Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YE2MPdfYdgMkkCwFlwlB-FumZRw.roa
File: YE2MPdfYdgMkkCwFlwlB-FumZRw.roa (raw, json)
Hash identifier: eKGKKmA3EhXz0OUV8AKTum3UFSFuKnThh8GwWvBOcTM=
Subject key identifier: 60:4D:8C:3D:D7:D8:76:03:24:90:2C:05:97:09:41:F8:5B:A6:65:1C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YE2MPdfYdgMkkCwFlwlB-FumZRw.roa
Signing time: Thu 15 Sep 2022 02:52:43 +0000
ROA not before: Thu 15 Sep 2022 02:52:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00:ff00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=604D8C3DD7D8760324902C05970941F85BA6651C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:48:8f:34:a2:23:56:69:3d:18:87:9d:57:07:
e4:c1:09:75:c4:71:5b:b8:40:b4:76:2f:ac:8b:b7:
ed:1d:ab:27:ea:19:cf:e7:ec:8e:3e:d6:5f:4e:6e:
19:0a:48:e5:f8:ba:b8:92:dd:2d:f4:53:ed:79:f8:
e8:34:d6:e9:35:9c:85:13:e6:77:4a:64:d5:d7:65:
69:42:e9:4f:ee:d0:49:5c:5e:79:19:a9:40:3c:e4:
1e:7e:a4:98:3a:9b:d9:9d:38:02:74:28:77:e4:c9:
5e:7b:73:46:7f:d0:25:5e:e3:24:35:b7:5d:13:54:
43:76:da:ec:b0:cd:30:e9:f1:31:fa:c1:32:6b:fe:
2c:ea:b7:ff:ea:70:5d:ca:12:11:f3:5b:b7:20:45:
52:89:10:f1:1c:de:cb:86:da:98:ea:42:8a:7d:cb:
72:39:b0:5d:2c:9a:e5:ca:64:af:fc:26:89:c6:44:
65:48:fd:a5:ae:d8:4c:44:e9:1a:1f:fe:a3:78:5b:
cd:19:c7:a1:49:6f:ab:04:28:12:e3:f1:80:4d:28:
b5:33:64:93:7a:b5:f9:64:43:13:62:db:5a:62:11:
48:eb:d5:4f:c1:db:73:af:8b:b4:82:83:d8:37:09:
c4:7d:49:a5:82:dd:10:27:15:e5:d3:7b:08:29:72:
1a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4D:8C:3D:D7:D8:76:03:24:90:2C:05:97:09:41:F8:5B:A6:65:1C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YE2MPdfYdgMkkCwFlwlB-FumZRw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff00::/44
Signature Algorithm: sha256WithRSAEncryption
01:65:a1:ed:cc:0c:5c:0e:2b:92:6c:21:db:f6:29:cd:b2:aa:
7c:d8:9b:4b:2a:61:f2:57:8c:36:44:cd:8f:23:da:27:ef:33:
5e:19:ea:6c:b2:83:0e:eb:54:82:d7:5d:02:42:49:c3:4f:9a:
64:fd:7c:b2:5d:11:93:61:ad:98:f7:ce:85:d9:f6:e2:f0:c2:
4e:44:18:d4:16:8c:e0:d7:cc:81:36:21:2b:b8:7b:fe:55:9f:
ab:19:45:3b:f2:de:de:4e:00:0f:ff:34:7c:20:57:c7:b5:40:
d9:4e:82:18:bd:17:5c:4b:52:87:3b:74:ac:d3:78:f1:88:5a:
e3:1e:cb:f5:25:63:4c:6c:14:83:75:80:13:37:dc:aa:59:8f:
a7:be:62:9c:0d:8b:f7:7e:30:2b:d9:83:93:c9:87:b8:4d:df:
51:83:21:60:0f:28:ea:c0:90:5d:c5:b5:bb:12:69:18:2a:38:
dd:91:6a:4c:81:01:bd:e5:6e:9e:d6:6e:d9:86:04:15:2e:23:
6b:00:34:e7:74:a0:b9:47:d0:fc:06:27:87:5b:6d:de:d0:99:
3d:f2:78:72:60:b3:70:11:11:b5:6a:3c:ab:99:ee:38:34:1e:
3b:26:bc:1d:ad:b4:29:0c:5e:d3:49:fc:95:f8:19:83:f5:6a:
78:cf:93:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org