Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/aztwp2iuxeH2xTxHpy4CcySsIPE.roa
File: aztwp2iuxeH2xTxHpy4CcySsIPE.roa (raw, json)
Hash identifier: 93ZtJh7cT5jF9MKu/2gDUVLnwPqeoCmF8HocmhZROzE=
Subject key identifier: 6B:3B:70:A7:68:AE:C5:E1:F6:C5:3C:47:A7:2E:02:73:24:AC:20:F1
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 092E
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/aztwp2iuxeH2xTxHpy4CcySsIPE.roa
Signing time: Wed 29 Sep 2021 02:38:04 +0000
ROA not before: Wed 29 Sep 2021 02:38:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9916
IP address blocks: 2001:f18::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2350 (0x92e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Sep 29 02:38:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6B3B70A768AEC5E1F6C53C47A72E027324AC20F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:45:b8:79:39:f2:ea:8e:d7:35:2c:fe:a6:05:
52:a0:15:fc:13:cf:72:e5:23:6c:02:e9:14:6b:64:
f7:df:62:0a:af:9f:58:13:2f:8d:5f:5e:52:ca:07:
c3:3a:6a:80:ff:61:25:95:66:c5:0c:33:9c:29:b9:
2b:58:e6:82:d1:7d:8d:ae:1f:04:57:c1:63:7b:1e:
9a:d1:32:f1:62:98:1f:81:f3:4c:41:d7:9d:9d:1f:
1f:9a:69:a4:29:b8:bf:21:96:74:01:e5:59:02:65:
23:7a:26:39:1c:d5:86:8d:81:5f:e9:13:6c:2b:0a:
86:07:66:11:b3:d5:15:d3:45:5c:02:3a:88:c8:62:
85:92:5d:a9:d0:cb:be:fe:e2:82:a4:9d:c3:63:d1:
9f:ff:14:3e:cc:4f:1a:fa:6b:ad:b5:9e:9f:24:14:
bb:63:96:ca:56:19:ad:58:37:d5:92:77:91:e3:16:
75:d3:00:e9:cf:d3:c3:67:d7:0a:94:b8:23:69:f4:
db:1a:9d:23:50:89:2c:c7:ad:9f:7c:c0:c5:0c:19:
30:cf:5b:0d:a4:9e:1c:5d:d7:1d:1d:aa:c9:b7:af:
1c:70:82:4f:5f:8e:f3:0b:57:57:85:35:e3:6d:8b:
50:92:ec:4f:f6:03:ef:eb:0c:e7:3c:d8:50:4c:49:
b1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3B:70:A7:68:AE:C5:E1:F6:C5:3C:47:A7:2E:02:73:24:AC:20:F1
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/aztwp2iuxeH2xTxHpy4CcySsIPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f18::/32
Signature Algorithm: sha256WithRSAEncryption
7f:7e:62:bb:10:2d:0c:31:b4:21:72:31:5b:72:fa:b0:1c:06:
22:87:d0:95:96:85:36:1a:c9:4f:dc:91:95:30:e9:ad:c9:a0:
c8:db:18:43:28:0d:62:26:f5:a1:84:c9:96:c8:1d:41:cf:b1:
69:88:29:90:91:22:a5:06:a2:ab:b9:7c:c2:5f:15:7f:8a:f3:
89:d6:55:c0:4a:46:03:dd:bf:14:8c:60:8b:6e:9a:72:be:fe:
cb:93:b4:58:c3:74:3c:90:b4:4d:d0:d9:c0:1e:ac:e8:63:54:
34:43:bc:66:51:ca:76:df:61:4a:2f:52:de:37:95:a4:af:41:
18:cf:3c:3a:81:d9:3c:e6:a6:16:13:67:0d:db:6e:7f:c4:3a:
a1:b9:62:33:03:11:a8:e5:8e:f1:e9:4e:a6:ef:69:13:90:f0:
35:b4:bc:8a:82:cb:92:8a:96:35:74:0c:ba:91:45:81:69:5a:
e0:c6:aa:b0:fb:79:31:bf:36:56:fa:f3:90:5a:7c:aa:53:4a:
0e:0c:46:a9:a3:1c:f3:95:7b:1f:f0:89:e7:34:af:70:33:eb:
d2:d4:8f:28:09:ba:02:2a:c3:ae:a4:2e:96:ae:15:b8:ab:83:
f0:68:75:45:39:3f:2e:c7:6c:93:48:4a:4b:f1:88:88:33:ce:
aa:1f:48:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org