Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IPac5E-v_op1vvENDuHiX4icFS0.roa
File: IPac5E-v_op1vvENDuHiX4icFS0.roa (raw, json)
Hash identifier: NBKv92dExb266UCshalLT6dflCnhoHrj5jilUE7Vyaw=
Subject key identifier: 20:F6:9C:E4:4F:AF:FE:8A:75:BE:F1:0D:0E:E1:E2:5F:88:9C:15:2D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DCF
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IPac5E-v_op1vvENDuHiX4icFS0.roa
Signing time: Mon 23 Nov 2020 07:23:40 +0000
ROA not before: Mon 23 Nov 2020 07:23:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:13::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3535 (0xdcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:23:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=20F69CE44FAFFE8A75BEF10D0EE1E25F889C152D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:aa:8f:0d:0f:bf:ff:94:0b:b1:9c:e5:71:
dd:39:83:53:36:57:4c:27:94:c8:f9:94:26:97:9b:
a9:25:87:a1:a7:db:d2:07:52:80:1a:16:4a:bd:c7:
8f:79:df:08:da:0c:e4:13:c2:91:eb:94:13:1d:55:
06:e8:5d:9a:0b:e0:58:12:f0:c0:d7:30:6c:9f:72:
fa:d8:50:53:dc:16:73:44:1d:72:8e:b7:43:89:a9:
76:24:03:36:71:28:2c:05:cc:1c:87:20:cc:84:38:
72:91:6a:e6:b6:e0:46:fa:0f:6a:32:4b:82:b9:f2:
1c:7b:65:14:fc:56:b4:e2:fd:af:44:e8:42:31:74:
73:6c:71:c2:be:e3:6c:c9:18:90:22:fd:bd:1b:19:
55:d4:6c:be:53:ef:e3:94:0f:ef:56:3b:aa:dd:99:
20:be:b6:9a:1e:c0:a1:fe:7a:4d:fb:19:6c:34:ac:
9b:cf:4c:27:d7:d5:40:e3:33:75:bf:10:22:ca:56:
86:d8:9d:58:61:b7:7d:f1:54:3e:e5:aa:8b:e0:18:
f1:ae:24:05:3d:36:16:35:48:d7:dc:7a:55:ee:bf:
e5:53:77:4b:7f:aa:29:f4:82:22:27:4e:30:56:19:
a0:2c:64:88:60:c0:5c:24:6d:fa:cd:49:28:cf:05:
55:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F6:9C:E4:4F:AF:FE:8A:75:BE:F1:0D:0E:E1:E2:5F:88:9C:15:2D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/IPac5E-v_op1vvENDuHiX4icFS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:13::/48
Signature Algorithm: sha256WithRSAEncryption
0d:fe:e9:93:f1:fd:f7:86:30:0d:7c:e1:1d:fe:14:89:1f:c6:
5e:42:76:8f:25:72:64:5b:41:b9:b0:df:f5:2c:fb:e0:44:26:
7f:e4:2e:62:6b:11:8e:c9:d8:24:11:2d:04:62:e7:52:07:32:
07:79:2a:19:cc:ed:65:c5:19:45:46:a2:dc:6e:17:e7:06:3d:
ca:31:20:39:58:ff:03:76:41:b9:54:6d:7d:5d:2c:2d:3b:80:
d3:f3:b0:2f:f0:a7:7d:c7:c5:2a:ea:01:a8:38:f0:41:05:2b:
a9:21:02:f2:60:81:f8:11:6c:49:a9:70:d2:d9:b1:17:46:da:
14:db:2e:7c:df:54:3c:91:58:09:7d:db:37:99:50:aa:c4:b5:
05:55:e9:aa:a2:58:c4:ed:2b:b8:2e:26:b6:4a:51:56:66:e1:
1c:c2:6b:00:8c:c3:ab:74:bb:2d:f1:ad:51:f9:4b:97:6e:1e:
d2:82:5f:a2:96:82:2a:ec:59:f0:0f:a1:6a:91:3c:f6:f4:d1:
94:b6:64:0b:85:bb:fb:ca:0d:c8:9c:74:a9:b9:ef:78:6b:c1:
c4:28:fb:0d:64:72:0f:f0:bb:2c:4b:58:af:aa:4c:00:8d:35:
62:c9:a5:b0:f8:80:72:bd:ba:5d:a8:3f:34:80:39:e3:aa:c7:
ba:a8:1c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org