Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_i8ON19dr16B72aLXDyyIRpYVxs.roa
File: _i8ON19dr16B72aLXDyyIRpYVxs.roa (raw, json)
Hash identifier: L1mgzNi0f+TdO6eBmcCQYwuiuL0mlHE7RbXpBffk5Dc=
Subject key identifier: FE:2F:0E:37:5F:5D:AF:5E:81:EF:66:8B:5C:3C:B2:21:1A:58:57:1B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE5
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_i8ON19dr16B72aLXDyyIRpYVxs.roa
Signing time: Wed 29 Sep 2021 02:56:16 +0000
ROA not before: Wed 29 Sep 2021 02:56:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 14618
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3813 (0xee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FE2F0E375F5DAF5E81EF668B5C3CB2211A58571B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:66:81:aa:fb:f3:80:4a:d5:6d:36:bb:be:c9:
a9:92:b4:07:66:0f:36:8d:21:fa:ab:6d:65:df:9e:
65:22:f3:01:1a:b1:02:99:f1:2d:3c:54:66:55:78:
ab:5d:4d:93:67:d9:38:fe:62:1c:01:7c:4c:00:b1:
6e:e6:4e:d8:d4:c0:73:06:1d:8b:a9:04:94:89:ba:
5d:33:8e:44:98:d0:cd:26:ba:05:44:39:96:c0:bb:
c0:32:4b:44:6a:9b:e0:b2:7c:94:d9:60:de:0b:da:
5c:84:ba:d9:99:c2:4a:ba:04:9a:4e:d3:e5:a4:25:
d8:63:7a:0b:f0:98:60:b5:5b:b6:32:14:be:4b:6d:
d8:f0:04:22:46:96:7c:45:d3:37:73:5e:52:c4:86:
00:14:00:23:32:f2:e3:3f:3a:25:84:69:89:51:7b:
80:e7:d6:66:4d:c8:10:2e:0a:82:73:aa:ab:ad:50:
fd:2a:ee:0e:5f:6d:a2:0b:e7:50:2d:67:13:d9:4f:
c7:c9:c1:45:cc:fb:58:31:0d:63:c4:c7:8f:f7:21:
25:6b:2b:47:c2:0e:13:05:3c:ca:74:f0:4f:3b:0f:
35:72:87:bb:71:25:6b:a9:1d:98:12:13:08:f7:a5:
0c:ba:5d:e1:9b:83:96:be:d9:81:a4:07:88:12:05:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2F:0E:37:5F:5D:AF:5E:81:EF:66:8B:5C:3C:B2:21:1A:58:57:1B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_i8ON19dr16B72aLXDyyIRpYVxs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
48:e2:07:75:2d:7f:61:2b:0e:23:ab:4f:45:ec:7c:25:9a:34:
a3:37:36:ce:ec:16:cf:d5:b1:27:51:11:ce:95:9e:36:37:7d:
99:93:2b:65:92:71:5c:e1:61:31:e6:27:d5:a6:da:59:01:ce:
9a:0b:12:6d:bc:0c:f1:69:b1:aa:21:45:0f:38:f9:28:0d:4f:
96:85:72:9a:50:0b:f6:a4:f0:54:62:cd:94:14:af:52:a4:79:
98:4f:21:a4:5f:9b:ce:2d:b1:83:81:13:0c:9b:26:aa:68:28:
71:6b:0a:12:44:7d:90:81:08:c6:c5:22:e7:9d:6c:b9:bc:3f:
6a:5b:15:af:ca:ba:93:5c:0d:0b:de:a5:b8:7d:3c:b1:7e:48:
08:4c:64:9f:4e:12:a3:cc:11:62:ae:56:f3:31:59:8c:f5:58:
78:f0:ca:ae:34:96:e5:82:e8:86:36:68:25:0e:98:de:45:66:
cc:b8:33:25:de:7d:85:ab:74:20:da:d3:ca:b0:88:cd:45:e4:
85:f3:81:ec:20:f5:4b:c0:d0:30:71:94:83:30:e2:83:83:47:
fc:b1:22:9f:74:f4:b4:84:1e:00:22:31:58:c7:a8:f8:a2:34:
18:13:1a:27:f5:4b:56:3a:62:bb:06:bf:54:d0:e9:46:d4:fa:
11:5f:5d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org