Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/kHCj3fkkf2ZTZRotE-e25TwatQo.roa
File: kHCj3fkkf2ZTZRotE-e25TwatQo.roa (raw, json)
Hash identifier: 16zhed9pvBIT8NkHLRBA9tbp0MjnjD25vU34cGpRD6M=
Subject key identifier: 90:70:A3:DD:F9:24:7F:66:53:65:1A:2D:13:E7:B6:E5:3C:1A:B5:0A
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DDF
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/kHCj3fkkf2ZTZRotE-e25TwatQo.roa
Signing time: Mon 23 Nov 2020 07:24:53 +0000
ROA not before: Mon 23 Nov 2020 07:24:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:21::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3551 (0xddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:24:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9070A3DDF9247F6653651A2D13E7B6E53C1AB50A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:df:72:1b:c8:94:a7:19:20:b0:d6:0e:3c:a7:
39:85:c1:f4:68:2e:69:0c:2b:4b:e8:5c:05:eb:70:
e5:fa:77:82:50:a1:2e:51:b7:1d:1f:6f:cb:07:6d:
00:76:a8:fc:cb:f9:01:73:43:07:86:e1:71:d0:09:
7f:83:b7:4e:df:4a:e8:74:2a:d2:d7:5c:47:6a:c6:
ad:65:fe:23:23:1a:14:e6:1c:cd:66:91:39:00:4d:
dd:a0:37:24:9f:e9:2b:0d:c4:ef:a5:b9:09:ea:42:
8a:a6:77:b2:47:68:c8:aa:00:ef:a3:ad:d1:5a:02:
ce:68:8d:66:9c:b3:71:c2:10:22:cb:0b:2a:a7:70:
99:1e:1e:24:1d:35:52:9b:cf:99:50:4d:e0:ee:f8:
94:32:01:b1:0d:af:dd:bb:82:c5:42:d0:c4:3f:57:
d6:97:78:01:f6:83:e1:11:60:36:a1:4a:ec:8e:49:
e5:9b:7c:31:b5:01:f2:27:2b:83:e4:8f:ae:12:ab:
87:9c:be:df:7a:a4:3e:88:f4:af:ec:c2:df:cd:41:
7e:3e:18:18:b4:3a:4c:3f:4f:74:ba:a3:93:23:68:
dd:ab:1e:14:cc:09:71:5e:b0:3d:a2:1c:5e:a2:28:
da:d1:bf:4d:01:d2:43:c9:95:08:97:29:6f:b1:eb:
c9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:70:A3:DD:F9:24:7F:66:53:65:1A:2D:13:E7:B6:E5:3C:1A:B5:0A
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/kHCj3fkkf2ZTZRotE-e25TwatQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:21::/48
Signature Algorithm: sha256WithRSAEncryption
a7:55:df:c0:ca:64:d9:8c:7d:c2:8f:31:23:40:b7:9a:d2:e0:
69:60:df:bc:95:59:59:6e:83:0c:d5:27:a5:3e:46:d5:57:09:
7f:ad:af:0a:a4:b2:35:f4:6d:92:6d:9f:82:75:b2:2f:a7:a0:
04:28:95:34:54:ea:d8:2a:88:93:ab:ed:45:4a:03:1f:50:23:
f5:b5:30:17:14:b4:e0:a2:c7:a4:0a:60:d0:6e:62:30:46:b2:
4a:42:30:7b:e0:4f:aa:c6:ef:5a:25:9c:73:f4:11:3c:3e:e4:
a9:37:c9:27:7a:d4:75:bd:ae:75:04:db:3b:ce:ed:a1:03:e8:
21:9f:79:a5:b8:05:86:9f:0d:68:e3:85:2d:5b:27:ff:bb:57:
ef:11:72:16:e6:f3:26:01:fd:13:d1:82:74:fa:f1:6b:39:79:
c1:b2:28:c3:b3:45:b4:16:e5:8d:73:28:21:18:66:ad:94:c7:
2c:58:3c:99:5c:5e:18:4b:4f:9a:fa:1e:05:32:45:c0:46:57:
60:83:49:a6:d5:9d:a3:21:8b:15:75:0b:67:38:75:c5:6f:14:
ae:1b:bf:58:2a:dc:42:21:fe:82:c9:5b:f5:5f:4b:32:46:f6:
24:13:50:54:a4:c3:2d:5e:e3:b5:e5:5b:66:0b:cd:af:f1:48:
e5:84:f2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org