Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4d8bSuO3ETJeAbhHnSEs5TE9u1w.roa
File: 4d8bSuO3ETJeAbhHnSEs5TE9u1w.roa (raw, json)
Hash identifier: /5rL2STQAa27h9+gHcEZOpkQXl2QworPHM5HO1U8a/g=
Subject key identifier: E1:DF:1B:4A:E3:B7:11:32:5E:01:B8:47:9D:21:2C:E5:31:3D:BB:5C
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DC3
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4d8bSuO3ETJeAbhHnSEs5TE9u1w.roa
Signing time: Mon 23 Nov 2020 07:22:46 +0000
ROA not before: Mon 23 Nov 2020 07:22:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3523 (0xdc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:22:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E1DF1B4AE3B711325E01B8479D212CE5313DBB5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:66:9c:ed:09:94:7a:6d:c8:fe:55:ae:d6:e7:
06:d0:77:16:6b:95:7b:39:e0:9c:2e:9c:f7:cf:fb:
af:a1:75:00:7f:93:2d:ed:1b:64:7c:e8:a0:1a:a1:
5e:5c:95:8d:85:9e:26:84:46:73:ae:0d:5a:25:17:
e9:d0:2f:43:f8:8d:6f:42:a3:ad:0d:c3:24:36:ca:
30:a2:71:62:c7:c9:42:92:12:eb:e9:8e:f8:0b:3a:
10:e3:b7:ac:fc:01:34:56:42:d5:8a:70:49:af:1e:
d0:5e:43:01:a4:1b:36:9d:34:f5:6c:b8:c8:12:1a:
2b:ea:17:19:5c:12:1e:e8:4c:57:87:a3:1b:3c:c1:
5e:fd:3f:0e:3d:03:e2:35:5e:b6:39:b5:ee:16:2b:
37:8d:96:91:13:43:8d:84:a6:a7:30:e6:77:56:19:
22:1d:f5:ef:7e:92:bd:e3:a6:5f:74:79:71:90:11:
dd:46:96:eb:3f:4a:45:ca:37:e9:29:c4:e0:46:28:
01:04:d2:19:2c:f4:36:8e:59:94:a8:28:86:bd:78:
51:06:46:8e:15:3b:8a:d1:8b:89:22:e7:11:02:2f:
4b:0e:cf:df:14:f0:7f:3f:40:68:25:14:19:0f:b0:
74:6e:58:35:52:41:15:76:1e:6c:1f:39:10:30:35:
b4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DF:1B:4A:E3:B7:11:32:5E:01:B8:47:9D:21:2C:E5:31:3D:BB:5C
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4d8bSuO3ETJeAbhHnSEs5TE9u1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:7::/48
Signature Algorithm: sha256WithRSAEncryption
35:d6:fe:cc:1e:63:de:f8:5d:d6:ac:47:ee:48:1c:ca:cd:1e:
f0:68:0c:d8:6f:f5:82:94:9a:b9:91:45:c4:9a:34:b0:8d:c9:
ff:17:1c:d0:57:fc:f4:f4:ad:3a:73:65:9f:d1:3c:a9:00:66:
e3:c8:83:7e:32:4f:e2:a9:6a:95:ab:8b:16:11:17:4d:61:01:
c2:82:42:82:14:a0:19:b1:4e:ea:d0:85:dd:f1:76:7e:f4:c7:
77:e1:9b:b6:68:d1:a9:ea:9c:b7:12:d4:22:1c:10:ee:e0:09:
7b:b9:cd:bc:7b:60:66:cb:0c:85:25:45:af:be:90:0f:56:27:
d3:97:0b:4e:ad:36:03:d7:7e:21:f4:be:ba:e1:94:80:07:df:
87:55:e5:55:b6:21:79:5d:66:e3:e3:66:d3:15:93:40:c7:0a:
9d:b4:34:01:c5:0d:b1:b6:c9:13:d1:7b:fc:60:ea:9e:18:29:
0b:aa:79:42:e9:ff:1f:b2:1f:c1:d5:75:be:96:8d:3f:66:17:
17:91:70:ff:35:d1:aa:b2:de:ce:80:19:c0:4d:5b:d1:0f:17:
1e:bf:5e:5a:a6:cd:37:1b:c3:77:4f:03:da:b2:98:86:c8:61:
03:8f:56:03:4a:5b:d2:e4:e0:2a:8e:f8:53:92:15:6c:29:9c:
5f:9d:86:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org