Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DSU_QifcLNfaZPbkW2WPU1HqWWM.roa
File: DSU_QifcLNfaZPbkW2WPU1HqWWM.roa (raw, json)
Hash identifier: dBkeR9HpC3GdwLtxpl2eVnWlejtTqjy2cX7TJItWITc=
Subject key identifier: 0D:25:3F:42:27:DC:2C:D7:DA:64:F6:E4:5B:65:8F:53:51:EA:59:63
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C6C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DSU_QifcLNfaZPbkW2WPU1HqWWM.roa
Signing time: Mon 16 Nov 2020 06:11:28 +0000
ROA not before: Mon 16 Nov 2020 06:11:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3180 (0xc6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:11:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D253F4227DC2CD7DA64F6E45B658F5351EA5963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:66:a8:ed:ea:57:14:2f:fb:cb:2a:82:49:76:
2b:10:ac:87:8a:6b:b5:52:31:35:1e:20:9b:3f:ed:
bd:8d:cb:65:2b:2c:35:3a:ce:f0:fe:e7:49:ba:98:
45:43:04:d4:60:b6:3d:42:9c:6e:aa:fe:af:90:da:
41:a8:bd:77:74:11:ee:e7:4d:60:17:6e:b5:bb:87:
14:c4:0d:81:d2:f0:35:7a:d1:e8:ab:82:6b:fa:ed:
e4:bb:25:eb:e6:7b:69:ca:bb:fe:0d:79:d4:05:c3:
d2:f7:78:68:dc:13:24:08:ac:ec:1b:d8:4e:17:09:
a4:bd:74:2d:9f:64:21:9d:42:80:bd:64:26:e4:68:
98:0b:08:24:69:ae:9d:0c:ec:26:f7:93:2a:3f:7a:
06:8a:24:30:bc:60:e0:1b:c8:db:38:3a:8f:58:20:
6a:24:40:87:a7:f2:07:90:94:0b:3d:fd:53:17:25:
60:c6:22:24:aa:4a:26:9e:d2:8b:54:f7:42:0c:21:
6a:e5:a3:8a:fb:20:c5:73:58:00:8d:ad:13:24:01:
63:6b:df:80:ff:af:66:ad:c8:c5:6d:2b:e0:43:b9:
e9:ed:de:06:c0:44:47:c8:76:b0:88:1b:29:b6:d8:
28:2d:04:3d:59:71:00:a8:28:5a:3e:92:0e:7c:01:
1e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:25:3F:42:27:DC:2C:D7:DA:64:F6:E4:5B:65:8F:53:51:EA:59:63
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/DSU_QifcLNfaZPbkW2WPU1HqWWM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:9::/48
Signature Algorithm: sha256WithRSAEncryption
73:37:7a:13:0d:48:66:91:7f:de:da:5d:99:2e:5a:65:51:13:
c3:18:c5:55:58:46:18:67:4a:66:7f:c6:98:0f:ca:ff:99:67:
09:1f:4b:fe:bd:82:e3:0b:3f:51:be:c8:ba:97:10:a7:a3:b4:
01:36:67:78:76:41:44:d3:55:f3:7f:c1:33:8e:4c:88:ec:8f:
d8:7d:ba:6c:5a:11:27:3d:20:27:53:0d:ad:5c:d8:e1:0d:5c:
f9:1f:63:b9:93:11:2f:85:77:f0:1c:97:31:93:8c:be:26:fc:
70:6c:0c:08:c4:1e:53:54:9a:02:73:55:d9:d3:7a:0a:cd:8f:
bd:21:64:f5:23:fa:eb:e6:9e:30:ea:e6:5e:50:9a:d5:cb:5b:
55:43:d2:b8:6b:89:ad:32:80:1e:0e:3b:b2:ba:32:b6:ae:71:
0e:7b:2c:f5:24:49:01:d1:21:c1:47:65:85:d4:80:ad:b7:71:
7c:22:63:f6:aa:2f:91:30:77:f7:4c:79:bc:be:6e:01:85:de:
cd:7b:42:3e:da:43:00:c4:34:8f:af:94:c6:c3:cb:3e:12:39:
f6:f0:fd:75:80:65:d9:5c:00:c2:b7:e3:21:36:e6:15:30:d0:
bf:be:55:87:be:7c:ee:6b:1d:a3:3b:12:57:a6:b3:27:14:5b:
a8:62:46:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org