Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/BIeBxE3zTt9h93XMq9QUTa3bYGc.roa
File: BIeBxE3zTt9h93XMq9QUTa3bYGc.roa (raw, json)
Hash identifier: glRgtVnDNvW3oSNddBWuinkK0ZOvkjzqEmP7EzBUPb8=
Subject key identifier: 04:87:81:C4:4D:F3:4E:DF:61:F7:75:CC:AB:D4:14:4D:AD:DB:60:67
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C9A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/BIeBxE3zTt9h93XMq9QUTa3bYGc.roa
Signing time: Mon 16 Nov 2020 06:46:16 +0000
ROA not before: Mon 16 Nov 2020 06:46:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:32::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3226 (0xc9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:46:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=048781C44DF34EDF61F775CCABD4144DADDB6067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:28:bc:bb:09:2a:56:1c:34:51:bb:4d:90:7f:
21:5e:a0:d8:08:e8:c9:50:cc:a1:e5:75:ff:d6:14:
91:2d:ee:09:4c:7b:c1:a4:ca:b5:2d:0e:de:34:bd:
26:19:93:78:3e:e4:de:5d:5b:aa:0f:e0:41:2b:47:
03:57:63:92:2b:fd:f3:1d:8b:70:8e:71:98:87:76:
0e:90:28:80:9f:22:ba:08:43:2e:d2:93:b8:94:fb:
d1:a3:e9:17:71:0a:59:37:c0:6e:da:d0:ff:80:1f:
19:9e:77:25:d8:ba:26:82:93:53:c2:f9:cb:46:de:
95:f1:2d:a3:8d:b9:ef:3d:7e:5a:89:a1:a0:9e:37:
86:25:37:08:c8:96:68:0d:f4:c4:6e:d6:73:2b:24:
65:81:27:42:8a:e7:38:72:6e:56:da:a8:0b:52:7f:
43:ce:59:17:dc:1e:27:c1:95:0d:99:c6:4c:2d:40:
24:78:52:f1:b1:a0:3f:90:4b:e7:db:74:fc:69:32:
fd:4f:43:c1:5c:d8:50:4b:f3:61:92:17:34:cb:a3:
dd:69:ce:dd:dc:9a:a0:6b:84:47:8e:9b:3e:98:37:
bf:3e:51:c0:6f:92:e1:ab:e7:45:4a:7a:d6:95:d4:
e1:d4:d3:25:ca:0a:7b:09:6d:e0:9b:36:4e:34:c6:
03:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:87:81:C4:4D:F3:4E:DF:61:F7:75:CC:AB:D4:14:4D:AD:DB:60:67
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/BIeBxE3zTt9h93XMq9QUTa3bYGc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:32::/48
Signature Algorithm: sha256WithRSAEncryption
9c:d8:28:e3:71:a8:d5:18:ba:a5:5e:07:ee:7c:cf:e7:c3:08:
d9:ea:2c:1d:1f:04:d1:b1:76:53:80:4d:cc:31:36:ea:9e:89:
89:11:b8:fe:37:95:d8:1b:c2:3e:2c:5c:31:08:1a:f6:e0:db:
b1:1d:15:e5:20:e8:2a:e8:e6:87:f1:ee:67:e3:4b:bc:2e:12:
1b:33:fc:fd:5c:eb:bd:15:10:7f:75:99:6d:7e:10:8c:97:1b:
a4:76:90:8f:4d:74:47:f6:af:7f:41:b8:00:f2:11:b1:b0:6d:
36:c2:2a:4c:98:29:b1:68:34:48:57:71:24:ac:b7:ae:4f:a0:
66:0c:f8:27:45:43:7d:6c:cb:48:f8:9e:9e:00:c5:65:07:b6:
ae:ba:78:32:a4:c4:d6:89:7f:f0:97:7a:02:8c:1e:59:a4:46:
1b:32:46:0d:f4:4d:19:b3:5e:71:65:21:63:89:d4:79:01:96:
3c:b3:71:8b:b0:aa:d2:42:40:7a:02:e8:9f:7b:e4:32:21:82:
54:1e:9f:ae:c2:27:6e:06:35:55:7f:f5:1d:1d:40:a0:0f:58:
96:58:dc:73:58:54:1a:9c:2d:5e:e1:c7:96:36:c2:10:4e:8a:
cb:dd:fa:88:bd:05:a2:bd:33:83:6f:80:97:28:4f:33:0f:02:
88:87:3d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org