Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xU4A9PzUihi4BHdV2mVb0hh4bHc.roa
File: xU4A9PzUihi4BHdV2mVb0hh4bHc.roa (raw, json)
Hash identifier: gYwoa4TGeDxUkzr+sTtbXfXX0jLyJ5Kr3WY+GLIWg9E=
Subject key identifier: C5:4E:00:F4:FC:D4:8A:18:B8:04:77:55:DA:65:5B:D2:18:78:6C:77
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C68
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xU4A9PzUihi4BHdV2mVb0hh4bHc.roa
Signing time: Mon 16 Nov 2020 06:11:07 +0000
ROA not before: Mon 16 Nov 2020 06:11:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:11:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C54E00F4FCD48A18B8047755DA655BD218786C77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:60:b7:df:d8:ab:f8:00:eb:d2:7a:90:7e:ad:
7b:9d:df:66:b9:57:c0:60:1c:67:b9:de:51:a4:6f:
12:58:2b:9d:eb:0f:9a:b2:fa:d5:47:cf:a0:8c:93:
18:b9:7d:25:42:59:de:aa:09:86:0d:ed:7a:fd:f5:
99:95:e1:43:2d:ab:89:27:ea:31:9d:33:13:02:98:
c2:53:d4:f3:02:e4:7f:66:e6:c4:d7:73:e1:60:39:
10:a3:58:3b:06:4f:96:ac:24:b9:0f:e2:db:dd:6f:
6e:07:bd:35:12:f8:6a:21:94:14:1d:ab:9e:79:26:
b9:31:b4:c3:34:60:90:fc:dc:11:d3:d7:d2:b7:50:
dd:a9:6d:12:f4:c0:97:c2:9d:fc:7a:e3:21:f7:88:
ba:81:ed:0a:31:90:0b:ca:9a:4f:74:ab:9d:74:04:
73:8a:df:65:09:03:7f:88:2f:2e:70:5b:59:ec:f2:
75:1f:b9:70:32:6e:e6:7f:ca:a7:7a:ad:d3:1a:c9:
ea:0f:f2:25:e6:5f:19:0a:2c:be:50:91:5b:f8:c6:
3a:da:72:bb:18:9f:66:4c:af:98:fc:84:4c:d1:57:
8d:57:fe:e1:04:aa:da:dc:eb:c9:54:1a:33:7c:77:
60:4d:8b:71:84:31:60:6a:df:c7:2e:c9:c0:60:fe:
26:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4E:00:F4:FC:D4:8A:18:B8:04:77:55:DA:65:5B:D2:18:78:6C:77
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/xU4A9PzUihi4BHdV2mVb0hh4bHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:7::/48
Signature Algorithm: sha256WithRSAEncryption
23:28:9d:d2:f8:9b:d3:8b:d9:c8:c4:60:09:2a:46:44:bb:1a:
e4:b5:5f:83:ce:d7:9e:29:90:7d:31:c6:c0:44:85:50:d0:fc:
9b:aa:2b:64:cf:7d:89:e5:5f:34:0b:f4:1d:72:ec:5b:10:b5:
d8:e2:8a:a7:09:b7:ef:90:cb:55:f0:b6:b3:35:27:dd:c0:db:
e7:4a:0b:04:30:a0:6f:96:22:13:c9:4e:40:53:7d:b9:cb:b8:
f0:ca:6a:e0:9e:d7:83:77:c2:0f:01:d1:18:20:63:10:81:8e:
6e:60:f0:71:bb:63:a3:1e:fe:67:98:25:67:8b:a7:8e:9f:84:
ea:96:d8:7d:bd:ac:1b:3b:13:20:a3:35:6d:c1:2c:f5:d7:97:
35:ee:5b:da:21:ee:d9:18:55:d9:b8:01:d9:05:37:ed:4f:ce:
fc:0c:0a:ea:a2:96:73:8e:ed:6d:68:e0:bb:14:c4:fb:bf:57:
b1:b2:55:93:37:0a:ab:a4:f2:3d:26:28:4f:ef:cc:d0:c1:bc:
4c:29:2f:8e:52:79:7c:e4:a9:3c:1b:ed:bb:91:06:50:15:1f:
74:b7:ff:eb:f8:b1:d7:0a:2a:ff:53:53:f0:de:35:69:bd:fb:
2d:1e:49:87:ee:d3:b9:73:53:75:2e:4d:65:a2:e9:e2:83:64:
e0:e3:cc:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org