Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/vD-LF4sQO9GIjoBxTzW-orY1cDo.roa
File: vD-LF4sQO9GIjoBxTzW-orY1cDo.roa (raw, json)
Hash identifier: jhx0p+9josNl3rA01IkJBVmHJT9fz6DsdJ1m7Igss4M=
Subject key identifier: BC:3F:8B:17:8B:10:3B:D1:88:8E:80:71:4F:35:BE:A2:B6:35:70:3A
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C9E
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/vD-LF4sQO9GIjoBxTzW-orY1cDo.roa
Signing time: Mon 16 Nov 2020 06:46:33 +0000
ROA not before: Mon 16 Nov 2020 06:46:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:34::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3230 (0xc9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:46:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BC3F8B178B103BD1888E80714F35BEA2B635703A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9d:64:70:12:4c:33:db:a8:9c:c4:7a:6f:ec:
41:15:3c:cf:7c:e7:08:d4:de:e6:45:f7:c3:af:fb:
37:42:5e:75:52:71:67:a9:40:4c:40:20:33:8f:35:
b6:c0:13:78:b6:23:a3:ad:30:2c:97:85:43:11:fc:
86:e1:4d:af:d4:59:98:86:d9:19:18:42:18:ce:cb:
b6:44:b0:40:e0:5b:6e:e8:2f:5d:f0:06:4f:2d:85:
ed:05:16:cf:6e:e0:88:d2:10:59:11:5d:40:0e:d6:
ed:9a:f9:13:6a:99:d0:f4:73:9b:24:06:1a:a5:cc:
b5:f4:e8:c0:7a:c7:a9:e6:56:3e:42:11:9c:9f:04:
8f:df:62:c9:10:80:2c:29:68:54:8b:9c:d3:8f:da:
56:c5:a2:fb:4c:1f:73:a9:ed:c4:66:62:21:52:b5:
86:4c:8b:b3:e4:21:5c:8e:11:d4:91:78:7e:56:16:
72:ea:3c:85:49:2e:12:25:31:09:0f:43:fc:6d:47:
6f:a2:fd:2e:3a:47:42:1e:64:96:25:f6:cc:b5:90:
8b:6b:90:cf:b8:fd:d7:f7:eb:d0:74:be:e1:3d:39:
28:df:dc:81:54:9c:7f:de:3f:35:31:f9:04:d0:e9:
4c:9a:f7:f2:fe:23:78:c3:d5:c0:94:21:86:9a:3c:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3F:8B:17:8B:10:3B:D1:88:8E:80:71:4F:35:BE:A2:B6:35:70:3A
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/vD-LF4sQO9GIjoBxTzW-orY1cDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:34::/48
Signature Algorithm: sha256WithRSAEncryption
a7:eb:20:36:39:54:6e:8c:a6:9d:d6:4b:c2:0e:4a:89:e1:81:
1d:74:57:18:7c:a3:52:32:b3:71:96:61:c1:59:d3:00:13:24:
d8:aa:09:85:12:03:e8:44:e5:6c:69:70:cf:d7:0d:2c:61:de:
20:d6:b3:3a:aa:a5:26:f8:f5:bb:e2:eb:b8:30:1e:68:cd:0e:
5a:b0:98:80:24:b0:dc:9e:80:87:25:b7:23:8a:96:0f:b5:f4:
07:75:d0:bc:ef:db:b4:44:a2:03:10:0d:b1:d4:19:06:6e:b3:
bd:59:29:8c:77:46:ea:c8:9c:ee:75:7f:2e:ca:f3:4f:20:66:
dc:fc:ab:19:cf:c7:bc:75:90:2f:7f:c1:42:b5:85:83:6e:e8:
1e:32:ff:13:24:f8:87:ec:37:f6:2d:cd:11:ec:e8:f4:86:32:
47:8f:19:ae:6b:a7:78:0f:18:8c:ad:da:f7:80:b5:fe:07:a8:
ca:24:25:17:ad:d9:da:f7:db:36:5c:d1:0d:58:2f:77:59:50:
bb:5a:84:09:1c:92:15:53:82:ee:bb:c4:f7:c8:53:9a:9c:ad:
16:ce:8a:54:a9:ad:35:5a:98:c6:64:d7:80:31:21:f2:ea:b5:
6e:32:3a:e8:a5:bd:bf:5f:4a:4f:d0:a5:98:28:c7:41:11:96:
72:2f:05:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org