Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ioW_bDTJxqU4MjAAQQs7GATtjRI.roa
File: ioW_bDTJxqU4MjAAQQs7GATtjRI.roa (raw, json)
Hash identifier: BwEnqLGOp06Q1+J2fLEbwQVacPKpNlRoFhN0SXMUv1o=
Subject key identifier: 8A:85:BF:6C:34:C9:C6:A5:38:32:30:00:41:0B:3B:18:04:ED:8D:12
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE6
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ioW_bDTJxqU4MjAAQQs7GATtjRI.roa
Signing time: Wed 29 Sep 2021 02:56:16 +0000
ROA not before: Wed 29 Sep 2021 02:56:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3814 (0xee6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8A85BF6C34C9C6A538323000410B3B1804ED8D12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9c:6c:eb:e6:bd:f3:72:41:85:30:d2:84:1f:
33:61:74:89:83:7b:b7:bb:8b:a2:66:9e:05:51:b7:
0e:10:5d:69:3e:25:ae:67:8c:c7:31:3a:07:f5:ee:
51:e9:5c:d7:41:4a:24:30:f6:f8:77:60:48:92:ef:
6e:d4:a2:e0:14:f0:78:b3:d6:2a:61:31:ff:a9:fb:
18:33:bb:c0:5a:2a:f7:c0:58:37:48:d7:cf:2d:64:
c6:41:e8:d7:35:c1:8d:47:14:98:da:41:f5:02:53:
eb:12:e6:61:f0:35:10:cc:97:3e:c2:a9:0b:2f:93:
06:b5:85:3d:b3:cb:58:c4:e3:18:ef:65:f2:3a:fa:
66:d4:c1:65:1d:5f:f5:68:c2:6c:fd:98:6a:8b:b9:
ab:ba:f7:59:f7:b9:52:0d:ec:b5:08:54:a7:ff:69:
29:41:6f:a1:34:24:97:bb:86:51:56:2c:12:fb:d3:
6a:63:fc:6a:5d:5b:39:ed:b6:5e:b9:a9:2a:a2:4a:
a4:c6:da:d8:a1:f7:e6:7b:79:f7:c6:65:46:76:ca:
e2:60:d2:03:41:74:c0:af:c2:f7:38:d9:b2:33:38:
cd:0a:88:03:66:ba:dc:e4:d6:11:67:ff:8a:4c:5a:
4b:45:e8:c2:f9:1f:15:a7:ba:c9:7c:3f:be:d4:b3:
ae:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:85:BF:6C:34:C9:C6:A5:38:32:30:00:41:0B:3B:18:04:ED:8D:12
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ioW_bDTJxqU4MjAAQQs7GATtjRI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
b3:a7:44:e7:f0:90:b1:8f:52:b6:0f:a6:4c:d0:8d:11:df:60:
a9:fe:ec:bc:7b:96:29:5f:94:4c:f0:b5:be:d4:6a:c2:fc:f6:
a9:f5:4d:59:a6:2f:30:e6:99:0b:37:3a:32:1f:d4:56:1f:79:
de:0e:a0:6d:2b:92:7e:bf:15:06:d2:b2:af:09:ec:6f:81:02:
c9:d1:f8:a0:cb:73:25:4b:6d:54:36:dc:eb:c8:5d:0c:af:49:
a8:a6:94:8d:60:75:02:17:0d:80:c1:ec:b2:c1:fe:0f:01:c3:
11:20:a1:eb:0d:77:c6:7e:3d:66:43:2b:53:9f:11:3b:38:29:
f8:23:ef:44:df:4b:65:ab:05:c0:94:1f:f4:2d:76:e5:9c:88:
bf:ae:71:59:91:3b:89:0a:fe:49:d6:ca:0e:74:a0:dd:9c:40:
e9:ea:0d:e2:c6:ef:39:9e:7d:73:3d:8a:82:e2:e7:3f:e8:ce:
d0:47:aa:9b:53:58:d7:af:ee:fe:d5:09:77:a8:32:14:f9:6d:
7a:9a:f8:cf:54:b5:dc:81:72:63:e6:c8:b1:5e:0c:4f:1e:24:
c2:c6:fd:11:ac:eb:4d:b1:87:5e:f2:9e:55:53:f5:d2:eb:aa:
21:47:29:f1:e7:95:1b:ac:47:5c:09:73:39:d5:a0:95:20:1a:
c1:f0:f0:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org