Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qtYRvq7UuEGlEfvy6NoEu4ij_r4.roa
File: qtYRvq7UuEGlEfvy6NoEu4ij_r4.roa (raw, json)
Hash identifier: kQ+A+/ymR4VC+/oeflDcsaZpdh1DjoBriXcy8lK1krI=
Subject key identifier: AA:D6:11:BE:AE:D4:B8:41:A5:11:FB:F2:E8:DA:04:BB:88:A3:FE:BE
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 079D
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qtYRvq7UuEGlEfvy6NoEu4ij_r4.roa
Signing time: Tue 29 Sep 2020 10:07:16 +0000
ROA not before: Tue 29 Sep 2020 10:07:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 14618
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAD611BEAED4B841A511FBF2E8DA04BB88A3FEBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:60:10:ca:49:d8:85:2f:8c:24:9b:1d:a8:
ee:8d:56:63:a0:98:bc:b1:26:0d:ca:d3:0a:15:94:
1c:0e:c6:5c:88:db:5f:ee:53:6d:4a:c3:af:56:7e:
11:b5:d4:01:8f:8e:1a:3d:97:af:eb:e0:1a:39:d9:
22:33:6c:3e:68:da:14:e4:0d:02:30:71:5e:e2:ab:
c1:b3:3e:c6:e9:56:4d:dc:be:6c:03:0c:d0:03:5e:
c8:26:1a:2b:68:e5:b5:7a:1d:83:ce:8f:e7:f9:8c:
5a:7a:84:a0:a7:9c:0d:8f:85:30:dd:ad:77:0a:ec:
51:46:15:b8:54:e5:56:cc:11:d4:1b:98:24:aa:56:
44:b3:81:ef:bf:a0:ac:c1:43:2e:ca:1c:d4:e3:e4:
94:5b:d4:cd:0d:80:a3:8b:d0:aa:48:2b:c5:e2:c5:
bc:e5:7d:cf:dc:52:64:a2:2b:d2:eb:44:1b:7d:da:
3c:c0:e7:c1:2d:e5:86:ec:ad:99:5c:a9:f5:47:eb:
ec:6f:18:36:27:b9:a2:a5:bd:53:38:5e:7c:8e:17:
cf:61:05:66:60:7c:ae:c0:48:af:18:3c:87:9a:1d:
e5:b9:33:36:b6:e6:a0:8c:18:ae:ef:44:11:ee:cd:
5b:36:2c:f6:4f:66:95:b8:64:d8:7d:c6:cc:90:b0:
ef:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D6:11:BE:AE:D4:B8:41:A5:11:FB:F2:E8:DA:04:BB:88:A3:FE:BE
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/qtYRvq7UuEGlEfvy6NoEu4ij_r4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
63:66:25:de:bf:d1:3b:4d:8b:e6:7d:04:c5:4a:bc:ce:4f:bf:
f9:45:c8:b4:57:4b:9a:11:50:69:0d:49:8a:16:a3:f9:17:49:
c5:5d:1d:8d:9d:df:ca:e3:f8:01:c2:e4:18:54:de:67:ab:60:
37:ee:53:f6:5d:e1:b4:8a:20:97:f3:2a:90:35:b5:60:67:03:
2e:5e:e5:3d:0f:c1:b3:16:72:eb:4f:f4:cc:ef:94:82:ca:11:
2c:60:44:fc:95:0d:3d:56:8b:9c:8b:9e:38:52:de:25:f3:e3:
d6:7b:9a:86:36:36:40:d2:e6:9a:f5:ce:09:0f:51:67:65:3a:
83:1d:c3:5d:2a:88:16:7c:83:2a:03:ac:10:57:05:2a:95:e5:
72:b4:6c:2a:51:4e:62:b4:4d:ce:37:ed:3e:3b:7f:c0:db:f3:
f5:71:29:a1:11:93:f9:ff:67:89:29:40:48:a6:e8:42:4b:e9:
02:1a:d5:19:b7:1c:a3:5a:3a:d1:1d:3e:af:1d:46:71:4c:a1:
cc:21:24:25:19:cf:75:a9:15:72:1b:84:25:67:56:4c:f2:9a:
40:3a:67:91:1c:2e:01:5e:a5:bf:92:45:0c:5e:4a:f1:a4:98:
e3:da:c5:a0:7f:93:04:98:c3:20:55:ba:fe:c9:ba:6b:fa:b8:
39:5b:e4:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org