Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Yt1hZpS_ZAwOQ373q7mHvMbIVnI.roa
File: Yt1hZpS_ZAwOQ373q7mHvMbIVnI.roa (raw, json)
Hash identifier: ZAC3tK4fjaoj33hNCbrgJ5c+VLVHA4FnwV0aVvF1nQ4=
Subject key identifier: 62:DD:61:66:94:BF:64:0C:0E:43:7E:F7:AB:B9:87:BC:C6:C8:56:72
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C7A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Yt1hZpS_ZAwOQ373q7mHvMbIVnI.roa
Signing time: Mon 16 Nov 2020 06:12:44 +0000
ROA not before: Mon 16 Nov 2020 06:12:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3194 (0xc7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:12:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=62DD616694BF640C0E437EF7ABB987BCC6C85672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9d:16:c8:89:49:8c:69:4f:96:0f:ec:91:5c:
61:18:e9:21:54:78:2f:92:d7:35:e7:91:ca:67:f8:
39:b2:15:ba:b5:c3:e6:a2:3d:4e:b5:57:e5:fa:d9:
cd:08:e5:30:31:27:79:e5:c4:b3:40:dc:15:7c:33:
19:b9:58:78:c0:61:23:dc:19:96:ab:65:47:1c:38:
49:c0:79:e5:97:01:32:eb:a5:f7:3a:1d:14:47:03:
d7:91:85:ff:7e:3f:74:f7:05:63:b6:98:d0:8a:54:
6b:38:3d:76:9e:ac:ae:55:b5:77:84:aa:6d:5b:ae:
12:bf:e2:a4:2c:d5:3e:22:94:08:55:e9:9d:b2:55:
7d:d7:71:6f:84:db:ea:a9:9d:21:c4:b3:b3:d8:fd:
3a:0b:3a:98:37:bb:f0:3f:70:21:f6:72:c7:d6:34:
a7:23:8e:77:8d:c2:2c:e6:7a:96:ca:a4:0f:6a:b0:
63:21:9d:1a:6d:57:61:34:ec:d3:40:40:fd:a1:9a:
64:d8:ec:53:1d:4a:97:d5:34:3b:e4:f5:0a:75:7f:
e3:0f:fb:28:eb:6b:3e:db:83:78:1b:af:0d:be:5f:
5f:0f:7d:7d:f6:72:ce:4a:28:6e:22:bc:48:8a:38:
f9:3f:48:60:6b:0c:15:b6:3e:2e:fe:89:22:a9:7d:
b1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DD:61:66:94:BF:64:0C:0E:43:7E:F7:AB:B9:87:BC:C6:C8:56:72
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Yt1hZpS_ZAwOQ373q7mHvMbIVnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:16::/48
Signature Algorithm: sha256WithRSAEncryption
65:ae:39:23:27:57:38:83:31:e4:a4:f8:5b:f4:71:2c:8d:b6:
36:75:49:b1:87:41:63:d0:83:63:db:65:c9:82:33:ca:1e:dd:
f0:84:2c:d2:ac:cd:7f:c2:81:a9:0a:c8:fb:51:ea:16:f5:2a:
29:a3:11:a4:93:e6:a3:bf:5d:6d:1b:69:8e:d6:63:f7:76:fc:
35:56:51:09:79:97:15:64:40:ee:fc:d5:7e:79:10:d8:5c:bd:
b5:30:c2:25:48:5d:03:12:a7:fd:a7:bf:f1:42:a2:c8:ca:70:
2b:35:7e:47:86:0d:b4:04:88:cb:39:b9:58:6a:08:58:ca:92:
cd:68:ba:b7:86:3c:ba:ef:15:8f:be:b1:57:e9:87:2c:5a:03:
ab:8b:ef:8e:43:da:74:7b:7d:cb:cb:db:a4:bb:f2:6a:a8:b3:
64:0c:3a:fc:6e:14:0a:70:16:78:5c:4c:95:c8:3a:4a:3d:2b:
c0:a3:b2:0b:6e:3c:95:d7:d4:e8:65:05:b7:e4:dd:11:68:c5:
03:ee:ea:95:4d:dd:9e:67:4c:99:1e:b6:b6:9e:87:b9:24:14:
99:f3:dc:29:26:1c:6a:e7:52:b9:4f:07:68:3c:f6:b5:3a:c5:
c4:a9:2a:9d:1e:06:4a:b8:c9:92:8f:46:de:aa:88:ea:cb:bb:
55:44:7d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org