Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5AD-iFCzdnj70iGgu1BKwHFYsww.roa
File: 5AD-iFCzdnj70iGgu1BKwHFYsww.roa (raw, json)
Hash identifier: TKGgz8dFKfuYfFSKuFyD1mT8Yn9aiDH8rghQ0XGP1OM=
Subject key identifier: E4:00:FE:88:50:B3:76:78:FB:D2:21:A0:BB:50:4A:C0:71:58:B3:0C
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1086
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5AD-iFCzdnj70iGgu1BKwHFYsww.roa
Signing time: Thu 13 Oct 2022 08:51:48 +0000
ROA not before: Thu 13 Oct 2022 08:51:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 14618
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4230 (0x1086)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:51:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E400FE8850B37678FBD221A0BB504AC07158B30C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:49:18:d1:43:dd:63:64:b3:0e:e4:9b:13:47:
ad:8f:44:cf:6c:0d:f9:e4:3d:ee:35:88:65:44:d3:
73:e5:cf:31:d6:36:ed:0b:40:48:aa:96:07:c0:e1:
75:ae:72:8b:b6:99:85:a2:9f:f4:14:6f:92:18:22:
d4:e9:aa:71:b4:82:49:85:12:24:d7:48:26:42:2c:
91:35:c5:e4:f8:07:15:23:5a:e3:0a:fd:eb:16:d0:
0f:9d:00:dc:0a:7c:e4:bc:4b:cb:2a:5d:6d:eb:3a:
63:24:c1:fa:c5:86:89:bb:92:7c:78:2b:17:ac:54:
cf:d9:51:6a:e9:94:1c:62:88:c8:6d:d8:c0:9f:d1:
63:a8:a5:85:c6:03:31:e0:96:b2:e7:22:1c:69:4d:
f8:99:91:7e:4d:48:aa:36:14:69:7c:e1:d3:c8:7d:
a9:28:b1:e5:e9:09:30:e9:85:3a:64:1e:05:86:b0:
c5:9a:af:97:15:b8:83:a2:dc:39:5a:59:fa:0b:4e:
52:b9:ee:6c:89:fb:21:86:7e:a7:36:92:8c:cf:46:
a5:e3:4b:12:19:44:28:8c:b9:e6:b8:b2:71:3c:d5:
c0:40:80:3a:45:b3:fd:cd:8a:b8:ff:d0:c4:d8:6f:
cb:3f:d3:f4:d5:19:37:bf:f5:47:26:28:d5:92:39:
ae:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:00:FE:88:50:B3:76:78:FB:D2:21:A0:BB:50:4A:C0:71:58:B3:0C
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5AD-iFCzdnj70iGgu1BKwHFYsww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
89:30:24:f4:5c:8c:9a:48:ce:cb:d4:55:8e:a7:cf:91:a1:0b:
bd:58:65:03:1b:d5:64:27:90:35:0d:53:d2:a4:0f:c5:fb:2c:
5b:e8:33:ea:a1:c6:19:48:1b:9d:66:27:a6:52:c8:85:9b:65:
49:cc:4d:58:d5:ea:17:b7:d8:b4:52:1b:ba:fe:cf:74:e6:be:
55:56:17:4b:0f:9d:c6:ea:77:d4:a7:ad:d1:d0:6e:48:d8:c6:
66:45:02:d2:33:0e:34:39:01:0c:a1:ec:bc:1e:a8:cb:38:5a:
51:aa:ca:ad:a8:cf:ca:d9:e6:92:21:48:b3:31:e2:e6:ad:3e:
d5:4f:2c:79:a0:14:5e:5e:dd:d4:fb:41:94:8f:35:57:8d:bc:
57:8a:dc:5b:bb:99:1e:c7:cd:df:0a:ce:ad:94:95:43:ed:16:
2e:8d:16:39:1c:e0:1b:e1:91:5b:5f:71:7c:f3:de:4f:f5:e0:
c3:1c:c6:85:98:7c:6e:9f:b9:df:89:3f:78:62:70:a3:b8:0a:
26:5d:33:3e:08:7d:4f:4b:f7:0c:f8:1e:4b:cd:ac:cc:89:a2:
b7:cf:69:1f:66:ca:86:1e:6d:2f:5c:89:44:a0:fa:46:63:10:
20:f5:f0:59:6c:d2:4d:42:cd:db:8f:cf:b9:76:72:15:45:63:
1b:c7:0f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org