Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R5tYhThMzWeIe-HaPRIdNlWcxG0.roa
File: R5tYhThMzWeIe-HaPRIdNlWcxG0.roa (raw, json)
Hash identifier: 8jByMvRuWY5KwUjRK48GhOp4Xd9ZuXFihFoA5JLa8kg=
Subject key identifier: 47:9B:58:85:38:4C:CD:67:88:7B:E1:DA:3D:12:1D:36:55:9C:C4:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D83
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R5tYhThMzWeIe-HaPRIdNlWcxG0.roa
Signing time: Mon 04 Oct 2021 01:45:05 +0000
ROA not before: Mon 04 Oct 2021 01:45:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 2407:4d00:ff07::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7555 (0x1d83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Oct 4 01:45:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=479B5885384CCD67887BE1DA3D121D36559CC46D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:7f:83:8a:16:83:fe:b0:46:a1:84:e0:27:
ab:00:06:02:7d:44:26:a9:8a:39:ff:36:b8:5b:30:
85:24:f2:26:ba:4b:de:0a:fd:6f:a4:cc:cc:87:a2:
dc:cc:a1:6d:48:dd:5f:c9:aa:14:3c:d8:9b:03:db:
63:53:9c:5a:90:15:96:9e:0c:0c:ee:4e:d4:51:1f:
5f:22:53:a7:e7:c7:91:2e:1f:c1:da:cc:a8:21:92:
80:72:b9:42:da:cc:41:eb:5e:20:e5:a2:ec:65:63:
e1:17:e2:d6:f8:29:d1:0c:14:e8:1b:7e:62:d5:51:
72:6a:f4:15:6b:51:3a:6b:69:bf:47:9f:3b:95:6d:
fe:a5:fa:ff:65:5e:71:f8:3d:15:0a:3f:f0:9a:54:
8c:3f:5c:ed:99:a6:a9:dc:9d:39:93:66:89:88:ca:
06:22:99:bf:ac:58:11:7a:cb:d1:e2:33:b9:80:26:
d0:68:52:a5:d2:0c:86:f8:71:b0:88:15:56:b8:3a:
bc:b5:c6:f2:87:0e:43:95:8b:79:9d:fb:93:64:1c:
29:da:04:e6:17:17:0f:65:54:fb:62:a1:11:00:53:
39:0c:eb:e5:31:ac:f6:22:91:74:89:eb:cb:bb:04:
3e:c1:ed:8b:d1:83:85:da:ef:89:15:d2:cb:4f:ec:
0c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:9B:58:85:38:4C:CD:67:88:7B:E1:DA:3D:12:1D:36:55:9C:C4:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R5tYhThMzWeIe-HaPRIdNlWcxG0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff07::/48
Signature Algorithm: sha256WithRSAEncryption
a1:40:e0:a4:e2:76:1d:6d:b8:3c:e8:0c:7c:4c:e2:6f:66:3f:
f5:90:1f:08:2b:ca:71:de:a3:6a:e5:94:41:7b:bd:c5:92:9a:
5c:9e:51:f4:b7:0f:e5:ed:f2:78:2b:da:43:36:95:95:c6:e1:
30:00:43:91:51:45:8d:e5:20:01:f6:6b:cb:c6:69:0e:6f:4b:
8a:dc:69:b7:1a:47:04:55:77:a9:c5:47:63:50:aa:cf:b2:7e:
3e:76:45:3d:7a:79:10:dc:e8:8e:9c:3d:05:76:7e:cc:a4:15:
91:98:9d:af:a6:8c:fb:00:04:c5:9f:f7:33:62:a3:8b:5a:ba:
93:e7:0f:a4:fd:87:24:41:ae:4d:f1:98:6e:5f:16:b2:07:c6:
2c:8c:e7:f0:21:6e:7d:1a:43:c4:f2:84:3a:31:b9:52:49:20:
b8:8f:04:68:80:21:cd:39:95:d9:45:90:32:74:1a:76:27:d9:
ba:d0:b3:cd:39:2e:b2:03:80:e3:77:e3:0c:65:a4:d1:1c:7d:
a3:0d:b3:34:f4:e2:82:3e:cf:0d:70:37:d7:8c:34:a2:ea:d0:
1c:cc:4d:b9:c8:0c:2b:2f:0f:c4:60:32:81:5b:9b:79:f6:e0:
be:2b:c9:93:6c:71:a6:64:44:1f:d2:a4:c7:0a:86:8c:a5:5b:
2c:b1:07:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:19 2023 by rpki-client on console-ams.rpki-client.org