Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/JdnTt_7tI1m5Iq140uxywS9IepM.roa
File: JdnTt_7tI1m5Iq140uxywS9IepM.roa (raw, json)
Hash identifier: vEKDE/nXlfOnHCNZ3JG0+91dqFxxfJ7KHbV8CwGY+zs=
Subject key identifier: 25:D9:D3:B7:FE:ED:23:59:B9:22:AD:78:D2:EC:72:C1:2F:48:7A:93
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DD1
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/JdnTt_7tI1m5Iq140uxywS9IepM.roa
Signing time: Mon 23 Nov 2020 07:23:47 +0000
ROA not before: Mon 23 Nov 2020 07:23:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3537 (0xdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:23:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25D9D3B7FEED2359B922AD78D2EC72C12F487A93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5f:d6:6c:b3:f7:85:ad:b2:20:dc:a6:0b:01:
fa:24:61:e0:93:f4:e0:56:61:53:56:0e:7b:18:15:
d5:64:da:d9:e9:42:d0:34:5c:11:55:90:9a:cb:6b:
78:fb:e3:7d:a4:f9:55:f8:7e:e1:1e:c2:df:d2:81:
e4:3e:6d:d4:49:d7:20:06:d0:98:43:c1:c5:52:eb:
61:a0:07:04:d9:c7:02:fb:bd:73:99:a8:61:5d:63:
16:e1:5f:c1:8c:6f:62:95:57:08:ec:cb:d3:e9:57:
21:d1:b1:88:c0:85:4c:7b:e0:ff:03:49:42:51:59:
cd:e5:02:fc:7f:fb:01:4a:4f:f3:9c:fc:bc:d0:64:
d2:a9:5f:b0:27:4e:9a:ad:a1:de:15:21:01:3e:17:
e7:f2:67:82:1b:d0:40:cc:7e:c9:e8:93:b2:ab:75:
51:90:ad:e5:8a:ae:bd:1d:57:3e:66:39:78:52:ec:
08:a1:e6:84:7c:c4:3a:33:d9:9b:35:87:70:50:52:
44:1d:c8:2e:be:d2:60:02:34:27:0d:2a:36:ad:55:
ff:a7:9e:7e:62:c8:9c:17:95:29:3c:fd:fa:ad:b4:
8d:e7:f3:b2:99:08:4f:72:63:73:f9:90:5e:14:de:
39:d4:54:12:3a:30:f5:98:ce:b8:61:bc:a9:6e:6c:
fd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D9:D3:B7:FE:ED:23:59:B9:22:AD:78:D2:EC:72:C1:2F:48:7A:93
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/JdnTt_7tI1m5Iq140uxywS9IepM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:14::/48
Signature Algorithm: sha256WithRSAEncryption
18:00:1b:e2:8a:1a:ac:03:ca:49:f9:9e:1d:bb:1c:10:fe:48:
1e:ad:12:f7:34:c6:21:4b:58:b1:b7:3a:18:3f:33:ef:87:35:
bf:55:88:e1:3b:ca:4f:42:70:51:46:d0:90:e1:54:5b:4b:10:
2c:7e:de:5a:c6:f0:d9:5b:c7:50:96:c9:ae:a8:0d:65:97:1c:
1d:b0:5b:3b:35:1a:b4:e0:5a:1d:55:c4:4c:0e:0a:d5:4c:6c:
ff:38:10:51:56:7b:fd:32:43:90:01:06:88:58:92:d7:ec:3f:
04:66:d8:3f:c2:bc:a6:e7:3d:b5:7e:57:29:3d:89:63:66:b2:
a1:5f:b5:82:1d:0d:62:c6:5d:54:91:90:ac:f9:6d:96:e9:36:
b8:56:21:a8:84:50:b7:8f:e9:83:9f:2f:c6:1b:78:9e:41:11:
28:81:ee:fd:99:3d:1e:58:6d:e4:0e:e5:ca:ff:ef:84:e2:77:
7e:35:2e:ea:00:cd:9f:ea:85:5c:03:31:36:96:31:32:b0:19:
65:fe:5e:96:27:08:fe:d0:35:d9:20:8e:6f:f5:e3:6f:b9:0c:
59:77:19:32:6c:f9:c6:eb:17:41:05:1e:9c:25:15:63:40:f8:
0c:95:18:f8:ca:88:51:1b:98:dd:0e:e4:17:48:52:12:86:c5:
1e:ba:12:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org