Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/8pAlpEv6DCTTQNEgAS7YFn3gr50.roa
File: 8pAlpEv6DCTTQNEgAS7YFn3gr50.roa (raw, json)
Hash identifier: 1gU/Ys7KXxLkmX6IovyYeexJJovleKGTwGTEPk/tS+8=
Subject key identifier: F2:90:25:A4:4B:FA:0C:24:D3:40:D1:20:01:2E:D8:16:7D:E0:AF:9D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 079C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/8pAlpEv6DCTTQNEgAS7YFn3gr50.roa
Signing time: Tue 29 Sep 2020 10:07:15 +0000
ROA not before: Tue 29 Sep 2020 10:07:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F29025A44BFA0C24D340D120012ED8167DE0AF9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:25:32:79:a0:6b:7b:89:01:80:91:15:bb:
f1:0f:ef:4e:07:b4:ad:15:28:8b:da:5d:0a:91:1e:
2e:b7:96:e5:db:64:35:3f:cc:dc:51:db:ba:24:ce:
5f:b2:16:42:e5:77:b3:4a:fc:e0:eb:a3:e1:98:bb:
21:c2:c1:86:bd:6e:71:21:fc:61:70:fb:05:e6:ce:
1a:56:2d:99:92:97:5d:9a:21:90:2a:f2:d9:c3:3d:
ba:2f:b7:c3:fa:8b:93:86:59:a1:2f:dd:c0:ca:e2:
9e:8f:30:02:96:4e:89:3f:30:d6:61:46:ab:e2:fc:
16:a6:cb:5f:9a:88:f1:ea:b2:4d:82:46:19:91:74:
ac:70:78:15:a8:4a:cb:ac:0b:f5:00:36:47:22:7c:
e3:f6:17:43:ac:2a:ac:8e:a5:4a:81:18:b5:cf:a6:
99:b3:30:93:43:c5:cb:e9:d5:0f:9b:fd:7c:01:5b:
5d:47:f5:1c:69:43:d7:4c:ae:e3:43:b4:64:ec:bd:
8a:ea:fb:21:0a:36:ee:9b:e6:3e:c9:55:16:b4:a0:
7d:07:8e:3c:bd:41:83:be:d6:d1:de:2c:1c:cb:a8:
e0:03:98:a8:2f:75:5e:a1:b0:2d:0f:07:4d:18:41:
89:2c:d2:3c:1f:0b:6b:94:89:9a:51:c5:9d:91:7c:
cf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:90:25:A4:4B:FA:0C:24:D3:40:D1:20:01:2E:D8:16:7D:E0:AF:9D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/8pAlpEv6DCTTQNEgAS7YFn3gr50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
08:19:e3:33:fc:30:e5:dd:61:57:63:a4:41:37:46:a6:09:5f:
01:e2:1e:e7:e6:32:74:14:e1:b6:cd:9c:38:cb:94:e6:05:0b:
36:c0:59:c5:19:f8:cc:8d:24:24:60:7a:5a:99:1e:10:00:6f:
6e:7e:07:9a:68:35:a4:8c:0a:ce:dd:28:27:d1:fb:6b:b9:fb:
95:1a:b2:1e:22:56:ec:e2:9d:36:73:e3:a5:ba:f2:a2:8d:3c:
5c:8c:76:fe:dd:73:a1:7d:6c:22:00:a7:4e:f8:18:ad:56:ce:
6e:61:30:4c:d5:b3:7b:79:a1:5c:57:2a:d7:16:3d:eb:9e:31:
59:48:20:26:cc:00:c1:8f:00:0e:5e:ce:03:3a:d4:b6:8d:2c:
e3:12:a4:20:dc:50:9b:6c:f5:ea:cf:1c:38:19:2a:b8:9c:a0:
0b:22:57:bf:83:37:00:1d:eb:89:80:d6:d9:cb:77:f6:34:16:
19:35:7a:38:7f:aa:90:71:79:51:ad:b4:c8:62:9c:6d:61:68:
07:7e:9c:c4:89:47:e6:36:75:c1:41:04:ee:c7:22:4f:db:b4:
37:61:b5:8f:f0:b7:9a:27:91:b4:96:1a:51:4b:b3:7a:f9:e9:
70:06:5e:c0:d4:a8:11:e8:e8:e5:f3:c2:80:57:f0:62:cb:a1:
45:74:c4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org