Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6tm0iLIy6LWTI38AQdZTOzalw-o.roa
File: 6tm0iLIy6LWTI38AQdZTOzalw-o.roa (raw, json)
Hash identifier: locU2EkK3exK/3F3VV/X40RFYIf2+ko4o6k0+zItyoM=
Subject key identifier: EA:D9:B4:88:B2:32:E8:B5:93:23:7F:00:41:D6:53:3B:36:A5:C3:EA
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DBF
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6tm0iLIy6LWTI38AQdZTOzalw-o.roa
Signing time: Mon 23 Nov 2020 07:22:28 +0000
ROA not before: Mon 23 Nov 2020 07:22:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3519 (0xdbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:22:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EAD9B488B232E8B593237F0041D6533B36A5C3EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9b:42:35:ff:a5:41:c3:87:15:40:99:58:ae:
d6:69:03:a8:cb:6a:86:d9:cb:35:de:36:7e:5f:58:
2e:a2:bd:ca:9f:be:a4:b5:b0:ea:fe:da:6a:04:60:
17:89:4c:61:d0:c9:ae:7a:17:bc:0c:f5:bd:a9:25:
3f:6e:cb:08:c2:b7:92:ee:2b:bf:fc:06:d2:0d:cb:
fe:bd:24:f9:7e:2b:8e:71:2b:01:1b:4a:68:ed:73:
5b:60:ee:ab:cd:34:e7:a1:4f:5d:e2:c6:81:23:04:
45:82:57:88:4d:c3:9d:ee:8e:88:db:07:ef:69:79:
7d:03:f6:e5:be:05:18:94:e0:52:a7:fd:dc:62:40:
28:28:47:f2:75:27:c1:19:7f:bd:fe:34:73:1a:b5:
2d:96:2a:29:33:f4:79:1e:a2:1e:3e:38:af:4a:84:
93:21:86:cf:63:47:6b:8f:60:b1:85:4c:8b:e4:71:
ac:b4:9c:53:36:3c:6a:5c:7a:45:bd:bb:a7:9e:ed:
80:d2:0e:1b:67:6b:ec:65:0f:7f:59:bb:7f:14:ac:
b4:ad:81:71:ed:c9:a0:c4:d9:a5:23:46:15:05:f3:
c8:e5:2e:b9:00:90:f3:4a:04:25:58:e6:4b:16:6e:
16:c4:ee:3e:34:2b:2c:ff:f7:3e:a0:c7:5f:4b:64:
ad:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D9:B4:88:B2:32:E8:B5:93:23:7F:00:41:D6:53:3B:36:A5:C3:EA
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6tm0iLIy6LWTI38AQdZTOzalw-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:5::/48
Signature Algorithm: sha256WithRSAEncryption
5a:57:bb:e2:bb:e1:f5:fa:4d:2b:45:8e:6a:b0:ab:63:ea:ad:
b3:7a:3d:78:9c:b2:86:c7:58:82:76:65:6f:73:ff:e3:f8:62:
85:04:af:98:cb:56:90:cb:54:8d:33:1e:7c:4a:61:e5:7f:70:
a2:1c:fb:31:0d:b0:ae:8c:bb:f4:28:1e:37:a7:ac:0e:c2:04:
2e:8c:66:7e:0d:98:af:08:44:76:06:ba:35:2f:de:00:ad:58:
61:43:be:3c:34:95:1f:45:56:11:d0:39:1f:51:f7:b9:62:9f:
2f:e2:b7:b7:f8:c0:73:a7:4a:e0:d2:ee:65:90:80:28:15:c3:
0a:6e:df:b8:ba:e2:0d:61:dc:68:01:18:79:2c:04:7a:ff:02:
c3:75:ff:b3:ac:44:13:1e:68:cf:29:10:72:e1:25:f1:af:1c:
0d:9b:82:c6:01:ac:5c:89:50:39:7d:0c:cb:e3:24:16:24:28:
c7:61:17:ec:56:a7:aa:ea:bf:44:5c:a1:ad:08:f4:7a:c8:51:
71:0f:09:80:28:68:a8:43:75:90:cf:6a:5b:ab:b0:bd:f6:a0:
e6:f1:8b:ac:ff:54:13:76:d7:0e:70:a5:d9:9d:7f:70:fe:ce:
fb:9a:d9:3f:a8:06:7c:b2:ef:45:58:50:29:7b:2b:7b:2d:69:
bb:77:e8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org