Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0wsTB_zNlrxmt4LfWsusAkIdbo0.roa
File: 0wsTB_zNlrxmt4LfWsusAkIdbo0.roa (raw, json)
Hash identifier: EFGhqEWjlwMFW/QTwidBaQTlOomxWIx6IK2Ci+jN+Ec=
Subject key identifier: D3:0B:13:07:FC:CD:96:BC:66:B7:82:DF:5A:CB:AC:02:42:1D:6E:8D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C98
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0wsTB_zNlrxmt4LfWsusAkIdbo0.roa
Signing time: Mon 16 Nov 2020 06:46:08 +0000
ROA not before: Mon 16 Nov 2020 06:46:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:31::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3224 (0xc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:46:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D30B1307FCCD96BC66B782DF5ACBAC02421D6E8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bb:ab:99:24:f1:6a:c4:a5:ea:50:02:cf:45:
80:74:00:c2:e9:40:dd:af:03:d1:f8:0d:30:fd:a5:
e0:03:6d:2a:4f:cf:b7:25:7e:17:bf:e4:59:8d:56:
39:31:0b:e0:f8:99:c4:c1:bb:fb:f0:7f:73:90:5c:
e5:c1:72:b9:18:2b:f1:b7:1a:67:2d:38:a9:cd:07:
36:12:e7:11:82:85:94:a1:74:cd:75:fb:94:1f:c6:
9b:45:a7:b8:7c:00:99:e6:90:66:8b:4e:65:cb:87:
63:d2:a4:67:1b:cf:ed:3d:d0:b1:0d:26:e3:92:45:
2e:86:e3:67:4d:a8:ac:71:67:f1:a7:d7:fa:a8:32:
89:51:a5:10:6b:d2:8f:76:03:1a:38:3e:96:8c:f8:
2a:fb:6a:60:35:c7:07:c1:58:05:1d:5f:bc:3f:0e:
81:4d:97:99:1a:34:44:75:5f:5e:cf:6d:79:ff:1e:
d6:d6:a5:c6:42:1d:09:48:8c:c3:48:0d:ce:90:1e:
8b:f0:c7:3b:e9:ad:b9:a8:c8:82:60:be:25:56:72:
c2:3c:85:78:1b:71:29:84:d1:e5:85:63:7b:c7:4c:
8c:d2:27:dc:98:ca:7b:94:fe:68:be:1a:45:de:90:
e4:80:70:96:05:a5:ee:66:d7:78:1b:56:98:75:69:
3d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0B:13:07:FC:CD:96:BC:66:B7:82:DF:5A:CB:AC:02:42:1D:6E:8D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0wsTB_zNlrxmt4LfWsusAkIdbo0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:31::/48
Signature Algorithm: sha256WithRSAEncryption
79:15:b7:9f:ef:5f:5d:ce:de:19:37:98:fb:02:5c:58:aa:77:
4d:e3:c7:15:da:4e:59:eb:a1:ca:ed:02:7b:6b:09:37:0a:6e:
f0:b9:3d:1c:42:fc:de:e1:ff:b6:2b:f0:d9:aa:6d:6b:de:76:
ba:70:5c:9f:82:35:cb:aa:3d:ff:be:a6:77:cb:b6:b5:d2:c4:
77:72:50:db:4a:9b:80:06:7e:6e:e1:90:20:b9:cc:84:89:4f:
10:e4:ca:a2:6a:7c:7f:32:23:63:af:0a:d4:be:0d:0f:96:42:
aa:7a:87:8f:b3:c5:ae:5d:6a:e0:fa:71:83:71:3a:43:19:06:
be:c9:c1:16:10:0a:d5:11:28:52:5a:fd:18:b5:33:ce:43:24:
48:f4:d8:c5:6c:d7:46:67:92:57:e3:50:90:6d:de:a7:e4:d6:
3d:47:c0:7b:94:87:e6:03:5e:f1:20:61:99:85:db:b6:70:68:
be:70:72:8d:da:46:40:ed:61:41:85:c6:e9:57:0a:ae:47:28:
52:36:33:d2:d8:e4:d5:f2:69:58:ce:41:8e:d5:cf:75:64:13:
23:c5:a5:df:a5:ea:81:15:1f:bf:cc:0f:6b:17:7c:bd:cd:fc:
f9:7f:8d:b0:c0:3a:8e:fd:62:6d:3b:b5:0e:95:50:bd:1f:09:
4d:43:73:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org