Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UQpHfLqT7yFmByf49LXleW3DCI0.roa
File: UQpHfLqT7yFmByf49LXleW3DCI0.roa (raw, json)
Hash identifier: lB/Ov4frerCn7LuC+nYFLhIrJcKVrIqlvOn8VwyuiVs=
Subject key identifier: 51:0A:47:7C:BA:93:EF:21:66:07:27:F8:F4:B5:E5:79:6D:C3:08:8D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 104C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UQpHfLqT7yFmByf49LXleW3DCI0.roa
Signing time: Thu 15 Sep 2022 02:37:10 +0000
ROA not before: Thu 15 Sep 2022 02:37:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 15 02:37:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=510A477CBA93EF21660727F8F4B5E5796DC3088D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b8:ad:19:aa:13:f7:e9:cd:65:fc:9d:00:a8:
64:24:7a:cc:f5:c6:b8:e7:aa:90:95:cc:09:06:bb:
14:bf:71:cc:e6:c0:e2:f0:cb:d1:31:54:72:73:05:
c0:ed:d2:60:9e:6c:c7:18:ba:4c:36:b6:1b:f6:9e:
5a:4f:37:72:37:c3:73:f2:9d:eb:50:f1:35:d6:60:
ab:e2:8a:01:f3:99:ce:6a:69:81:31:2c:c7:b8:0e:
d3:2f:a3:20:55:f3:e1:c3:ac:41:dd:37:9e:5e:8c:
5b:79:50:5a:8c:a8:ad:71:4a:72:1e:cd:57:ca:7d:
d3:42:22:02:77:f1:69:50:ea:58:39:a4:66:87:2a:
99:c5:4d:0e:ab:c4:b4:f4:6f:b7:32:00:1d:3c:7b:
cb:7e:38:36:f3:48:68:0c:b3:2b:18:b2:8c:6d:d7:
4f:34:f2:c2:31:76:82:df:d9:f8:99:e3:c7:b2:ae:
9d:9c:47:14:1b:28:7c:b6:cd:3e:38:00:10:20:40:
18:ee:57:da:b6:cc:c7:4a:35:2d:34:b8:6d:f8:b5:
bb:94:db:7a:5a:9d:59:7a:72:cf:91:2c:5a:14:f3:
df:af:a2:d1:fd:99:59:6a:40:64:2e:cd:29:58:c1:
fb:69:33:f0:d7:1d:09:23:fa:a0:16:97:1c:8d:47:
1b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0A:47:7C:BA:93:EF:21:66:07:27:F8:F4:B5:E5:79:6D:C3:08:8D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UQpHfLqT7yFmByf49LXleW3DCI0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
a6:2c:0c:24:2b:49:79:96:03:e9:7a:af:23:4d:b4:cf:7c:35:
9f:d9:b2:30:c1:cc:be:af:e7:39:9c:35:0c:44:f0:05:45:39:
9f:9c:af:21:f0:97:a9:3b:de:88:d2:e9:4f:6b:52:fb:22:0a:
24:c8:96:f1:9c:b4:84:ea:e5:d1:66:b0:1b:d3:9f:2a:56:1f:
1c:67:1c:2f:e7:a3:6c:c6:10:ad:27:d8:80:a0:bf:8a:34:98:
7d:d6:b5:96:23:6e:96:53:31:be:07:b7:bc:0b:1e:b4:9b:0c:
83:28:e8:bb:b0:26:27:12:0f:2c:0d:b4:7e:b3:bc:20:ef:61:
74:c9:01:cf:0d:47:fd:58:ea:57:5f:fd:2b:9b:a0:bf:47:cc:
c6:0f:3d:68:e2:a7:b1:30:3f:b6:4c:88:71:95:8a:b8:67:49:
67:25:65:42:8f:65:3b:4e:1a:ab:1a:ed:8b:ee:04:a1:d0:53:
a7:b9:95:d3:02:4a:0a:4f:0e:c2:c0:c3:89:cf:92:38:7b:d5:
e2:f3:82:9c:6a:7b:32:d0:f2:af:c2:ca:42:83:4d:79:4f:43:
7f:a6:d4:af:64:0c:80:2c:3d:d7:ea:f3:71:7a:56:97:01:16:
94:48:61:c0:66:e7:a4:fc:11:09:6b:df:6e:e1:e2:e5:84:ea:
d0:24:a9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org