Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nS65MtBwjnxPzTP4e9A4uzxDvLI.roa
File: nS65MtBwjnxPzTP4e9A4uzxDvLI.roa (raw, json)
Hash identifier: EeoPAic3uCuDB7yCPHv+pr2MU5nHavgVSCK2X7pfnT4=
Subject key identifier: 9D:2E:B9:32:D0:70:8E:7C:4F:CD:33:F8:7B:D0:38:BB:3C:43:BC:B2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nS65MtBwjnxPzTP4e9A4uzxDvLI.roa
Signing time: Thu 15 Sep 2022 02:53:31 +0000
ROA not before: Thu 15 Sep 2022 02:53:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00:ff04::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D2EB932D0708E7C4FCD33F87BD038BB3C43BCB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7b:a6:47:85:6e:46:40:cf:8b:70:a1:bd:27:
9e:94:03:03:41:98:93:e4:42:e0:52:69:ff:73:79:
59:b8:90:63:a1:cb:14:46:7e:a0:19:d6:eb:1b:ea:
7d:3a:3f:d4:11:42:c3:fd:fa:75:74:ab:7d:7e:92:
ab:4a:0e:d7:85:88:2e:8e:4e:62:36:9e:ce:ee:62:
6c:3c:c0:d7:e3:12:47:ba:6d:db:73:b7:6c:14:38:
94:43:42:c8:a2:7a:97:75:fe:8e:7d:b6:9f:39:c1:
50:d3:70:cb:59:5c:fa:b0:f6:ba:25:1a:2a:de:82:
f6:17:6c:41:ac:17:62:a1:35:e4:74:75:18:2c:d1:
b3:f1:11:5b:68:cd:9c:a8:39:c8:f1:5b:53:a6:7c:
3a:df:34:ba:63:b6:0b:3a:57:d7:38:32:8c:12:77:
fd:76:6f:da:49:f8:e4:cb:d5:25:cb:91:90:c9:c2:
2b:96:07:8f:7c:91:bf:d6:d5:d2:63:33:c5:ce:1a:
5c:07:70:dc:5c:a0:c8:88:19:3e:26:e0:ff:57:cb:
a1:e5:41:fc:73:cb:da:9e:7c:84:b0:e2:11:d7:94:
06:67:1a:2f:04:9c:1f:17:1c:38:27:da:2d:74:16:
ca:24:26:69:45:14:c2:0c:36:ca:bd:b0:c3:43:56:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2E:B9:32:D0:70:8E:7C:4F:CD:33:F8:7B:D0:38:BB:3C:43:BC:B2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nS65MtBwjnxPzTP4e9A4uzxDvLI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff04::/48
Signature Algorithm: sha256WithRSAEncryption
5c:c6:c3:8e:a3:6c:3e:ff:f5:83:ba:4f:8a:d7:8c:31:32:0f:
ff:8d:24:c9:f4:5f:a2:3b:48:65:8b:04:ea:20:5f:a8:d7:b1:
3b:49:1c:b1:b4:f7:40:ad:10:be:58:c7:58:89:d8:8c:fd:eb:
29:2c:e4:35:50:37:99:8c:fe:e8:26:e0:c4:28:f6:4c:79:8d:
62:95:a3:78:c3:89:ef:d9:95:88:05:fb:3b:cf:69:db:77:10:
66:49:6b:77:a7:74:7a:7a:45:00:af:61:47:3e:3d:aa:bd:55:
51:90:71:a8:8d:64:65:46:3a:9f:73:7b:e6:f9:d4:cf:ed:49:
21:a8:73:1f:4d:97:75:c2:52:ba:bb:16:e5:5f:cd:43:10:2e:
8d:5d:7d:59:c8:4b:5d:03:bb:52:6c:96:fc:30:e9:3d:00:46:
cf:07:43:34:64:46:29:5f:00:09:64:82:4f:71:63:63:92:20:
06:08:7b:da:c8:de:f3:5a:7a:50:5c:ca:d0:be:e6:30:7c:12:
36:5a:61:bc:04:e8:42:a2:8a:b3:81:73:41:50:c9:e5:9a:55:
2d:54:fe:49:92:28:3a:a5:e6:7b:c6:f3:12:6c:32:c7:73:4c:
3c:b2:33:e7:cd:cb:88:cc:06:d3:73:19:2c:b3:fc:b5:9b:0a:
80:5f:f0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org