Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SMonCcG8C1tKlW-iJNrH6i1-YFI.roa
File: SMonCcG8C1tKlW-iJNrH6i1-YFI.roa (raw, json)
Hash identifier: 34v+UzcGOJeSvUEDxvh286Ns+gBuR7FU8vNJz84JpPs=
Subject key identifier: 48:CA:27:09:C1:BC:0B:5B:4A:95:6F:A2:24:DA:C7:EA:2D:7E:60:52
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C82
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SMonCcG8C1tKlW-iJNrH6i1-YFI.roa
Signing time: Mon 16 Nov 2020 06:13:22 +0000
ROA not before: Mon 16 Nov 2020 06:13:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3202 (0xc82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:13:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=48CA2709C1BC0B5B4A956FA224DAC7EA2D7E6052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8d:cd:ce:bb:b2:ee:5f:f9:a3:e0:f9:76:a0:
5a:de:3d:64:cb:22:d2:5c:6e:4f:bb:fd:38:4f:35:
59:06:48:76:e5:1b:49:59:6b:8b:89:6a:c6:a4:b0:
c2:30:8f:4d:ca:60:6b:82:66:89:5a:ac:2f:97:ee:
8b:f8:b1:a8:e4:9e:d2:5e:a3:43:26:f7:24:6e:c4:
51:70:78:2b:cb:43:9c:89:e4:3b:cc:e4:ab:09:aa:
e6:12:5b:5d:87:fb:2b:e3:41:94:6a:57:7f:ca:f4:
b1:0f:fe:58:ce:7a:46:14:ec:98:f0:94:81:35:1f:
22:2b:e0:6e:ac:d7:e1:f7:19:92:42:aa:d3:f7:fd:
8a:d2:9a:48:05:e0:c7:82:dc:ec:72:f2:08:c7:3b:
7f:06:3d:3f:01:28:6d:be:82:d5:50:be:d6:f2:c1:
79:d6:58:46:81:6a:9a:d0:b2:2f:d1:b1:cb:3f:df:
b6:fe:51:3e:51:0e:32:c0:42:fa:13:92:7f:a8:8d:
84:61:b5:26:ce:28:d8:83:1e:9b:c7:73:95:89:c7:
1f:8c:ce:15:89:2d:39:7d:ff:e4:ad:1f:d1:d0:8a:
43:30:9b:82:dd:58:99:52:72:69:10:1e:9d:c4:18:
1f:c9:0b:fc:3a:ad:15:03:c1:ed:09:d9:68:4f:90:
5f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CA:27:09:C1:BC:0B:5B:4A:95:6F:A2:24:DA:C7:EA:2D:7E:60:52
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SMonCcG8C1tKlW-iJNrH6i1-YFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:20::/48
Signature Algorithm: sha256WithRSAEncryption
b6:c5:e4:fb:b4:61:6c:27:db:49:dc:b1:bf:fc:a3:74:e2:73:
cd:15:eb:5b:02:19:2a:72:f5:0f:e9:a4:d5:8c:94:0d:eb:19:
b0:0f:5d:8c:cf:59:c2:b0:f8:f5:ab:dc:5c:ef:d9:cd:d1:c5:
60:94:bf:04:7e:fc:e3:29:ff:74:41:5e:97:d3:52:53:01:b1:
e0:4b:d7:13:3c:cc:76:3f:aa:87:b7:11:22:4d:76:47:93:30:
b5:95:08:fd:d0:00:89:d4:9f:06:6c:7c:4e:43:64:4c:52:04:
8d:f7:3f:d0:e1:14:8f:a8:eb:a8:04:10:f2:b8:9f:5b:8b:c5:
99:15:9e:f8:a8:29:b0:70:c2:0e:89:7e:04:42:ca:4d:bd:cd:
48:40:ad:ce:ae:52:37:c3:7e:d4:03:2e:b9:01:7b:31:82:dd:
8d:12:b5:11:5b:f3:4e:a6:7c:ed:d8:df:01:8a:68:ec:18:ab:
8b:7d:86:16:71:67:1c:24:76:57:e6:7b:4d:2a:c5:f6:ac:42:
c8:27:6b:3a:fb:28:97:25:a2:da:4c:c5:00:1e:77:38:d8:ba:
95:2e:38:08:2e:1f:8c:f0:0f:09:28:86:42:e2:d8:ba:98:3b:
44:22:71:ea:d3:4c:d1:3b:9b:79:43:60:53:bc:6c:72:ae:4b:
a8:e5:bf:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org