Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IAhfV7REXwZRk22ZNZPwjvMnTnE.roa
File: IAhfV7REXwZRk22ZNZPwjvMnTnE.roa (raw, json)
Hash identifier: tjZp7JNBn2ifbCnq6RxzrjiFUSXk75uBUJFILNb8qb4=
Subject key identifier: 20:08:5F:57:B4:44:5F:06:51:93:6D:99:35:93:F0:8E:F3:27:4E:71
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CA0
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IAhfV7REXwZRk22ZNZPwjvMnTnE.roa
Signing time: Mon 16 Nov 2020 06:48:17 +0000
ROA not before: Mon 16 Nov 2020 06:48:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:35::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3232 (0xca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:48:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=20085F57B4445F0651936D993593F08EF3274E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a7:97:80:ab:35:dc:4a:6c:91:21:bf:44:72:
eb:9e:00:3d:03:91:bf:93:e1:62:ab:10:c4:c4:9b:
f6:c4:b0:57:20:94:d4:1e:aa:80:fb:9d:c8:cc:c4:
37:d0:7c:1b:24:33:d9:48:63:b3:d0:f9:c1:a0:92:
c5:1d:4c:24:7c:81:f2:e2:6b:7b:42:e7:68:72:24:
6d:40:5f:c6:8e:e2:6e:a9:00:2c:e3:99:8a:27:98:
e5:bd:6c:15:81:a7:fb:c4:27:8e:19:3d:61:11:a7:
47:dd:b1:20:2f:87:b7:e4:78:0d:d0:b2:6e:7f:b0:
cc:78:5a:c7:37:a9:06:ed:82:f7:8a:4b:d8:6c:1a:
3e:fc:d5:d6:ec:d5:fa:f5:3f:34:8a:9c:5e:0b:d9:
8e:e7:4a:08:6c:dc:82:6f:27:b5:74:5e:4b:3d:ec:
2d:eb:43:25:75:6a:2c:d5:c1:c2:16:c8:12:d2:c5:
46:ae:64:27:bd:03:66:a7:af:f9:a0:18:c1:fc:28:
b1:a4:97:55:0a:08:6a:fb:1e:65:b3:a7:76:0f:c7:
7b:44:f6:4c:72:c6:fe:fa:d7:89:ca:80:2a:c8:31:
3a:90:b0:c6:82:45:49:1b:19:64:0c:83:45:0f:52:
2f:0f:cb:ac:62:10:34:90:ae:0d:f9:f1:0c:6d:86:
39:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:08:5F:57:B4:44:5F:06:51:93:6D:99:35:93:F0:8E:F3:27:4E:71
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IAhfV7REXwZRk22ZNZPwjvMnTnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:35::/48
Signature Algorithm: sha256WithRSAEncryption
78:d6:ae:a3:fe:73:ea:ab:b6:b5:6e:a1:6c:6c:ab:f0:09:41:
e6:66:69:bf:6f:96:93:3a:46:7e:da:71:78:05:36:e0:5c:78:
d6:69:9b:a7:9e:ce:37:d5:18:50:ba:ac:de:bf:3b:9c:a5:6b:
d0:bd:46:18:f2:2f:37:ff:72:ea:3b:b4:05:b5:2c:e9:0f:8d:
05:3a:85:68:11:11:9f:29:86:e0:7e:da:7c:da:fe:2b:59:27:
26:12:5e:e6:be:6a:52:72:0b:c4:be:ae:58:67:70:21:b3:85:
bc:e4:28:84:7c:48:1f:1d:2a:69:bf:62:d3:94:07:a5:93:7f:
4a:4d:bb:3d:32:68:5e:e6:a1:6c:87:a8:af:4c:15:4c:49:de:
17:06:4c:c5:59:7c:1a:d2:dd:2e:3b:70:d6:4a:75:21:44:16:
35:35:49:60:61:ea:f8:eb:31:d8:0a:fa:9e:83:56:59:ae:15:
b8:5f:64:c0:c9:8c:64:e9:01:7f:f7:ac:bc:eb:02:1d:56:77:
7d:6e:30:f3:49:26:44:4d:94:5e:99:ac:ef:d6:6f:ad:8f:a0:
83:44:b1:56:e2:f9:d7:a0:fd:ba:cc:ce:f2:18:64:83:b9:12:
91:6d:94:31:72:91:8c:39:26:98:80:df:cd:3b:2d:f8:0e:12:
a2:36:44:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org