Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/wb4345DBQZip2Ss_5fvwNypv3YQ.roa
File: wb4345DBQZip2Ss_5fvwNypv3YQ.roa (raw, json)
Hash identifier: Lf4BgSpXqBQVu/PtWBrw8W54luvuDhRDV8/4OUFdueg=
Subject key identifier: C1:BE:37:E3:90:C1:41:98:A9:D9:2B:3F:E5:FB:F0:37:2A:6F:DD:84
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DDB
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/wb4345DBQZip2Ss_5fvwNypv3YQ.roa
Signing time: Mon 23 Nov 2020 07:24:31 +0000
ROA not before: Mon 23 Nov 2020 07:24:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:19::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3547 (0xddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:24:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C1BE37E390C14198A9D92B3FE5FBF0372A6FDD84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:99:55:99:63:86:f3:ed:c4:8a:0e:17:36:a7:
ee:61:c8:f8:83:14:5d:e9:79:c5:75:e4:90:3f:2b:
67:b1:93:04:5f:23:00:fb:0c:58:87:57:86:18:f4:
53:8d:ec:3a:8f:9e:20:7c:9b:7d:f2:9e:2f:f6:00:
3e:5b:c1:28:68:0b:60:37:fe:af:38:f0:15:7d:4c:
55:77:10:f5:8b:6b:15:9c:26:d0:d2:8c:f3:c0:c0:
e9:5f:99:6d:85:ab:71:9c:a1:1a:c6:b8:a8:08:ae:
1b:df:fb:8c:3f:d3:ea:11:6b:d6:cb:f5:0f:67:d8:
fb:1c:46:b8:30:02:21:f4:63:14:38:90:e5:22:55:
39:a3:2f:62:5f:9f:aa:e3:5b:2a:dc:26:43:2e:61:
48:aa:69:85:05:36:13:31:d5:f1:8e:50:c0:65:f7:
1a:b2:3d:c3:0e:f3:84:5f:d2:6a:fb:3b:91:95:0a:
83:d0:cb:20:95:49:ed:88:b6:36:02:0f:8e:86:cc:
01:1e:c3:e5:0c:05:fe:37:35:69:79:a8:21:19:d4:
4e:78:01:51:9f:c2:51:98:cd:df:94:3a:30:5c:86:
44:97:15:99:84:43:56:96:52:dc:2c:40:2c:08:1a:
f8:96:c5:59:8b:33:b9:eb:75:e3:4a:03:54:39:2a:
ac:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BE:37:E3:90:C1:41:98:A9:D9:2B:3F:E5:FB:F0:37:2A:6F:DD:84
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/wb4345DBQZip2Ss_5fvwNypv3YQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:19::/48
Signature Algorithm: sha256WithRSAEncryption
49:1a:f2:5a:1c:73:77:05:e6:74:78:7b:a6:64:5d:b7:ae:d7:
03:13:3b:98:4a:24:98:a9:c9:13:39:cb:cb:c2:18:85:3b:d7:
68:52:96:c6:03:0b:4f:ee:b5:e5:8d:89:31:80:48:5a:54:7e:
b8:ff:77:88:36:a4:fd:c5:e1:16:c9:b0:17:4f:e0:38:f1:15:
29:c9:df:47:66:02:7c:93:fd:ae:d6:33:00:c6:d6:33:00:aa:
03:e1:35:c2:7e:12:f3:84:53:06:73:c4:79:03:cc:81:c7:1a:
f0:99:36:70:3e:fb:86:8e:44:61:93:11:19:e0:1d:fb:95:56:
0b:fc:7d:4f:e6:fa:ab:bb:df:62:e8:c8:79:a4:69:de:03:ea:
46:1e:3c:09:cd:34:6e:a0:c2:e9:df:03:c3:f6:bc:88:70:34:
d8:f4:a3:23:a3:ce:00:6b:95:d2:d3:ac:44:ad:91:22:b5:ae:
f5:77:a5:bd:1a:29:51:0b:53:ca:58:2b:88:05:bc:f1:81:fb:
2d:3e:e9:72:27:8c:ce:84:1c:4c:b3:b6:53:a1:82:9f:88:71:
21:7c:98:2a:84:45:69:de:1d:38:1f:49:6d:71:ed:3e:f6:20:
cf:4a:7e:ea:27:09:8f:eb:2d:e6:31:8d:d1:d2:78:81:c3:f7:
25:d8:14:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org