Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QKycIJdfxTf4PYagKOBodqu0VmU.roa
File: QKycIJdfxTf4PYagKOBodqu0VmU.roa (raw, json)
Hash identifier: Ug/yHI9ZS1ya7c7CStd/geGtt1kKxxLPjnogpRrMY8w=
Subject key identifier: 40:AC:9C:20:97:5F:C5:37:F8:3D:86:A0:28:E0:68:76:AB:B4:56:65
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CB2
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QKycIJdfxTf4PYagKOBodqu0VmU.roa
Signing time: Mon 16 Nov 2020 06:49:57 +0000
ROA not before: Mon 16 Nov 2020 06:49:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3250 (0xcb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:49:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=40AC9C20975FC537F83D86A028E06876ABB45665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f0:7f:75:96:e3:96:36:1e:e2:0d:3c:3a:48:
da:7f:bb:9a:49:ad:4a:ce:5e:04:c7:d6:6c:30:40:
4e:d8:a6:1b:bc:d9:81:d3:3d:32:7a:7f:84:fc:19:
9c:87:bf:08:52:44:73:74:79:37:46:e1:ad:cb:14:
8e:9d:a7:65:25:df:60:16:d9:b1:91:f3:5c:ea:6d:
50:c6:73:0b:f0:7a:1f:af:22:9a:dc:2e:11:90:84:
fb:4e:97:b2:80:11:db:9a:0f:67:af:27:e0:12:fe:
db:e3:33:41:7a:60:20:03:bf:11:f7:5a:b1:85:a6:
dd:81:9d:d3:9a:a1:ee:6e:fe:d1:ea:53:d5:35:ee:
2d:8d:36:14:c7:5b:63:7d:e0:81:b9:7f:b0:28:b9:
4b:51:62:b2:a9:49:c2:f1:7c:18:c6:9d:06:b3:04:
e4:2b:89:4e:60:a3:0d:66:6b:68:11:57:a2:2d:f4:
72:1a:ca:bb:a5:8c:48:eb:ba:b7:de:d5:6f:d3:b6:
fa:4f:e4:a9:8f:07:44:19:6c:c6:e1:2b:cc:cd:29:
18:b7:de:09:8d:6b:62:2d:ef:40:8c:da:4d:b1:74:
13:61:33:8a:83:b6:00:ff:94:f9:e8:3f:55:a6:58:
9a:d3:66:d2:bd:7a:22:86:86:28:bc:82:1f:c7:22:
4a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AC:9C:20:97:5F:C5:37:F8:3D:86:A0:28:E0:68:76:AB:B4:56:65
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/QKycIJdfxTf4PYagKOBodqu0VmU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:44::/48
Signature Algorithm: sha256WithRSAEncryption
aa:bd:15:47:c0:b0:0c:b8:18:8b:f9:bc:1e:7c:64:22:a6:a6:
f9:76:67:30:ec:d2:60:49:94:00:60:30:ac:e3:45:18:71:62:
c8:14:d0:00:ec:d0:b7:3c:6c:13:94:1f:61:d0:ce:a5:62:8f:
25:52:2e:49:aa:94:9f:51:3c:aa:30:ef:8e:82:9b:45:de:f4:
9a:fa:85:a9:59:ca:57:5e:61:73:31:a4:ef:7e:52:e4:58:60:
6c:cb:6d:59:b2:79:51:ce:33:04:dd:b9:98:50:24:35:9d:28:
94:f4:b7:78:1b:ad:aa:24:78:ec:55:2c:86:c6:53:05:5d:30:
dc:f2:34:e2:66:8f:5e:59:d3:92:30:7e:d2:6d:a8:34:d7:55:
31:20:f7:71:08:8e:96:83:2f:3f:a8:ca:a8:b4:be:7d:87:05:
5f:05:06:6c:8e:a4:37:67:e5:07:22:1c:ea:b9:19:72:b8:83:
ca:96:65:06:3c:8b:6a:1d:08:42:bf:17:2a:5a:32:9d:d5:53:
c1:fa:99:96:40:1c:32:1a:fa:4d:b6:34:d4:cf:32:db:44:16:
9a:12:68:49:3f:71:e2:bf:52:6f:2a:1e:23:d2:25:7f:6b:0c:
84:c3:d4:84:d0:01:bc:57:1f:91:a0:69:9e:7a:9b:3b:4f:3b:
ca:a0:5b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org