Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/li2sAWsDrH4LDJd5D-WMo-MZYWQ.roa
File: li2sAWsDrH4LDJd5D-WMo-MZYWQ.roa (raw, json)
Hash identifier: 7UzADeehKQ1tJHVjqAFRR0wZEfMgDxQgPJ9rJmSQnMI=
Subject key identifier: 96:2D:AC:01:6B:03:AC:7E:0B:0C:97:79:0F:E5:8C:A3:E3:19:61:64
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CAA
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/li2sAWsDrH4LDJd5D-WMo-MZYWQ.roa
Signing time: Mon 16 Nov 2020 06:49:18 +0000
ROA not before: Mon 16 Nov 2020 06:49:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3242 (0xcaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:49:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=962DAC016B03AC7E0B0C97790FE58CA3E3196164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d4:b2:4b:60:80:0b:e2:32:65:d0:85:e6:62:
b4:8c:66:a6:f3:7c:1c:42:6d:33:40:63:62:8d:d5:
0c:99:ef:f3:c3:8f:6f:f6:17:02:05:94:8a:ec:e2:
0b:80:0d:50:59:d4:6f:12:23:d9:61:26:3d:c4:5c:
10:c3:e9:19:1e:8c:64:f0:e2:0f:b9:99:23:50:47:
fb:ef:0a:44:97:a9:be:46:35:ca:a3:d3:fa:60:e3:
c9:eb:d0:92:a5:95:c9:50:12:4d:9a:26:71:d3:ef:
a2:12:74:16:87:a2:03:39:27:fe:eb:3d:53:90:f2:
6d:8c:a7:55:28:f2:53:07:19:c2:87:86:43:83:87:
65:e3:13:e5:65:51:e8:7b:4c:08:ed:8b:9f:93:80:
36:9f:c0:44:f0:08:0c:5e:9e:98:ff:ad:6d:cd:32:
cc:55:56:a9:a4:a5:dd:33:aa:44:99:f1:b5:c1:24:
37:99:52:2f:da:ed:57:43:24:28:bb:67:f2:5d:13:
7b:7a:e0:a0:9f:f5:ac:e3:97:95:e3:4d:b1:1f:06:
f0:e8:dd:08:dc:91:cb:fe:70:09:f9:65:64:55:0c:
ff:eb:30:1f:23:08:16:16:32:9e:1a:4d:2c:b0:37:
20:1c:c1:72:1c:e2:77:09:b0:14:d2:8e:d4:bb:c3:
12:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2D:AC:01:6B:03:AC:7E:0B:0C:97:79:0F:E5:8C:A3:E3:19:61:64
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/li2sAWsDrH4LDJd5D-WMo-MZYWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:40::/48
Signature Algorithm: sha256WithRSAEncryption
7d:e9:d5:99:c0:51:06:81:13:8e:56:e4:b6:e1:0c:4a:b2:a4:
b0:d4:e3:33:ae:a7:3a:e8:2f:a6:5e:bf:52:d7:3e:dc:61:0e:
b4:d4:56:da:3c:59:f7:59:b8:f2:a9:b7:90:7b:3d:03:3b:12:
2e:d1:0b:51:1b:34:f5:44:42:c0:89:af:cb:1e:3b:48:96:60:
8a:9a:d6:21:96:b6:0c:fc:61:40:16:16:39:3a:a2:c1:b1:97:
22:0f:8b:2b:b2:b2:12:e0:59:7d:30:f3:41:32:86:30:f8:d9:
14:1e:1b:9f:0d:f9:70:95:88:08:8e:ef:3d:3c:da:88:14:16:
d9:17:dd:bc:f5:8d:e1:2f:ae:14:e3:a3:e8:87:a1:3e:52:48:
f5:69:ef:ed:4d:e8:45:4b:a5:27:d1:cb:dd:63:a6:be:48:16:
b0:2b:19:e6:60:d8:e9:8b:17:d8:5c:82:62:0d:c3:7c:c5:39:
df:2a:fc:f7:5f:e8:f3:69:66:0c:82:ba:72:ce:d4:9e:eb:f5:
92:22:a1:23:8f:ed:83:31:9b:a4:a3:84:dc:ab:00:e2:cb:a9:
ea:7c:fe:8c:98:f4:cb:ba:ae:ec:97:dd:55:b0:b9:1b:8e:7c:
27:7f:f3:ad:2e:31:d6:e3:e5:60:d9:6b:59:1e:bf:91:57:b1:
51:24:e2:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org