd:8c:85:
9c:9b:9a:94:9b:2f:15:39:6c:d9:c6:bb:26:a7:b7:
76:f0:a5:8c:c0:ef:df:49:02:08:47:3f:3c:56:14:
dd:22:71:fe:f9:e9:ee:f2:62:89:44:76:80:89:0b:
67:cf:a5:6b:c5:c1:6a:f0:48:f8:e5:ce:21:4d:3a:
c2:bf:f2:09:8c:f5:47:25:7e:f8:a3:c6:3c:0b:42:
6d:ba:dc:63:13:a5:08:35:b8:1f:b5:0b:3a:eb:cd:
f3:66:16:32:92:b4:5c:1f:f0:ea:47:b1:22:bd:d6:
9a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:65:17:8E:58:A9:CC:87:EC:3E:74:01:A0:87:D2:C1:40:CA:30:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3mUXjlipzIfsPnQBoIfSwUDKMO4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:fd02::/48
Signature Algorithm: sha256WithRSAEncryption
01:6c:69:81:e4:ff:15:d2:ed:bd:62:a7:f3:0b:7f:3b:88:26:
2c:42:32:d2:18:45:99:b9:e3:ed:f5:00:88:87:93:cf:9b:03:
15:e7:af:88:31:d4:10:9f:49:9e:a9:b5:19:74:f5:35:28:88:
94:31:16:19:5d:e3:49:6f:cb:c4:28:ac:c1:fe:d1:98:ea:d2:
d7:e2:e3:01:d5:18:07:5c:4e:ad:bf:c6:eb:b8:48:0c:3b:26:
c3:aa:10:02:ad:3b:0f:c2:77:88:c7:6a:20:2a:f8:91:64:c7:
c2:05:b1:8b:74:51:8d:a7:84:b0:2d:f1:29:bd:b8:c6:d0:98:
b5:1e:fc:2e:fa:55:dd:21:dd:77:3a:92:93:89:2b:d5:2c:99:
93:39:04:55:52:1f:d4:28:f0:3d:a4:d0:79:5b:07:db:ae:ab:
e4:99:0c:eb:18:5d:5e:bb:cb:84:bb:71:da:d5:8d:08:3c:6d:
3b:07:df:87:74:d3:3c:73:ab:c6:4a:ea:4b:9a:f2:6a:31:fa:
ce:d4:63:0a:da:44:6f:b5:58:17:c8:8d:6e:23:7f:d4:c9:49:
a4:3e:81:54:52:82:56:89:ae:8f:5e:58:fc:ad:a4:7b:0e:d3:
45:a1:e5:31:a9:d6:75:2d:63:22:9a:f1:4a:45:8d:56:a9:3f:
90:eb:53:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org