Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/vlRZcxHoUBIK7kRSKu9zXl-DJUQ.roa
File: vlRZcxHoUBIK7kRSKu9zXl-DJUQ.roa (raw, json)
Hash identifier: YgsMFHyeNSjE4DagF9tIX9qss78/2N0RjNPgHAejmzQ=
Subject key identifier: BE:54:59:73:11:E8:50:12:0A:EE:44:52:2A:EF:73:5E:5F:83:25:44
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 0803
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/vlRZcxHoUBIK7kRSKu9zXl-DJUQ.roa
Signing time: Wed 09 Nov 2022 19:25:20 +0000
ROA not before: Wed 09 Nov 2022 19:25:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18041
IP address blocks: 2405:a640::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051 (0x803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Nov 9 19:25:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE54597311E850120AEE44522AEF735E5F832544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:6b:a2:02:57:ac:c8:28:9b:aa:bc:6f:f0:
fc:f2:be:e3:c5:40:a4:60:18:03:f5:1f:eb:b5:45:
80:67:48:ed:21:21:2e:7a:86:21:99:bd:d6:ba:7e:
01:ac:b2:48:0a:73:e6:78:cf:dc:46:00:b7:95:28:
da:23:e3:a2:64:73:a9:f4:7c:db:b4:ee:e7:72:4f:
09:9f:ba:cf:fe:88:1c:c4:19:01:b8:69:f9:f8:eb:
ac:60:4c:28:b6:f5:f2:f8:9f:cf:6a:28:24:87:b8:
2b:ef:a2:1a:1e:7c:df:e2:91:29:80:fa:83:77:6d:
15:09:5a:f2:8a:1e:3a:34:ea:05:c8:d0:1a:c3:68:
95:25:af:5d:e9:3c:32:1c:5c:70:a7:69:ba:f5:57:
a8:6e:7e:34:35:40:e2:a6:43:f5:39:2e:5c:7d:eb:
c5:0b:b7:26:1b:db:d2:1d:31:f3:78:51:27:aa:ca:
0d:d5:ec:fe:d5:a1:f4:c2:4c:6a:b3:71:b1:cf:53:
2e:35:b1:15:e2:b6:42:2b:5a:de:fa:cb:50:6f:68:
0f:f0:30:07:8c:b7:48:af:ea:23:df:22:cf:99:e5:
2e:db:9c:ae:3d:a5:2b:78:b8:a7:cc:b1:f5:50:2a:
31:ec:c8:0b:3a:67:ab:55:5f:8a:73:3e:54:c4:67:
d8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:54:59:73:11:E8:50:12:0A:EE:44:52:2A:EF:73:5E:5F:83:25:44
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/vlRZcxHoUBIK7kRSKu9zXl-DJUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a640::/32
Signature Algorithm: sha256WithRSAEncryption
bc:cf:88:52:f9:9b:af:b6:39:6d:46:a2:3a:a2:d5:5f:39:9b:
eb:4f:c6:16:fe:fe:ae:be:a9:9b:78:ff:66:6f:32:3a:40:06:
04:2f:cb:3a:9b:7d:9b:d0:e8:c3:3b:06:53:df:11:85:57:4a:
54:ab:5c:09:d1:5e:1c:2f:ff:95:00:a5:99:b7:ad:0f:3c:4f:
be:1e:ee:09:e0:3a:e5:01:df:d2:ff:81:a5:7c:e2:c7:8d:03:
74:40:67:5f:4e:c1:cd:b7:38:3f:bb:d2:cd:55:b6:62:b8:cf:
38:28:c2:ae:01:ff:e1:ce:81:ef:c6:e4:25:6a:5a:1d:1f:09:
a9:31:3f:06:19:a7:03:50:56:1d:a4:67:bb:83:f9:c0:72:67:
21:67:8d:0f:cb:e8:e9:ae:56:f4:ae:3e:ee:2e:45:54:96:10:
66:59:ec:31:94:6b:71:23:10:6a:36:82:e4:ae:58:f0:52:59:
bd:b8:c9:b8:08:95:ff:18:1b:48:a3:3f:a8:91:93:9e:38:c7:
b7:cc:66:23:6e:95:9b:f6:bf:15:7a:2c:28:8b:fc:07:b7:19:
cc:a8:05:67:23:d4:fd:3b:ec:c2:e6:8f:d5:4b:88:a4:04:b7:
6a:3c:8e:78:5b:7e:d2:b7:20:0d:bc:07:0e:99:ad:3a:db:a9:
cd:60:6d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org