Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aNlZWr6S4tCdiIwLPbqo4D_nMf4.roa
File: aNlZWr6S4tCdiIwLPbqo4D_nMf4.roa (raw, json)
Hash identifier: m+YjMTAO1e4vdyvG6a5Phyf8BYQW0KZPLQSMqDKvcM0=
Subject key identifier: 68:D9:59:5A:BE:92:E2:D0:9D:88:8C:0B:3D:BA:A8:E0:3F:E7:31:FE
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 07A2
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aNlZWr6S4tCdiIwLPbqo4D_nMf4.roa
Signing time: Tue 29 Sep 2020 10:07:18 +0000
ROA not before: Tue 29 Sep 2020 10:07:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 2001:de4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1954 (0x7a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68D9595ABE92E2D09D888C0B3DBAA8E03FE731FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:18:26:09:8e:69:4a:c2:45:29:ee:fa:83:e6:
79:59:de:42:e9:95:f6:91:42:c0:fa:38:7c:15:87:
d6:11:a2:71:3c:be:12:9b:c3:03:36:73:9f:98:99:
c6:65:07:78:98:71:c7:5c:4b:06:ca:cc:13:d9:02:
20:5e:84:45:db:5c:c8:c5:4d:a7:f8:bd:02:41:34:
06:dd:cf:33:39:b8:06:9b:ad:2f:26:08:02:fe:9d:
2b:2d:f3:ca:41:aa:39:6a:2b:d2:e2:1b:e6:50:02:
3d:70:e9:96:2d:63:33:93:f3:04:b2:9f:c2:c9:8b:
c0:a5:6a:ab:04:1b:31:9e:78:80:03:22:46:91:b1:
c9:62:f4:34:cd:f9:75:03:66:7c:3e:44:25:a1:6c:
d2:77:85:30:60:fd:d0:af:8f:32:42:b1:33:c2:75:
0a:fc:d4:08:03:8b:f2:33:b3:dc:db:11:4f:86:4d:
33:ff:2b:e1:61:43:69:67:0b:8c:de:bc:d8:fb:c7:
af:5b:07:6d:ee:17:1e:c8:4c:99:e7:c1:db:25:df:
a5:00:d0:a7:c1:4f:2f:b1:96:6c:da:86:cb:00:53:
bf:5c:14:ee:3d:68:f1:1b:60:4e:f1:71:6b:1d:8b:
88:f8:a7:f3:cb:61:02:df:8a:a7:da:46:63:cf:ea:
3e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D9:59:5A:BE:92:E2:D0:9D:88:8C:0B:3D:BA:A8:E0:3F:E7:31:FE
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aNlZWr6S4tCdiIwLPbqo4D_nMf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:de4::/48
Signature Algorithm: sha256WithRSAEncryption
a1:6e:20:0a:6f:26:70:05:79:87:4d:fa:a4:6b:80:a8:15:3d:
63:d9:1d:4c:01:3e:d1:0b:91:52:44:43:d0:07:df:12:e3:83:
f8:11:72:e4:4c:f9:00:cf:03:91:6c:90:3e:43:dc:ca:28:9b:
53:9e:98:ae:c6:97:9a:46:58:1a:1e:4f:6f:98:6f:56:aa:00:
9e:56:82:12:a6:0e:18:8a:f4:ff:bb:b8:9e:68:74:5d:c1:87:
90:46:d4:02:ec:80:79:7f:7b:f4:e8:6a:d3:a9:2e:da:d6:72:
25:b3:ee:ee:9c:f0:95:95:87:67:d6:d8:9f:1b:72:3f:9d:70:
b9:ab:a1:b2:bf:72:65:33:56:5d:e0:63:cd:79:c0:cb:42:23:
31:ae:cd:69:f6:02:8c:e0:0a:91:ad:d6:fe:43:7e:13:e2:32:
35:bb:a5:c2:ae:3d:5f:75:d1:cd:95:2e:19:30:7a:58:91:54:
f0:a5:1c:9a:df:41:0b:a6:b0:05:ed:98:02:87:17:51:72:34:
6e:1e:4f:8a:90:3b:c5:a7:72:3e:90:aa:a2:82:b9:c2:6e:1b:
9c:5f:9b:5e:cc:2a:dd:05:cf:63:82:7f:2b:06:3f:60:9c:c5:
6e:04:1a:3c:20:89:92:9e:48:24:69:1e:70:a7:ee:38:45:c5:
ca:d0:6a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org