Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/G-UgDkiZ9SQ3H-3FhhkeG8a00qQ.roa
File: G-UgDkiZ9SQ3H-3FhhkeG8a00qQ.roa (raw, json)
Hash identifier: jUrITWJe7hs1PWd6DhOU254ai+reHMYqGWml5Bjdwr0=
Subject key identifier: 1B:E5:20:0E:48:99:F5:24:37:1F:ED:C5:86:19:1E:1B:C6:B4:D2:A4
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0FC9
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/G-UgDkiZ9SQ3H-3FhhkeG8a00qQ.roa
Signing time: Sat 21 May 2022 01:47:39 +0000
ROA not before: Sat 21 May 2022 01:47:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18180
IP address blocks: 2001:dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4041 (0xfc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: May 21 01:47:39 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1BE5200E4899F524371FEDC586191E1BC6B4D2A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ce:a5:09:d3:db:64:05:d2:ae:08:9e:fe:a6:
5f:a5:89:ea:2c:02:17:ce:b9:60:7a:82:c5:0c:38:
96:50:fa:45:db:ed:73:e3:1e:da:0e:62:d9:6b:69:
a0:cd:c8:f0:df:2c:7a:a3:62:0e:2d:27:08:25:64:
a2:ac:27:c4:8d:6e:1b:4d:7f:f8:d0:b2:9c:14:f9:
12:98:26:00:be:40:a3:2b:43:94:ab:20:bf:27:93:
e3:41:c8:dd:8a:2d:69:2f:e7:1e:99:fe:79:48:3b:
64:05:1b:e2:4c:ff:74:06:17:26:22:61:55:c1:ab:
5d:22:12:3b:ec:ce:b5:64:f3:d2:81:bd:3c:95:6b:
16:45:fd:0d:1d:1f:b9:62:6a:0b:65:04:be:b7:29:
54:05:7a:1a:42:bc:c1:44:17:68:0a:5f:e7:bb:09:
e4:b8:a1:27:5e:ff:88:57:64:11:1a:7a:5c:eb:9b:
a8:56:21:1a:81:c9:bb:79:04:35:38:4e:23:82:de:
53:27:5e:ce:58:55:cd:44:f8:be:bc:71:31:cc:a0:
dd:26:24:f6:10:4d:ed:d9:30:a7:05:f2:b4:bc:29:
68:87:81:17:6d:05:2f:a0:7c:fe:48:d9:74:dc:80:
ec:88:a3:ad:cc:f6:e7:7b:c7:67:3a:7c:f2:c1:af:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E5:20:0E:48:99:F5:24:37:1F:ED:C5:86:19:1E:1B:C6:B4:D2:A4
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/G-UgDkiZ9SQ3H-3FhhkeG8a00qQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/32
Signature Algorithm: sha256WithRSAEncryption
5a:24:91:b3:dd:35:67:e3:86:37:76:dc:75:41:6c:8d:6c:98:
96:d8:37:50:ff:1b:2d:bf:f9:63:b9:ce:0b:43:9d:bc:d7:a7:
20:4f:61:77:4a:8d:4e:1c:b3:c0:37:c3:03:69:b2:61:19:e0:
9b:7e:4f:47:3f:e1:cc:ad:50:7d:8e:63:6f:bc:d4:04:65:f4:
18:69:a0:2a:14:8b:13:03:56:d6:9f:d9:49:91:c2:bc:c8:9a:
ad:ce:76:27:62:19:a9:d8:71:ce:38:73:48:d8:fe:b7:d8:f3:
91:9b:8d:a3:ef:5d:ea:45:0f:87:32:47:fb:b1:bd:50:10:84:
f3:35:b0:bc:a8:11:ce:93:be:ab:85:c6:db:d0:31:fe:6f:27:
bc:42:47:a7:dc:69:6b:e2:ed:f0:58:54:28:e7:a9:39:e2:02:
e9:17:c6:fa:4c:cd:44:96:20:e4:87:98:dd:ce:21:7e:67:b0:
0c:e3:23:83:e8:8c:67:7c:ed:d0:4c:bd:7f:42:22:61:1d:fa:
09:3a:5c:cd:7d:98:fe:07:27:60:4b:f0:c4:e4:64:75:65:f5:
ef:09:cd:d5:4a:06:77:02:e9:95:3f:a9:28:6e:71:65:4c:be:
66:ed:45:59:10:6a:eb:2f:ba:10:df:21:c3:79:80:59:44:fb:
fc:73:b2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org