Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-kRxwjnX-bhf6YTklkBLTWmmEOs.roa
File: -kRxwjnX-bhf6YTklkBLTWmmEOs.roa (raw, json)
Hash identifier: yEMnL+1jTes+SPjad2G+97maZzzvGSbvoHkgjyA5tvE=
Subject key identifier: FA:44:71:C2:39:D7:F9:B8:5F:E9:84:E4:96:40:4B:4D:69:A6:10:EB
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C47
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-kRxwjnX-bhf6YTklkBLTWmmEOs.roa
Signing time: Tue 10 Nov 2020 06:35:50 +0000
ROA not before: Tue 10 Nov 2020 06:35:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3143 (0xc47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 10 06:35:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA4471C239D7F9B85FE984E496404B4D69A610EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:01:d5:7c:16:e7:49:0c:6b:40:41:d9:26:5c:
9d:70:50:61:ed:9b:e9:3e:86:3a:bd:d9:b7:96:bd:
c2:36:6e:a4:d6:c9:6c:02:d7:a4:60:11:23:76:51:
a7:73:d7:a2:62:e9:8c:cd:c9:95:86:0c:06:46:2a:
93:82:17:ec:3d:90:86:23:99:17:8e:1f:e0:83:bd:
f1:23:5c:18:f9:09:64:04:3c:cc:9b:46:04:98:bd:
e4:c0:5f:8f:41:53:77:8c:46:1a:cf:ac:83:5c:01:
95:41:d0:6f:3c:08:21:f9:d4:a5:ee:30:ce:64:b3:
df:b3:e1:c0:43:01:58:83:43:10:95:3a:a3:e8:be:
9f:a5:29:e8:db:d2:02:9b:54:2e:77:c2:a8:b9:91:
78:0d:6b:70:05:36:bc:6d:36:12:91:93:31:57:e0:
e4:2a:38:9c:20:f5:eb:14:a7:0c:f4:db:0d:d6:98:
98:21:e6:5b:eb:ef:8e:30:f2:0b:9a:4c:b6:e5:6e:
cd:92:20:ee:77:41:61:c9:fc:2c:f9:0b:e4:81:4f:
06:87:f9:d4:72:96:3a:1b:4e:61:4e:c6:51:95:01:
de:2c:8f:a8:5a:16:ac:04:b1:1e:28:2c:fa:4a:f1:
01:f7:74:0d:fe:bd:d4:72:d8:64:38:d6:76:7d:52:
9f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:44:71:C2:39:D7:F9:B8:5F:E9:84:E4:96:40:4B:4D:69:A6:10:EB
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-kRxwjnX-bhf6YTklkBLTWmmEOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:6::/48
Signature Algorithm: sha256WithRSAEncryption
61:97:cc:6d:7f:1f:75:52:08:a3:c7:7a:77:3b:2d:ad:f9:d5:
54:d8:de:0b:c9:a9:6c:63:ae:95:e9:28:51:e0:c2:bb:a3:c9:
9e:dc:b7:25:99:81:f6:e2:6a:37:6f:bb:ac:bb:1f:fe:da:ea:
5b:b1:2d:a8:1c:31:62:69:79:c2:64:59:18:fc:c5:fc:de:3b:
a1:ec:b7:72:5d:af:dc:76:73:97:d0:24:dc:2d:9d:c9:13:b9:
5c:e5:aa:13:e7:1b:f1:1a:ac:b9:d7:b9:80:5e:b7:ea:eb:21:
29:89:95:cf:58:a7:0b:f8:1b:6f:78:19:93:57:d6:ca:9a:71:
71:12:ec:b5:bc:03:71:94:1b:70:61:b3:6c:e3:4f:31:d7:4c:
49:86:62:c8:db:0e:28:c0:fc:c0:b6:79:fe:a6:92:62:49:85:
42:f1:a6:93:d6:a0:a1:de:73:e6:e3:d8:5c:d7:d7:45:e3:c7:
fb:5e:b7:be:ea:b4:45:93:4f:94:93:e1:f5:6b:f5:a2:39:7c:
cc:1e:13:38:de:45:9c:50:b9:a5:a3:1c:b6:b7:2f:cf:52:3b:
0c:8e:80:89:99:78:76:c7:31:be:10:64:44:fc:e6:be:65:e6:
b4:31:b7:f6:e4:bb:bf:c3:88:ab:8e:f2:78:6f:7b:b9:d4:77:
28:36:20:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org