Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/F79LZLC6hqMDDYzbebV8qM25_9s.roa
File: F79LZLC6hqMDDYzbebV8qM25_9s.roa (raw, json)
Hash identifier: m7zVblKP4uKr26JqHWfxNuTR1lW0vm3fQ+nyGJu+kD8=
Subject key identifier: 17:BF:4B:64:B0:BA:86:A3:03:0D:8C:DB:79:B5:7C:A8:CD:B9:FF:DB
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 01B0
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/F79LZLC6hqMDDYzbebV8qM25_9s.roa
Signing time: Sat 02 Oct 2021 04:31:08 +0000
ROA not before: Sat 02 Oct 2021 04:31:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131642
IP address blocks: 2406:9740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 2 04:31:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=17BF4B64B0BA86A3030D8CDB79B57CA8CDB9FFDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b6:00:3b:b2:0c:79:6a:eb:96:a8:fb:b1:c7:
e5:af:86:10:1b:a9:43:b0:33:1d:2d:0a:a9:e2:a9:
8a:5b:9d:15:76:f0:ae:fb:93:6a:fd:22:54:26:47:
99:5b:25:d8:ef:46:db:75:eb:9c:0e:bf:0d:f6:67:
12:c6:87:d4:a3:93:98:1b:1a:7c:ea:cf:6a:d7:c6:
43:62:91:b2:44:d0:e2:7b:a0:f7:80:fe:30:59:ab:
e5:1d:8e:ea:a6:a5:98:e7:c4:f1:8b:94:f7:19:b9:
12:71:0f:2d:d1:bc:16:cb:82:15:01:59:8a:68:13:
cf:a2:4b:11:86:9f:74:31:65:e6:46:01:9b:f6:54:
57:8e:c8:78:52:f8:4a:a6:7b:d8:31:93:90:34:a1:
53:ce:a7:14:34:18:7d:80:fd:3b:f3:a1:8f:5a:ce:
47:62:3a:74:20:23:f0:2e:99:52:a4:6b:13:5c:bc:
d8:19:1a:09:90:e2:6e:f4:58:de:72:52:f4:82:b5:
df:29:09:89:df:fd:81:f1:76:22:59:c7:87:83:1c:
41:90:4a:78:fa:9b:f3:e5:29:53:ec:d3:25:a2:9b:
62:e6:8e:64:d6:96:5f:99:2d:83:9c:c2:06:2f:33:
88:83:21:cc:33:3a:08:6f:5b:c9:c6:61:a9:16:8e:
0f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BF:4B:64:B0:BA:86:A3:03:0D:8C:DB:79:B5:7C:A8:CD:B9:FF:DB
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/F79LZLC6hqMDDYzbebV8qM25_9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:9740::/32
Signature Algorithm: sha256WithRSAEncryption
58:98:f6:83:c0:cb:f5:1d:2c:98:06:88:91:89:ae:f4:48:bb:
e3:30:6c:df:16:c0:a2:a2:c8:4f:c0:ef:0a:e5:f5:13:23:14:
64:46:8a:b5:93:8f:36:3a:c8:04:7c:7a:ce:06:13:6e:c1:87:
e8:bd:37:5e:b5:98:be:e7:af:e2:20:85:7f:fa:2d:e5:2a:42:
bb:53:b6:ab:0c:90:d1:dc:87:22:de:54:70:cd:17:9c:4d:90:
0e:ca:76:c0:be:a5:d0:f7:8d:4d:27:c5:7c:2b:5f:35:d8:23:
6c:d4:59:d8:99:58:e3:c2:28:e2:ba:eb:e8:ff:5c:32:18:47:
10:08:a0:c0:aa:b8:4d:dd:7e:06:c2:31:9f:c0:bd:0c:84:bf:
08:64:25:cd:ab:2d:c3:2b:01:a9:f8:7e:ec:3b:29:dd:06:c5:
2a:6a:a6:32:d4:2e:9c:6d:b6:27:c4:5b:3b:43:ba:9d:df:4c:
e6:6d:52:87:12:ba:3c:20:60:4f:ac:5a:ad:54:78:35:dd:3a:
54:d4:d9:78:87:df:17:0a:f9:52:4a:ec:29:9b:40:b4:22:45:
0d:e7:3c:cd:68:68:1d:83:a6:98:47:41:af:97:e6:16:08:26:
91:c2:c6:20:17:af:b5:9c:e4:a7:24:fa:6e:a4:20:43:a3:f9:
0a:eb:e5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org