Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mOJcTS77FSP7jBwFWB3lYzOqiqI.roa
File: mOJcTS77FSP7jBwFWB3lYzOqiqI.roa (raw, json)
Hash identifier: q8C3WWjnhbhuLT/39BP1ZhG0e6KCX8hvqSMg5m/nSqg=
Subject key identifier: 98:E2:5C:4D:2E:FB:15:23:FB:8C:1C:05:58:1D:E5:63:33:AA:8A:A2
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CC2
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mOJcTS77FSP7jBwFWB3lYzOqiqI.roa
Signing time: Mon 16 Nov 2020 06:51:30 +0000
ROA not before: Mon 16 Nov 2020 06:51:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:52::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3266 (0xcc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:51:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=98E25C4D2EFB1523FB8C1C05581DE56333AA8AA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ab:11:c3:7a:62:4a:f0:90:c1:cf:e6:f9:8c:
2d:9e:ed:f3:d3:78:ab:0f:4f:f2:c7:5c:dd:ca:35:
99:d2:8f:32:b0:66:b0:88:df:0d:cc:73:8a:d4:a9:
95:fe:90:92:8d:3d:2f:dc:f6:94:bb:e0:1d:07:5c:
91:d5:f5:09:9c:6e:cd:04:73:18:72:be:6a:7a:a9:
aa:53:1f:06:ac:70:dd:89:4f:6b:d7:82:80:a3:cd:
ed:30:06:6a:98:42:bf:03:ef:81:9c:0e:4c:3b:24:
41:2c:69:bb:d0:17:f5:ea:89:39:8a:6c:0e:c5:d3:
fd:12:c4:23:65:da:97:a4:37:3b:84:b8:b7:22:59:
87:f0:e8:8a:09:15:e3:00:86:87:2e:66:d9:3b:52:
af:fe:19:c9:6d:87:e8:f2:92:0f:97:bd:04:16:01:
fc:1b:e7:e1:6b:fb:01:7e:95:97:a4:2a:26:61:65:
c3:6d:70:d9:e0:07:d3:a9:76:6d:a6:7d:c5:68:23:
ee:3c:48:fb:29:f9:ae:9b:a6:11:df:7a:99:3b:ae:
45:eb:8d:b8:d1:8a:2e:9c:bc:0e:eb:b4:11:ba:65:
99:fa:0c:03:e9:56:f1:4f:ba:a3:03:50:dc:8c:c1:
28:f8:ce:1f:16:79:22:c4:cb:d6:19:dd:07:79:6a:
8f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E2:5C:4D:2E:FB:15:23:FB:8C:1C:05:58:1D:E5:63:33:AA:8A:A2
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mOJcTS77FSP7jBwFWB3lYzOqiqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:52::/48
Signature Algorithm: sha256WithRSAEncryption
28:e9:d3:4d:1a:2d:1d:cf:d9:5f:fb:64:cd:dd:b0:9d:c5:40:
4d:04:2c:c6:b3:e2:8c:cf:95:9e:a5:be:ca:4b:68:b6:0b:7d:
d7:b8:60:5c:48:7d:6b:1b:5b:c8:b7:49:54:1e:27:90:24:b1:
f6:a6:01:f5:0c:2c:84:0b:81:d0:20:dd:68:39:67:27:d0:47:
b1:60:a9:a6:57:32:2e:b1:0c:19:49:25:71:b1:52:2d:c9:0d:
5f:de:42:2c:0e:18:ec:87:f6:a3:1e:e7:d4:0f:a7:04:d0:9c:
45:52:7e:d4:4e:36:e5:9f:dc:66:26:c2:86:05:82:35:23:64:
3a:8f:77:3a:2e:f5:0b:5e:e8:87:90:aa:6c:7d:7f:70:e3:b3:
fe:6b:e2:f4:20:27:63:6f:29:da:87:9b:f5:84:34:67:ee:34:
d4:b8:ad:7f:fc:83:da:f2:2a:5a:5a:ce:1c:d0:b6:35:5e:e6:
8d:eb:8b:eb:aa:fe:df:84:00:6c:06:44:45:c7:02:47:3f:f5:
61:a6:fd:36:14:05:f9:a4:db:30:38:9a:a9:f4:5e:77:5b:b2:
a3:df:14:35:f3:1b:7b:ab:4f:01:44:4a:84:7e:0d:a3:98:d1:
24:6d:81:91:91:fa:a0:2a:be:89:9c:0c:d3:f3:f0:ea:cd:63:
61:a7:f4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org