Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hbz9uN8zteARQfN6g-OTN_L8rZc.roa
File: hbz9uN8zteARQfN6g-OTN_L8rZc.roa (raw, json)
Hash identifier: 49snfg/uC9+Yc4bBD3V0c6wT9zO+NHKvhx4dRhmCqmw=
Subject key identifier: 85:BC:FD:B8:DF:33:B5:E0:11:41:F3:7A:83:E3:93:37:F2:FC:AD:97
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DD9
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hbz9uN8zteARQfN6g-OTN_L8rZc.roa
Signing time: Mon 23 Nov 2020 07:24:21 +0000
ROA not before: Mon 23 Nov 2020 07:24:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3545 (0xdd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:24:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=85BCFDB8DF33B5E01141F37A83E39337F2FCAD97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fa:41:86:e3:7e:0c:00:ee:de:98:38:ba:44:
68:bf:c5:09:c2:9b:a4:d5:30:84:48:34:96:80:8b:
19:bc:43:70:84:1c:80:c3:82:d6:1d:c0:b3:2a:50:
93:5a:70:8d:88:8f:81:9e:83:fa:33:b3:ce:b0:e9:
86:cb:8f:5c:f1:c6:c2:5c:bb:63:0c:13:08:c4:f8:
fd:6a:b5:97:31:62:65:e0:d5:fa:df:c2:07:27:fe:
57:84:b1:9e:b4:a6:a3:18:75:51:1c:ac:38:5e:b0:
76:16:7b:39:93:b6:53:19:59:44:97:dc:38:00:87:
2c:7b:f3:b4:cc:c5:ad:3e:af:ab:03:f8:57:66:2c:
60:a3:07:f9:1c:45:43:26:96:a2:42:b3:62:cb:ba:
6c:6e:8f:e0:3d:15:c0:01:11:61:d3:21:27:9f:46:
40:6b:c5:93:21:2f:e2:4e:9f:9a:3e:bf:7b:87:4a:
27:77:54:3c:f7:80:a3:8e:64:01:8a:d9:9e:63:9c:
3f:e5:86:04:f6:67:39:40:46:d7:b1:50:9f:73:c7:
3a:57:82:5b:d2:fb:d8:1f:99:99:03:2b:17:71:56:
24:68:e5:4b:90:26:e1:02:fa:ee:f4:55:9f:73:44:
09:62:24:8c:b9:98:e7:a4:61:c6:eb:85:97:77:62:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BC:FD:B8:DF:33:B5:E0:11:41:F3:7A:83:E3:93:37:F2:FC:AD:97
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hbz9uN8zteARQfN6g-OTN_L8rZc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:18::/48
Signature Algorithm: sha256WithRSAEncryption
41:f8:9c:96:ec:c1:bf:44:56:af:8c:e3:b7:b7:6c:ac:03:d4:
ed:a3:72:65:3c:7c:03:aa:c4:f4:49:1d:1d:bb:b2:5b:03:47:
4b:8f:32:eb:5f:e1:ec:4a:b9:44:db:56:73:d9:0d:5a:56:66:
a8:3d:5e:7d:0e:af:e0:5b:55:1d:16:05:57:8b:fd:e8:b2:b1:
7e:56:42:a4:8b:58:64:03:be:f8:5f:62:00:b7:23:be:0a:6e:
1a:bd:2e:f0:75:62:c9:9c:37:58:b4:95:a8:59:60:46:31:75:
20:4d:3d:c0:cc:26:96:25:a9:10:07:64:08:bb:53:96:09:7d:
56:2d:be:13:cc:f8:aa:fe:70:46:f6:2b:fc:c8:d6:da:1c:a9:
01:f5:d2:00:b3:7e:33:b1:bd:0f:9e:ee:b9:9e:e8:69:2d:6b:
13:49:aa:39:ed:d9:e1:84:3c:8b:34:6d:b2:93:71:1f:64:1c:
d8:48:89:1f:11:75:7e:38:97:53:b2:17:52:e7:d9:97:90:7f:
3f:44:2f:7b:17:19:21:ed:89:e3:23:a7:86:b7:3f:58:7e:94:
03:92:a7:ed:58:d7:f6:c9:9a:b4:03:b9:24:83:5c:79:7a:02:
c9:75:eb:b6:c6:20:6a:c6:39:63:db:1b:6f:31:f8:a2:32:16:
67:58:76:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org