Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/abaWZ2l0jkuy4d1ajQKHUxjYN7M.roa
File: abaWZ2l0jkuy4d1ajQKHUxjYN7M.roa (raw, json)
Hash identifier: s7Cqksi07rlVfVDm+ptj+TnRkKnW/opI0lcLYJailhQ=
Subject key identifier: 69:B6:96:67:69:74:8E:4B:B2:E1:DD:5A:8D:02:87:53:18:D8:37:B3
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DD5
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/abaWZ2l0jkuy4d1ajQKHUxjYN7M.roa
Signing time: Mon 23 Nov 2020 07:24:04 +0000
ROA not before: Mon 23 Nov 2020 07:24:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3541 (0xdd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:24:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69B6966769748E4BB2E1DD5A8D02875318D837B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4b:ce:79:de:60:d1:25:5f:19:e6:da:41:ba:
97:72:da:ee:07:7d:32:d6:37:e7:f7:9e:22:c9:9a:
00:15:ad:86:25:8a:6e:67:64:5c:b9:80:dc:3d:e7:
1c:2e:dd:66:16:73:5f:24:ea:e3:86:bd:61:0a:ea:
d7:ed:b1:3d:93:0e:eb:54:59:1c:c9:2a:96:6d:fc:
b5:16:18:a3:3b:9f:c0:46:43:15:6c:cb:f4:b0:5c:
c0:1b:db:18:ac:b6:80:62:b9:92:54:d9:09:af:49:
b1:34:f1:0c:0a:94:45:0e:b9:7a:2a:fa:ae:5e:a4:
50:05:d0:fc:83:d6:c4:d6:3c:fb:aa:d5:06:a0:12:
f8:09:92:c1:a5:05:a1:31:c1:f3:22:47:60:0a:db:
77:c1:3c:a7:de:5e:b9:44:47:5f:ea:7c:8c:52:d9:
68:cf:1a:15:64:ea:84:b8:9a:78:1b:09:91:da:19:
96:54:27:47:a8:ab:13:5e:98:2b:16:58:ab:bd:00:
43:e0:d3:e4:68:98:26:bc:4b:30:c6:46:42:bd:4c:
d3:a5:4f:37:b7:a2:18:44:7e:70:0a:3a:78:a0:09:
b7:b1:05:f9:8c:e1:df:d8:ee:81:be:57:54:31:38:
6e:69:60:dc:cd:90:ef:19:fa:98:a7:25:ff:a4:19:
81:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B6:96:67:69:74:8E:4B:B2:E1:DD:5A:8D:02:87:53:18:D8:37:B3
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/abaWZ2l0jkuy4d1ajQKHUxjYN7M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:16::/48
Signature Algorithm: sha256WithRSAEncryption
09:44:34:cc:4d:29:7c:f3:fd:c5:7b:69:82:70:31:ea:4d:f6:
eb:91:ed:45:5a:c6:bd:61:a7:f7:44:7e:d7:86:aa:d5:3f:e1:
d3:7f:af:7c:5a:a7:37:b0:c6:9d:eb:9e:2c:3e:f6:5f:ac:9f:
38:cd:e1:24:c0:2d:e3:03:94:82:8c:b0:05:dd:f1:4a:c3:94:
24:db:65:ca:d5:b0:ba:51:b3:a2:6b:b6:e5:2c:a0:d1:94:2b:
31:8f:31:b3:64:51:8d:79:b0:f5:a7:94:cc:e2:c4:77:f0:1c:
28:b8:ab:d6:b5:b4:96:4b:99:ec:ed:5b:c2:0c:ea:a1:ef:0d:
c6:83:e0:20:53:fc:fd:c8:17:97:e4:a7:65:c1:73:fe:67:7c:
1f:01:09:5a:f4:0b:3b:d7:8f:76:40:da:48:ae:ea:52:da:19:
af:8f:76:6d:7d:48:9d:03:a2:17:82:70:6f:2a:7e:fe:b7:d2:
1d:94:2a:ce:27:a9:87:ae:cb:8e:e4:bc:8c:1e:e3:d7:9f:a1:
2c:15:2a:32:f4:26:56:f4:7c:3a:08:87:af:47:be:95:86:9b:
4d:02:bf:df:03:76:0d:3c:24:51:0b:16:62:34:23:ca:1f:4f:
2c:49:9f:2b:6c:1d:63:3f:f0:15:7b:e9:83:b1:f9:db:a3:56:
01:4c:34:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org