Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/OrbL8fGMRRJYymoKrFCY_LDahGE.roa
File: OrbL8fGMRRJYymoKrFCY_LDahGE.roa (raw, json)
Hash identifier: RBHTI/rT9U19S+B9XGVQn959ITU4Ju5f/2alR2Cmaxs=
Subject key identifier: 3A:B6:CB:F1:F1:8C:45:12:58:CA:6A:0A:AC:50:98:FC:B0:DA:84:61
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C6A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/OrbL8fGMRRJYymoKrFCY_LDahGE.roa
Signing time: Mon 16 Nov 2020 06:11:17 +0000
ROA not before: Mon 16 Nov 2020 06:11:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3178 (0xc6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:11:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3AB6CBF1F18C451258CA6A0AAC5098FCB0DA8461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b4:b9:c6:74:fb:ea:bb:1f:bf:34:d6:a1:3f:
f3:b5:de:88:3b:47:b7:d6:ce:33:b5:d4:9d:79:4f:
23:16:7b:21:95:c9:e8:9a:1b:81:34:25:94:f1:20:
9b:ef:a0:f5:7b:27:5d:ec:97:ce:08:d7:02:11:c5:
f2:ae:d9:a4:e0:b0:02:5b:8d:d1:8f:9e:e6:d7:a0:
4c:be:fa:07:de:c4:10:a8:46:76:85:ea:e1:7d:fd:
94:d0:cb:00:a5:8c:81:2c:fb:26:10:28:69:2d:c6:
79:68:33:08:36:de:aa:cc:d8:fd:5b:7d:82:db:17:
bb:b2:ed:24:dc:11:1d:c7:19:0b:0a:ea:27:cf:84:
b6:1b:aa:42:ce:4d:40:e8:14:a8:ee:84:48:00:cb:
f5:3e:2f:2f:1d:d7:74:d5:d4:1a:35:e1:69:17:f5:
df:3e:4f:d7:ea:fa:4d:22:52:81:df:cd:1c:7f:3e:
b4:c3:81:dc:69:70:f6:a1:5e:41:88:f6:07:27:dd:
58:5d:4c:bd:9a:80:6d:44:cd:78:d9:5f:92:68:e4:
b5:7c:a8:86:40:7f:67:83:45:66:7d:72:14:57:91:
56:61:99:8e:b1:fd:06:51:d9:7e:dc:35:db:ba:c4:
f7:0f:cd:4b:74:23:3a:fe:ef:ef:ac:4a:d3:a8:73:
71:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B6:CB:F1:F1:8C:45:12:58:CA:6A:0A:AC:50:98:FC:B0:DA:84:61
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/OrbL8fGMRRJYymoKrFCY_LDahGE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:8::/48
Signature Algorithm: sha256WithRSAEncryption
9f:39:30:a9:0b:83:a7:75:e9:5e:4d:b6:de:aa:25:78:12:b9:
c8:ba:29:42:6a:8d:a4:de:5c:a2:cb:9f:f4:1b:24:24:aa:66:
6f:ed:c2:98:bf:82:9c:6a:71:bf:9a:08:39:b2:e9:1a:92:9f:
52:d0:a8:b8:f2:5e:e9:9e:3d:95:eb:a1:6e:33:20:e6:52:91:
d1:26:62:37:b5:6e:8a:20:53:7c:a2:5b:80:00:46:cf:bc:77:
d7:bd:f8:0a:ba:65:c2:7b:34:53:41:ce:7e:89:20:1e:63:15:
dd:7a:4a:46:c7:d7:22:a4:36:f2:44:a2:a7:76:02:71:06:dc:
1b:ba:11:5a:1b:ac:b5:76:11:d1:64:88:b0:24:12:97:8e:87:
ba:14:d5:01:79:92:13:b5:bb:e5:21:85:19:01:f1:39:d2:b1:
9b:22:a4:9b:21:8a:51:53:aa:4d:3c:70:53:6d:4b:d2:da:99:
40:de:a2:e9:0c:31:0d:8b:73:f1:be:87:bc:0d:e0:33:90:50:
d8:8d:26:f1:cf:98:58:f8:f7:17:64:87:a2:fc:39:9d:92:4e:
a8:bb:9d:e0:7e:85:ef:63:33:0b:c5:47:c4:e8:43:c9:b2:9a:
d5:ab:52:26:2c:36:e5:34:0a:aa:c9:38:3f:3d:97:0d:a0:39:
d3:d5:2a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org