Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YyYPUrECYNr65gupshA1TuZZ5KY.roa
File: YyYPUrECYNr65gupshA1TuZZ5KY.roa (raw, json)
Hash identifier: zEKFrv02+H71Z2tQSvasmgWXAgSVfDnZHfOojvTpz6c=
Subject key identifier: 63:26:0F:52:B1:02:60:DA:FA:E6:0B:A9:B2:10:35:4E:E6:59:E4:A6
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C86
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YyYPUrECYNr65gupshA1TuZZ5KY.roa
Signing time: Mon 16 Nov 2020 06:14:02 +0000
ROA not before: Mon 16 Nov 2020 06:14:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:22::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3206 (0xc86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:14:02 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=63260F52B10260DAFAE60BA9B210354EE659E4A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:04:34:5a:a3:ba:f2:db:57:b0:f7:78:48:9e:
66:bd:8c:8e:ca:44:e8:7d:05:c0:05:62:d3:34:3e:
40:fa:7b:af:b0:33:82:29:75:30:8b:71:f0:bb:76:
cd:e2:12:ec:1f:68:39:e7:17:b6:bb:e7:b3:71:8a:
48:86:0f:6e:10:84:c6:a1:12:63:46:da:2b:8b:0a:
77:46:2c:c1:f9:a6:0a:b0:2f:cd:61:ec:6e:9a:de:
bf:4d:53:57:8c:bf:70:f2:e0:5a:ec:14:dc:34:75:
be:f7:8a:ae:69:32:f6:ab:bb:92:44:41:ea:e6:df:
e4:13:1d:ab:4c:78:97:22:1a:3e:f0:f0:6c:a1:60:
f5:1c:87:35:3d:18:fb:25:31:77:bd:5d:fe:21:f2:
83:c4:54:c0:80:a2:7c:11:23:4f:76:e0:32:72:5b:
c0:1f:e4:1d:4f:49:ec:fa:ac:2a:84:ae:8f:52:ab:
b4:e5:4a:0b:66:71:88:39:c2:6d:a9:81:85:b0:04:
29:c3:3a:23:01:be:84:52:20:5f:e3:28:dd:76:fc:
36:ef:16:35:a3:b8:f0:1b:d7:b1:2a:ac:0e:5d:03:
3f:80:95:f1:5d:5f:35:24:b0:02:10:d2:1c:4e:3c:
fa:c3:44:bb:06:36:44:59:ca:2a:be:7b:f1:63:44:
65:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:26:0F:52:B1:02:60:DA:FA:E6:0B:A9:B2:10:35:4E:E6:59:E4:A6
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/YyYPUrECYNr65gupshA1TuZZ5KY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:22::/48
Signature Algorithm: sha256WithRSAEncryption
09:1d:0c:ea:1f:91:b1:0d:9d:00:c3:af:23:29:06:1c:3f:18:
b4:31:84:93:55:73:af:01:3b:0a:f5:2b:df:a9:28:77:c5:c8:
01:e6:7f:75:35:6a:57:de:7d:28:7e:27:b9:53:e1:4b:fa:ef:
5d:94:c9:83:9a:cb:9e:7d:a7:3c:ce:9a:7f:42:fa:9b:95:b9:
93:7a:ae:a6:8f:e2:63:01:92:c7:9a:e3:59:05:f5:e6:93:47:
e1:6d:dc:f1:de:5a:8c:ac:cb:e5:79:45:cd:79:cc:31:f4:a1:
9f:be:88:f1:6c:95:2b:51:78:40:81:06:c8:7d:68:e0:25:c1:
ca:38:e3:cc:47:cc:19:fe:52:9c:66:00:f5:1e:14:59:0b:60:
b5:7e:36:2c:77:3d:7e:80:82:3f:a6:42:30:12:6c:e6:6c:66:
cc:5d:b9:ce:28:50:44:47:8e:47:87:a6:9c:7e:09:37:00:36:
0e:f9:84:09:c2:cd:d0:3a:db:ed:41:06:98:36:08:6e:a6:76:
83:71:9c:bf:85:5c:a7:b6:84:26:3a:e7:00:74:ba:9c:70:5b:
ee:d4:8e:f9:d1:6c:9b:a3:6e:9a:91:ca:94:15:27:69:64:ea:
97:b0:13:4f:c4:1c:76:64:35:3a:ec:66:4c:ce:4e:f5:ce:66:
d0:f4:ac:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org