Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yNSbHGZ4yp0ZboNaVUhAR_ao9p8.roa
File: yNSbHGZ4yp0ZboNaVUhAR_ao9p8.roa (raw, json)
Hash identifier: /8ttXFsVzAmGA6ynNEYZJ24xADt3RRR6nHQFKmcVP2w=
Subject key identifier: C8:D4:9B:1C:66:78:CA:9D:19:6E:83:5A:55:48:40:47:F6:A8:F6:9F
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1088
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yNSbHGZ4yp0ZboNaVUhAR_ao9p8.roa
Signing time: Thu 13 Oct 2022 08:52:04 +0000
ROA not before: Thu 13 Oct 2022 08:52:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4232 (0x1088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Oct 13 08:52:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C8D49B1C6678CA9D196E835A55484047F6A8F69F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d1:93:4c:16:db:1d:d9:10:e2:49:73:fe:72:
99:6a:ce:b5:26:06:61:7b:a9:0d:9a:b7:dd:93:16:
df:ed:6f:02:eb:33:2b:67:af:7c:4c:e4:86:51:62:
26:3c:e1:ef:99:2f:df:a4:94:9c:15:d0:6b:f6:21:
56:48:a3:ea:0b:72:f9:ab:38:df:74:df:bb:fc:53:
14:9c:c5:86:3b:7f:73:52:6e:9d:bc:0c:9b:27:82:
d9:d6:67:a0:9f:71:75:08:7a:cd:45:e8:34:8b:69:
d0:3b:be:11:e2:19:98:4e:2a:04:5b:7d:1c:bf:24:
78:b9:f1:2e:ce:49:22:2e:ba:f8:c7:28:41:22:28:
93:ca:2b:0c:43:15:97:9e:93:f6:97:03:77:49:9c:
1c:dc:13:d3:34:73:5a:35:8c:1b:87:d1:02:5c:a6:
3d:15:50:c8:ef:1c:cb:b5:5f:da:5d:d6:bb:11:7c:
5c:61:57:43:16:3c:11:ca:dc:24:4e:72:67:2d:97:
69:cf:11:31:8f:a5:36:af:f1:72:01:4b:0e:d6:09:
6d:7d:66:df:ed:ab:72:f5:3b:b6:54:bb:bc:48:85:
20:84:20:df:42:86:23:c5:13:e6:3d:98:42:aa:03:
ef:7e:c2:0b:72:2d:05:58:05:6d:01:3a:de:9e:6b:
e9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D4:9B:1C:66:78:CA:9D:19:6E:83:5A:55:48:40:47:F6:A8:F6:9F
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yNSbHGZ4yp0ZboNaVUhAR_ao9p8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
aa:8c:12:52:75:f3:cb:c6:93:59:ea:ad:17:35:a5:de:c8:d9:
cd:e7:e0:c9:1d:95:24:9e:ee:e5:26:53:13:ae:0b:db:82:ee:
44:ca:a2:8d:59:32:27:0b:32:6e:f0:8c:69:f3:ba:2e:ae:c2:
b5:24:16:54:8f:c2:bb:f9:69:88:57:18:e6:7c:a9:45:64:82:
96:ed:77:85:38:e0:d0:b0:d1:0e:87:85:bf:ae:3d:94:f2:f0:
dd:4a:06:e5:d8:cf:48:86:e0:7d:6b:50:56:47:66:66:34:bb:
dc:53:9a:f5:e9:14:10:65:04:d2:c5:47:b0:39:b6:21:82:fb:
ea:9d:3b:5b:d2:dc:21:6d:16:5e:bc:50:33:3c:b6:3d:43:5a:
29:d4:c8:e7:61:76:6e:f1:6f:1e:d8:6e:12:69:7c:72:ec:ed:
9e:25:35:a2:08:d8:1b:e0:0d:e5:bf:6e:d6:12:4e:84:45:9b:
46:08:e1:07:d0:7f:4b:da:06:40:78:95:54:f6:0a:e2:20:d1:
f1:d3:06:20:94:73:66:ce:b3:7a:54:c2:88:ea:03:1b:15:e6:
00:9f:8c:bf:64:30:33:01:2b:bf:62:18:50:70:06:eb:cf:b5:
67:9b:16:4b:73:f7:cc:56:96:7e:ab:88:96:e7:01:9f:3f:df:
d1:53:7a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:42 2025 by rpki-client