Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ljs4kl8PZqdQqCXYkwumcU2-lGI.roa
File: Ljs4kl8PZqdQqCXYkwumcU2-lGI.roa (raw, json)
Hash identifier: B8ae/tvoGQWyhz1sMI+fkrHogqE5cun26heVY4OhPiY=
Subject key identifier: 2E:3B:38:92:5F:0F:66:A7:50:A8:25:D8:93:0B:A6:71:4D:BE:94:62
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C41
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ljs4kl8PZqdQqCXYkwumcU2-lGI.roa
Signing time: Tue 10 Nov 2020 03:06:13 +0000
ROA not before: Tue 10 Nov 2020 03:06:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3137 (0xc41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 10 03:06:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E3B38925F0F66A750A825D8930BA6714DBE9462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:fd:cc:78:6a:f6:b7:12:84:02:d1:b7:57:
22:5b:25:5a:22:08:cd:e0:41:a8:56:7f:1e:eb:bf:
49:16:a9:dc:73:94:fa:d0:02:71:bd:44:d0:32:5d:
64:e4:96:63:07:d1:78:1b:29:5f:63:2d:3e:02:a7:
5a:02:78:bf:f8:01:1e:bd:4d:75:e9:52:c8:42:14:
db:49:65:cb:33:98:f0:fd:bd:62:51:d7:86:3f:37:
5c:b7:d2:ee:35:a1:47:e6:56:49:d5:f3:c2:8f:53:
99:92:66:36:61:f6:f3:71:da:c1:aa:0c:b0:42:f2:
b4:4c:a4:4e:fd:fd:b9:fd:f9:6d:2b:24:d9:ef:48:
75:f5:49:75:45:02:6c:5d:4a:b7:cf:9d:cb:82:33:
34:9c:85:85:41:bc:5f:db:db:d9:ec:06:87:2e:f2:
9e:a7:87:5e:bc:44:0f:a4:56:e0:f3:df:5f:5d:91:
cd:58:60:bf:89:f3:12:c9:e8:be:e2:a6:54:4d:e1:
6d:4f:d4:33:f9:4f:ad:9c:7c:aa:73:a9:74:6e:07:
b0:8e:25:52:e9:a3:f1:93:9e:b8:e0:b7:60:ee:77:
4e:ac:2c:c9:6d:4f:05:4a:8d:f1:ff:df:d2:47:0d:
7a:f5:0d:25:e0:3a:47:46:42:50:eb:d3:df:dd:25:
39:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:3B:38:92:5F:0F:66:A7:50:A8:25:D8:93:0B:A6:71:4D:BE:94:62
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ljs4kl8PZqdQqCXYkwumcU2-lGI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:3::/48
Signature Algorithm: sha256WithRSAEncryption
2e:df:5a:6c:87:9f:b6:6e:5a:86:99:f6:fb:88:eb:60:08:5c:
2b:44:fd:7f:4b:2c:0f:f4:84:63:fc:d8:41:80:a5:e3:20:79:
d3:dd:b9:b0:e1:ab:df:dd:f0:8c:ff:3c:73:2a:0f:87:4b:78:
ac:f0:d3:6e:a9:41:8f:7c:70:02:b3:6f:9e:77:63:62:2b:d4:
bf:17:26:42:e1:99:68:1e:f9:19:4b:66:a6:53:5b:92:17:f7:
13:53:1e:b3:52:92:b3:0a:ff:67:a9:f2:dc:1a:26:9f:7c:09:
5c:cc:0d:77:6c:23:32:9d:74:cc:15:c9:a2:ec:f7:db:4a:48:
af:d8:8a:09:fe:ea:e9:93:7a:8e:9d:77:d5:c1:46:68:e1:1b:
1e:d5:13:76:67:31:1c:a4:bb:8d:5c:bf:41:fa:91:d0:cd:74:
ea:fc:ff:77:31:9b:98:8d:7a:82:19:e8:28:39:b7:d8:b6:35:
cb:27:3d:0e:9d:94:36:5d:0c:f8:e7:00:9d:a9:4b:92:fc:9c:
a6:b0:f5:fd:95:fb:85:c5:9b:bc:33:ea:07:bb:50:b3:c4:b2:
70:c1:4c:53:fe:cb:17:2e:93:13:f4:5f:f7:3f:6d:d5:48:81:
ba:b4:43:0b:68:c4:7e:ce:60:1c:fa:3a:9e:df:b4:44:43:e7:
0b:a5:e8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org