Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mnwGwgFahUUXP22N4riu7F1MOxw.roa
File: mnwGwgFahUUXP22N4riu7F1MOxw.roa (raw, json)
Hash identifier: Vmmcb9ehCnKld1/FLnqcWy/UTjnaxgsrRaJTfztOeIU=
Subject key identifier: 9A:7C:06:C2:01:5A:85:45:17:3F:6D:8D:E2:B8:AE:EC:5D:4C:3B:1C
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C78
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mnwGwgFahUUXP22N4riu7F1MOxw.roa
Signing time: Mon 16 Nov 2020 06:12:32 +0000
ROA not before: Mon 16 Nov 2020 06:12:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:15::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:12:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A7C06C2015A8545173F6D8DE2B8AEEC5D4C3B1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3e:d8:8e:2f:e1:fe:cc:50:8b:86:44:e8:6e:
16:a4:01:2e:d6:55:44:7a:b7:1d:0a:72:c4:75:a8:
66:3b:21:41:2e:9a:d4:9a:56:e5:6e:97:66:50:cd:
3d:a0:08:b2:ef:66:92:26:b7:7e:a0:27:d1:9b:13:
6c:ad:83:cb:68:e7:35:b7:48:12:b7:f5:c2:42:ef:
77:05:0c:8a:33:8f:7c:bd:17:1d:0f:bf:45:ef:32:
15:13:7b:56:16:5c:b1:ff:e4:67:9d:32:fa:06:5c:
07:d6:92:fb:e8:0e:d3:58:e9:a4:9c:6a:44:4a:ad:
35:fc:2a:e4:99:50:62:2b:0e:0a:ce:52:eb:38:c1:
78:6a:09:da:69:0d:ac:2b:3c:84:1c:f5:ff:e9:fc:
df:15:bc:44:04:be:c9:c7:22:c4:44:16:62:d1:97:
19:ff:fd:3e:84:90:5f:c4:d5:1b:da:08:5e:55:58:
ff:e9:ab:d0:40:83:98:c1:b3:b6:13:80:93:24:a6:
09:fd:6d:ad:86:5b:28:de:06:3c:45:4d:6b:7f:c8:
86:8b:69:28:30:82:6d:b3:e0:70:8b:6a:49:b1:5d:
46:df:b0:e3:c4:6a:5b:c2:61:fc:80:1e:ec:9b:e2:
9c:b3:22:2b:17:19:28:ef:d4:54:b8:5f:1e:21:73:
dd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:7C:06:C2:01:5A:85:45:17:3F:6D:8D:E2:B8:AE:EC:5D:4C:3B:1C
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mnwGwgFahUUXP22N4riu7F1MOxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:15::/48
Signature Algorithm: sha256WithRSAEncryption
12:5d:1a:61:cf:f5:52:3e:55:7a:3d:a5:a5:e4:2d:19:96:4e:
7c:01:5a:f3:19:cc:e9:92:57:7c:6f:d3:b1:38:5c:c4:a7:dc:
b3:2c:da:ef:c9:be:43:3b:c4:a4:70:65:cf:81:f6:ef:f7:81:
e3:96:31:eb:b8:09:13:92:7e:d7:c3:a9:07:b6:fd:f0:3a:31:
da:31:f8:63:0c:27:9c:fa:c2:ac:d0:e8:48:a9:f1:da:65:4f:
22:c2:6c:17:1a:12:fd:b9:7e:11:1b:66:7c:74:b4:26:15:14:
9c:14:0e:fe:55:ba:f5:fd:eb:cd:5c:c8:81:aa:e5:38:31:7a:
42:e1:54:e9:d8:14:f9:43:d4:f7:4f:46:a3:fb:bd:0b:d8:3e:
be:3d:7a:51:7a:61:9d:24:b5:91:aa:b3:71:b8:89:36:70:6c:
7e:e6:7b:b9:47:fd:be:e8:f8:42:6f:a8:09:92:6e:98:ff:58:
e8:b4:e0:eb:87:a1:79:3a:45:92:89:a6:20:47:2e:2b:54:39:
74:49:1c:8e:67:f0:05:bc:59:31:7f:20:96:87:19:d5:1c:2e:
5b:7c:f6:c1:5c:fc:eb:a9:57:02:79:07:1b:05:d9:fb:d4:56:
20:16:2f:7d:ca:74:63:0d:fd:11:c3:bc:2e:77:4c:9a:8f:4b:
c4:66:61:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org