Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/utF1cOUH8lPLNIXMHvhYzZQbWW4.roa
File: utF1cOUH8lPLNIXMHvhYzZQbWW4.roa (raw, json)
Hash identifier: xSprnvAwGQ9jmI7t2bonI+d1epYR/BwSueJcyzsIwmI=
Subject key identifier: BA:D1:75:70:E5:07:F2:53:CB:34:85:CC:1E:F8:58:CD:94:1B:59:6E
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DCB
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/utF1cOUH8lPLNIXMHvhYzZQbWW4.roa
Signing time: Mon 23 Nov 2020 07:23:20 +0000
ROA not before: Mon 23 Nov 2020 07:23:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3531 (0xdcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:23:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BAD17570E507F253CB3485CC1EF858CD941B596E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:83:c2:c2:c7:e2:98:0a:99:7c:d7:61:43:7c:
ba:29:43:c6:67:90:d3:b8:0f:d9:9b:1b:a7:07:17:
08:25:9a:bc:bc:3b:2c:2e:a2:25:7d:93:1a:d6:d5:
7d:39:72:dd:6c:e9:1c:62:bf:13:f4:48:7b:19:9b:
c1:9a:ff:91:0f:7d:95:cb:18:ce:1c:6e:65:15:41:
1e:3a:17:13:cb:18:78:ff:aa:33:85:db:4d:d8:35:
15:c9:a1:6c:93:d5:cd:30:e2:3c:7e:2b:ba:d3:b6:
0c:46:71:f7:17:d4:f8:37:9e:93:87:c4:74:68:52:
b2:f2:9e:92:e5:a8:85:bc:44:df:16:d9:8f:21:b4:
8b:ec:cd:32:13:dc:b8:ee:6b:73:74:83:6d:52:0a:
1c:12:f6:0d:15:69:b5:59:c7:b1:32:cf:6b:92:fd:
ff:05:ab:7d:d8:04:79:2a:c5:0d:8d:b9:45:93:66:
29:3d:1d:92:a3:44:08:84:bd:45:f2:bc:19:17:fb:
40:4e:5f:35:da:e5:dd:2e:86:1b:52:df:08:e6:16:
b4:79:f6:2b:a7:e4:8f:f7:c5:3e:b7:d9:19:5f:2f:
f3:be:89:7b:3b:db:52:51:fd:60:86:a9:83:dd:f8:
11:74:ed:92:1a:1a:85:38:e2:27:69:83:09:13:1b:
e9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D1:75:70:E5:07:F2:53:CB:34:85:CC:1E:F8:58:CD:94:1B:59:6E
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/utF1cOUH8lPLNIXMHvhYzZQbWW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:11::/48
Signature Algorithm: sha256WithRSAEncryption
00:8d:52:f8:5e:2d:79:6e:8a:da:da:c2:ab:1d:89:73:78:ab:
fe:65:19:57:cf:c8:be:4b:68:59:c1:19:9e:6e:3d:29:9a:fe:
37:ae:09:1c:6b:7d:46:22:5c:21:3e:ac:1c:98:ab:8a:16:62:
2d:7b:f1:a5:26:56:18:75:61:ed:4d:c9:41:09:ee:10:21:fc:
a0:c0:60:f3:2c:21:00:8e:f0:9c:59:dd:be:a6:49:22:59:9a:
79:44:55:93:60:a8:01:c3:e4:d8:43:47:97:8c:91:c6:16:63:
c7:5b:f9:c5:1f:96:37:4d:c0:4c:3c:7b:da:45:dd:5a:dc:cb:
7b:90:d6:e7:84:64:19:08:3c:59:3f:e3:66:1f:07:83:a3:56:
f8:00:a8:1b:fd:25:25:92:19:d3:a3:a8:8b:f1:f8:29:6e:ab:
d0:83:37:6a:52:e4:5b:ae:8c:02:73:a4:a9:b8:e4:3e:ef:34:
9e:66:3b:92:20:ad:9f:c1:bc:41:88:eb:b0:35:75:d1:09:75:
65:e0:a6:36:4f:1b:72:a0:b1:54:f7:87:e8:87:00:cd:59:a4:
89:44:af:21:2c:2b:ab:64:c0:e6:cb:6d:b7:d4:fd:fd:10:0d:
d1:24:6e:fa:13:1d:e4:d5:93:5c:b1:ee:c0:d4:f0:2b:3a:27:
37:ca:56:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org