Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/3FZ4d_rh6HJhtpo5uO2iqbvYii0.roa
File: 3FZ4d_rh6HJhtpo5uO2iqbvYii0.roa (raw, json)
Hash identifier: uln/qQy7FHZhOHnPfQKMsYGwyZQIplxiX3jxwqdUBOI=
Subject key identifier: DC:56:78:77:FA:E1:E8:72:61:B6:9A:39:B8:ED:A2:A9:BB:D8:8A:2D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C7E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/3FZ4d_rh6HJhtpo5uO2iqbvYii0.roa
Signing time: Mon 16 Nov 2020 06:13:03 +0000
ROA not before: Mon 16 Nov 2020 06:13:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3198 (0xc7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:13:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC567877FAE1E87261B69A39B8EDA2A9BBD88A2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5d:24:13:fc:1e:5f:9a:b5:87:03:6b:26:86:
8e:34:3e:17:95:29:14:26:9e:65:47:a3:ce:38:e2:
48:72:b9:f8:6c:91:62:99:9f:3d:b3:fc:2a:3d:4f:
2a:82:a2:e0:c2:a7:f0:00:cd:6a:21:35:85:4e:b8:
08:c7:af:64:1b:ff:de:f2:0c:0a:e7:56:47:28:af:
d2:2a:e3:25:3b:48:2a:1b:2a:62:e2:da:04:6c:01:
46:94:dc:da:01:c7:a3:e7:b7:ac:38:44:60:6c:b7:
25:d5:ae:52:ec:73:6e:3c:7d:17:65:72:a8:10:66:
d2:2c:b2:f4:8a:0e:95:bb:ce:90:51:c8:d7:e7:6e:
80:c1:cc:ac:8d:09:e6:0a:c7:4f:b2:4c:88:6a:7d:
4e:d5:11:49:e2:b2:1e:08:13:7c:8d:a3:3a:3e:dd:
84:9d:12:66:d8:5f:6a:6b:39:2b:f1:f8:88:4b:09:
a2:d3:96:17:bd:52:d3:bc:3a:e7:c4:de:82:09:f8:
af:63:2e:44:b0:fb:4d:2a:17:aa:71:12:37:7b:2f:
5c:4a:c1:4d:1f:07:4c:2c:3f:4c:3a:d2:6f:f6:7d:
bd:94:81:d2:bc:7b:ea:0d:bd:04:98:db:f1:72:98:
a4:2e:0d:f9:99:75:89:f0:7b:01:e5:42:07:ba:48:
4d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:56:78:77:FA:E1:E8:72:61:B6:9A:39:B8:ED:A2:A9:BB:D8:8A:2D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/3FZ4d_rh6HJhtpo5uO2iqbvYii0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:18::/48
Signature Algorithm: sha256WithRSAEncryption
7c:3b:a2:b0:e7:ed:4a:81:74:63:bf:2d:19:f7:a9:0c:33:20:
84:0d:8e:2d:a0:2c:bf:e0:56:9b:16:8f:28:2e:3b:79:7b:53:
55:a1:e3:a1:76:51:79:09:72:af:b2:87:0c:66:6a:50:e7:16:
bb:98:93:ce:c7:cf:96:cf:4e:16:54:dd:39:96:c4:04:f4:17:
19:3b:43:fa:b6:f3:8c:55:63:68:f5:2e:50:18:37:7f:71:3b:
0b:16:d7:48:f6:55:19:91:af:29:34:d7:45:b9:56:79:56:d2:
03:b9:c9:50:99:84:73:59:98:5e:31:88:01:eb:b3:09:ce:43:
0c:c3:82:64:53:fe:04:10:58:83:b8:00:61:08:39:1d:49:bb:
68:e4:75:3e:01:c1:7f:d0:3b:35:02:5d:f3:d1:ef:09:d0:c6:
87:45:12:53:3f:a8:e1:4b:32:95:88:5b:a4:33:57:d5:ed:8d:
6a:f8:07:ab:a7:9a:a6:d2:f2:b2:65:41:ed:a8:b0:45:bd:62:
33:86:92:74:84:90:c6:a7:a1:63:00:91:18:e9:0b:a3:aa:fd:
f4:c1:c1:c2:ed:1a:ec:ce:4e:23:67:3d:fb:a0:0e:0a:aa:59:
47:09:78:9f:54:5b:de:3b:a0:a2:00:dd:1a:01:e6:a1:a8:a0:
07:2c:79:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org