Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/q52vc4raZrXzTFERsUfdPmkw_9A.roa
File: q52vc4raZrXzTFERsUfdPmkw_9A.roa (raw, json)
Hash identifier: ZLMSNu16aqOEFFT07z7ZdYwoIHRpPEGZB110XqkISio=
Subject key identifier: AB:9D:AF:73:8A:DA:66:B5:F3:4C:51:11:B1:47:DD:3E:69:30:FF:D0
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 080A
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/q52vc4raZrXzTFERsUfdPmkw_9A.roa
Signing time: Wed 09 Nov 2022 23:48:49 +0000
ROA not before: Wed 09 Nov 2022 23:48:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18041
IP address blocks: 2405:a640::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2058 (0x80a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Nov 9 23:48:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AB9DAF738ADA66B5F34C5111B147DD3E6930FFD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:b9:9a:81:4c:09:de:50:05:2a:86:13:25:
10:ff:f5:b3:31:f3:a5:fd:8e:ec:e9:85:b1:fc:83:
56:d2:95:5c:09:55:e3:ff:97:37:64:17:20:df:25:
50:2a:a2:6c:5e:b6:f7:d4:8b:8d:df:3a:2a:e6:bf:
79:8b:02:4d:ef:b5:2e:84:66:da:ae:13:ca:be:36:
a1:a7:aa:23:a1:e1:d6:64:26:d1:f3:64:f7:8a:9f:
6d:fc:e3:52:56:a7:4f:6c:9e:be:15:7f:60:7a:82:
d2:6c:11:43:67:4e:26:3f:30:fa:75:36:da:90:d9:
46:1c:a6:8b:98:6f:48:95:50:65:8c:25:5d:56:ac:
23:f1:aa:e0:1e:88:c8:bb:c1:4f:85:f4:6b:ea:03:
79:1c:db:61:d9:db:95:28:d7:d9:5c:fc:d6:01:ca:
01:3d:f5:25:3c:1f:5d:c7:c4:b7:6a:97:02:ad:ed:
19:a1:06:81:38:93:99:ed:1b:04:e9:66:fa:d1:30:
00:f0:a3:1a:0c:4c:f7:01:89:fb:66:b2:f0:60:f6:
79:21:c8:84:e7:65:66:a9:a1:e2:cf:88:36:a3:a3:
b4:32:b3:b1:73:34:d3:24:9f:a9:74:0e:07:17:fe:
12:69:6b:90:34:55:14:48:a6:83:6e:15:16:f0:83:
b6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9D:AF:73:8A:DA:66:B5:F3:4C:51:11:B1:47:DD:3E:69:30:FF:D0
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/q52vc4raZrXzTFERsUfdPmkw_9A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a640::/32
Signature Algorithm: sha256WithRSAEncryption
93:63:71:c0:be:31:f6:4b:77:e8:6b:2a:8f:14:02:08:f6:79:
33:4a:02:b2:ef:cb:2d:82:58:0d:3d:59:5c:56:f2:18:c0:c5:
0d:8d:69:6a:e4:c8:4d:e1:51:eb:2c:08:f2:a7:b3:59:fd:b5:
dc:fd:53:53:e9:e0:cb:3a:0e:6c:a0:c9:fd:62:e6:b6:9b:12:
cb:59:d6:c0:a1:05:d7:19:63:5a:dc:23:5a:62:46:41:54:e1:
fe:e2:28:1b:b7:bb:78:c8:21:d2:e5:16:a5:d0:66:4e:c4:3d:
a4:79:00:d9:41:ab:6d:b2:93:cc:70:85:32:47:1f:71:7c:65:
28:ac:02:28:71:e1:17:35:9a:51:fb:28:5a:86:94:1c:05:03:
52:d3:2b:b4:12:4a:1b:98:df:42:a7:1d:0a:a1:98:a5:3b:0a:
1d:e9:88:b0:92:5d:aa:c5:d0:d1:3b:d2:8a:f2:5c:7b:25:fd:
80:20:22:ee:ea:79:a4:29:58:b7:05:95:14:38:25:41:20:2c:
25:02:38:27:f9:29:95:e0:1e:62:d8:b1:d7:c7:6c:39:c3:0e:
80:0f:35:96:4f:31:a3:2e:b6:68:29:38:8f:e9:e1:8e:c5:10:
ac:14:dc:54:e8:23:0c:50:db:91:5e:3a:6c:09:d9:9d:e3:e6:
15:69:d4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org