Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HvG7e3E_2aXPCOI0HiSu4YeUB9s.roa
File: HvG7e3E_2aXPCOI0HiSu4YeUB9s.roa (raw, json)
Hash identifier: PFTKWvpHe0T6fsXnYqytrpLkCEXtmYt+ftjqFfCx/cc=
Subject key identifier: 1E:F1:BB:7B:71:3F:D9:A5:CF:08:E2:34:1E:24:AE:E1:87:94:07:DB
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0D09
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HvG7e3E_2aXPCOI0HiSu4YeUB9s.roa
Signing time: Wed 18 Nov 2020 07:21:13 +0000
ROA not before: Wed 18 Nov 2020 07:21:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3337 (0xd09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 18 07:21:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1EF1BB7B713FD9A5CF08E2341E24AEE1879407DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cc:e4:1c:14:1c:e0:89:5a:33:a5:ba:02:ea:
16:75:d7:91:8d:10:87:6a:91:97:52:fd:c3:61:b1:
a0:9d:bf:57:95:ad:12:e8:94:b2:b1:14:1c:ef:ae:
2c:d8:59:e9:23:31:af:f6:a3:75:d8:0a:75:fc:12:
b3:5e:b5:11:d2:95:59:fd:35:a2:23:a9:d7:2f:b9:
a2:a0:3d:2a:c3:4c:c1:13:f4:6f:1f:e7:ef:9d:cf:
de:27:c3:6f:d7:ef:03:90:16:98:89:e6:a0:f5:0e:
c1:1b:55:ab:e0:fa:01:b9:7f:8c:bc:58:cf:d6:6e:
ba:a0:43:a5:54:cb:bf:c6:4a:d9:a0:ac:20:f3:fa:
44:78:2e:a6:91:0c:60:a9:85:57:56:09:c3:f1:2b:
c2:1e:39:dd:d6:33:b6:af:ee:a5:79:02:7f:25:16:
3d:b9:19:e4:f0:05:ca:85:3f:a3:1c:32:e2:e7:91:
05:7a:53:d0:62:4c:30:d4:b9:11:6a:b7:8b:a7:01:
38:35:cd:fc:f9:af:a2:1c:c0:6f:da:a0:48:a5:a6:
73:f9:74:3d:15:90:3c:95:6b:e4:01:d5:b4:2d:bd:
51:12:c9:30:58:a1:3a:53:04:96:01:4f:6c:50:44:
17:57:60:f0:b1:ab:f8:99:54:b2:f4:a6:54:3c:40:
a1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F1:BB:7B:71:3F:D9:A5:CF:08:E2:34:1E:24:AE:E1:87:94:07:DB
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HvG7e3E_2aXPCOI0HiSu4YeUB9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:1::/48
Signature Algorithm: sha256WithRSAEncryption
ba:a5:9d:e6:39:d8:16:37:66:dd:77:55:05:f2:e4:06:19:80:
5e:88:9d:c6:14:cb:b9:d5:7e:fb:d1:08:61:60:ab:58:91:39:
16:a3:e1:33:55:b4:31:d8:8d:23:57:ef:1d:0f:b5:d4:c9:64:
ec:b2:ea:08:56:7f:e4:af:ee:f8:45:3b:07:02:e1:3f:5e:65:
94:1e:64:c3:4a:88:ae:00:c8:7c:93:94:59:cf:07:21:22:da:
b5:2c:bb:d4:39:0f:b2:24:c2:b2:15:84:22:5e:29:f4:5a:7d:
30:ee:6d:58:d0:e5:42:3d:43:20:b2:55:b1:fc:e4:d4:23:9d:
ac:45:0b:df:47:40:fd:13:d4:72:c3:3b:82:bd:40:06:b3:86:
b6:61:96:cc:42:84:d8:bd:7c:95:b7:b3:91:b1:c8:a8:7f:d2:
f0:c6:90:08:6b:d7:e2:8d:65:ac:a6:90:82:27:34:cd:f0:3d:
44:2b:bf:5e:55:25:15:7a:a0:5f:37:52:e5:cc:15:6b:06:bc:
0b:80:4e:3e:be:60:1b:d4:01:73:29:a5:30:1b:21:25:4b:69:
7a:6c:a8:77:21:62:8a:0e:6f:5b:c3:7b:83:a3:72:af:01:49:
41:8c:06:a4:8b:89:71:11:45:3c:cb:19:f8:13:8e:08:b2:0b:
cb:30:22:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org