Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/W30M2YZINb1pyxplSjINV5VpYF4.roa
File: W30M2YZINb1pyxplSjINV5VpYF4.roa (raw, json)
Hash identifier: K/CdsW7zJtDAGywKK/AUPBeMfK8wF/s5yJHvZK1D4eI=
Subject key identifier: 5B:7D:0C:D9:86:48:35:BD:69:CB:1A:65:4A:32:0D:57:95:69:60:5E
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 108A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/W30M2YZINb1pyxplSjINV5VpYF4.roa
Signing time: Thu 13 Oct 2022 08:52:20 +0000
ROA not before: Thu 13 Oct 2022 08:52:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131621
IP address blocks: 2001:de4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4234 (0x108a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:52:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5B7D0CD9864835BD69CB1A654A320D579569605E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6e:a2:5f:9c:ba:1a:47:a1:63:f9:7d:3c:72:
01:51:d4:99:d9:20:40:59:c0:88:b4:9b:cd:c2:40:
b8:8e:f2:d3:e9:9a:49:41:b0:00:ae:84:fa:34:72:
f8:f3:ef:19:29:f7:11:63:90:b9:07:bd:1c:05:61:
85:c0:22:76:13:f9:8c:d3:1c:fb:27:ca:eb:a5:57:
91:32:d2:8a:05:b8:62:43:55:f9:f1:21:71:d3:a2:
1f:1b:3a:f6:aa:41:a2:3b:58:b0:34:b8:f1:b7:ec:
32:34:40:8a:d1:66:19:26:e5:14:f3:ec:51:f6:d2:
16:40:ce:00:d5:a0:a1:13:30:0a:bb:da:e8:b1:c8:
90:b9:3f:24:ab:94:af:3b:c4:54:f4:01:ad:b5:5b:
8c:8e:0a:86:7b:f9:72:e2:7d:79:1d:bf:f5:8d:9a:
37:1a:a5:29:32:9f:fe:b0:b9:59:a7:e7:45:f0:16:
e5:7d:dd:49:4c:47:27:46:5d:8f:69:02:e8:08:c4:
55:d7:e6:fc:1d:46:ed:23:17:2f:a0:b4:58:66:28:
b6:17:c3:4c:6a:64:9b:13:18:b2:ba:c6:4a:df:67:
bd:87:93:8d:2a:92:3f:47:5c:ed:b5:6f:09:8b:a1:
e7:06:52:70:16:ef:ba:7f:b6:30:d0:e1:4d:8c:48:
8e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7D:0C:D9:86:48:35:BD:69:CB:1A:65:4A:32:0D:57:95:69:60:5E
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/W30M2YZINb1pyxplSjINV5VpYF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:de4::/48
Signature Algorithm: sha256WithRSAEncryption
66:44:69:ec:2a:34:82:4d:92:be:11:1c:2e:eb:72:57:28:fa:
44:bb:5f:75:ff:f4:43:6e:8c:1c:e1:d0:e6:13:68:4e:65:3a:
4e:6b:e5:da:ca:bc:82:2e:03:42:0b:b5:47:d3:70:bc:8a:f7:
b1:62:1a:c1:64:f7:01:5e:71:09:2c:4c:5c:ac:78:a0:91:d4:
29:9a:17:4a:6c:15:42:d2:f2:84:d2:a1:4e:5c:7c:13:ea:8a:
ed:66:a0:85:f9:dc:1b:de:da:f0:5c:1c:41:63:43:a5:f9:83:
28:b0:09:f2:bd:4f:0b:1b:bf:5b:3c:2f:93:fd:d5:0e:4f:1b:
e0:ec:af:39:a8:b5:05:4c:84:70:e0:20:c0:04:13:0f:29:49:
86:39:c9:d0:3a:92:cc:72:90:dc:2c:39:65:8c:d9:16:f1:22:
dd:b1:cf:d8:f6:60:dd:82:fd:27:e3:47:2e:ce:70:f2:0c:0a:
e5:93:da:92:3e:ed:d7:ee:fb:5e:22:e2:02:65:52:03:83:aa:
d9:d3:ae:ad:53:05:40:0c:55:1e:c8:ac:38:05:93:fe:85:ed:
7d:f9:9f:4c:ef:ad:30:17:79:5e:be:8a:9f:93:44:e8:a0:52:
d5:99:fb:fd:94:94:08:c7:8c:35:89:b5:51:42:fe:c9:f9:7a:
a9:f9:1b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org