Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cw34o_8BOUFFLJLpUPgcgYG8ufQ.roa
File: cw34o_8BOUFFLJLpUPgcgYG8ufQ.roa (raw, json)
Hash identifier: 70O6ExbE5lxm1oagNUOF0xokAOCWiJTp7+hErB5dysY=
Subject key identifier: 73:0D:F8:A3:FF:01:39:41:45:2C:92:E9:50:F8:1C:81:81:BC:B9:F4
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CA4
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cw34o_8BOUFFLJLpUPgcgYG8ufQ.roa
Signing time: Mon 16 Nov 2020 06:48:48 +0000
ROA not before: Mon 16 Nov 2020 06:48:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:37::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3236 (0xca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:48:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=730DF8A3FF013941452C92E950F81C8181BCB9F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:61:9d:77:86:c8:8b:4a:4f:f4:74:e9:55:
37:6f:0f:23:06:ce:d2:4b:4f:39:47:32:d4:a3:1d:
b4:99:1d:33:95:bf:dc:0e:7f:aa:47:d5:38:08:d5:
d8:5e:74:8f:b4:c9:53:20:49:f5:91:38:21:33:62:
ad:d8:d9:e8:08:a5:c6:d0:76:d1:92:10:2d:23:4e:
c8:63:47:22:47:80:e1:b4:ae:c8:13:2b:78:e1:dc:
67:0b:67:95:de:90:ed:42:df:a3:69:1c:47:1d:12:
d4:6d:08:a1:ef:51:ed:c4:de:04:3e:f1:9f:10:bc:
ed:6e:a8:ba:26:da:c2:e7:2f:92:ad:73:43:64:7a:
11:ca:50:94:49:e6:9d:c8:6f:70:3a:17:02:c1:80:
38:72:b4:41:0f:4e:40:a0:77:0c:91:cf:1e:82:88:
08:b2:7b:0a:76:10:6c:81:98:0a:d8:98:14:56:fc:
7f:b2:5d:f8:d6:2c:ed:56:5e:1e:82:0a:4c:76:8f:
a7:f3:89:e1:b5:9d:50:d0:be:15:2a:b3:bf:8f:11:
df:71:ad:dd:e2:34:ca:74:17:81:d6:c5:28:29:03:
18:3d:81:22:b4:be:64:b2:a9:e7:b2:ee:6e:d4:fe:
f5:68:1b:5d:f1:c5:53:be:c0:1b:26:fe:fd:61:54:
e5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0D:F8:A3:FF:01:39:41:45:2C:92:E9:50:F8:1C:81:81:BC:B9:F4
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/cw34o_8BOUFFLJLpUPgcgYG8ufQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:37::/48
Signature Algorithm: sha256WithRSAEncryption
10:c2:b4:05:d5:d7:e1:a7:e4:fa:c1:f8:36:99:72:a7:f0:e7:
dd:19:f8:34:d1:c7:38:1d:c0:99:ad:2a:ad:30:c9:05:ad:9a:
bb:95:34:ab:93:7d:58:cf:05:4a:12:22:a8:88:d4:ff:41:aa:
87:a8:80:19:ab:d7:11:77:a8:bc:2b:38:03:6a:8e:a5:e0:e4:
8b:eb:c0:6b:e3:9a:df:e1:18:54:40:0d:69:5f:4d:0e:4a:17:
57:7d:ef:c7:f8:18:50:1f:5d:62:f2:cb:44:45:97:77:d0:61:
c7:b4:33:28:c1:79:e6:40:d7:da:fe:69:de:0b:50:1d:5e:56:
c1:d9:f9:de:51:24:af:f4:e0:93:20:90:b8:d7:b9:fa:c9:d9:
73:d4:64:e9:30:fe:1d:6c:d6:bf:c4:75:49:76:f7:0e:33:21:
46:17:06:55:19:9d:8c:92:45:ac:b5:f3:75:ac:3a:1a:47:98:
66:bf:a3:39:94:66:8e:ca:e2:0a:8b:7b:4d:ba:5c:d4:f1:8d:
46:eb:60:54:ce:07:d7:59:96:5b:26:4c:1a:15:0a:a9:b3:4a:
62:9d:ae:9d:6e:74:bd:04:2b:ee:c0:a1:29:40:65:03:40:49:
cb:96:0f:30:78:48:ff:41:58:9f:18:49:40:34:a1:ab:94:0c:
a7:e6:e5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org