Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/db8NUkIEgehGQDPsQx4ESGmBwOg.roa
File: db8NUkIEgehGQDPsQx4ESGmBwOg.roa (raw, json)
Hash identifier: vxxFmsDTc3LJdo4T3jJmI/Y0BeCVYHUnTKJH1AMWjIE=
Subject key identifier: 75:BF:0D:52:42:04:81:E8:46:40:33:EC:43:1E:04:48:69:81:C0:E8
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C88
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/db8NUkIEgehGQDPsQx4ESGmBwOg.roa
Signing time: Mon 16 Nov 2020 06:44:50 +0000
ROA not before: Mon 16 Nov 2020 06:44:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:23::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3208 (0xc88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:44:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75BF0D52420481E8464033EC431E04486981C0E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:fa:33:21:a9:af:44:c5:83:33:6f:b5:e1:
6e:6b:f5:77:8f:b6:2b:63:f9:7c:d4:91:47:88:bd:
c9:3c:31:f6:10:e2:5b:58:31:2e:d2:b6:49:4e:a0:
bb:f0:6e:91:98:23:98:ec:f5:17:f3:e5:6e:2f:f5:
86:1c:7f:dc:92:4c:2c:8f:f3:60:9c:d8:b0:25:ab:
b3:37:94:41:07:8f:89:1b:25:65:4e:a7:bf:b1:11:
12:6c:03:34:17:29:9a:38:f2:2a:09:b4:7c:8b:21:
9d:a5:b6:84:a4:b5:82:77:ed:dc:28:01:38:88:cc:
ea:9e:94:d3:fb:f0:fd:df:d4:c4:56:70:43:e6:27:
20:66:be:29:77:38:4d:fb:79:34:1c:d6:41:bd:66:
ca:90:58:7f:9f:e0:60:e4:20:e2:31:5a:2b:7a:3c:
68:da:71:07:a7:1c:44:76:58:4a:47:c4:d7:46:68:
70:a5:88:78:a1:e1:94:3b:5d:ff:60:e3:12:6f:23:
fe:88:3d:3c:80:08:f8:13:7d:89:c5:9d:57:7f:48:
28:57:57:74:ef:e5:fc:8a:81:3d:a0:2f:f8:36:ca:
dc:5d:92:88:87:ad:e4:b5:c6:a6:87:5f:b6:16:92:
db:60:c3:9d:69:c3:c3:f0:31:c1:3d:fd:f9:31:e6:
99:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BF:0D:52:42:04:81:E8:46:40:33:EC:43:1E:04:48:69:81:C0:E8
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/db8NUkIEgehGQDPsQx4ESGmBwOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:23::/48
Signature Algorithm: sha256WithRSAEncryption
15:28:a1:20:e6:e5:b1:00:c2:5e:63:ce:01:0b:9d:46:be:b4:
1e:25:69:06:59:1f:f5:11:d5:fc:cb:38:b3:5e:0d:08:2a:62:
74:d5:20:92:63:1e:df:1c:b8:05:9a:00:0a:a6:53:d0:0f:7c:
22:b8:c8:4b:a7:36:b4:b8:4c:ad:11:ce:eb:80:2e:82:51:3f:
73:7d:60:8d:28:aa:51:18:99:73:d2:5c:24:99:6b:78:be:b5:
c8:2f:1b:4e:4f:8e:21:07:cf:2f:c6:7d:6c:52:e5:39:74:5f:
ab:45:a1:f7:5c:1d:b2:93:23:e8:bf:d4:b8:61:c7:a1:5f:7b:
ae:af:ca:67:2d:1b:8b:65:72:8b:0a:48:20:01:32:c1:cf:05:
ea:56:23:17:87:0c:63:35:1e:99:9b:dd:79:13:11:ca:6f:c8:
fb:55:57:b2:84:6f:88:75:27:5f:f9:0d:0a:19:57:1a:d4:74:
d3:a7:d1:79:24:d1:89:fc:40:58:88:d8:8e:0a:87:68:91:40:
ba:a6:85:2e:fb:08:c1:5f:3e:11:b3:15:8c:88:6b:e8:04:3d:
a8:b3:a4:76:21:11:f5:25:1e:32:d6:04:50:9c:d9:a5:4b:26:
63:f3:76:4c:66:da:d9:63:a7:b3:19:b6:6e:98:66:8c:54:6c:
8f:b2:e4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org