Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/i3Va0bzrpYIb7ZyAvWb98FidQ2I.roa
File: i3Va0bzrpYIb7ZyAvWb98FidQ2I.roa (raw, json)
Hash identifier: cBE3/dbr4aipp3AgbTOuSrS7BDB/0gXcbdBp3Hasays=
Subject key identifier: 8B:75:5A:D1:BC:EB:A5:82:1B:ED:9C:80:BD:66:FD:F0:58:9D:43:62
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 09E3
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/i3Va0bzrpYIb7ZyAvWb98FidQ2I.roa
Signing time: Tue 12 Apr 2022 03:55:36 +0000
ROA not before: Tue 12 Apr 2022 03:55:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131600
IP address blocks: 2403:a3c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2531 (0x9e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Apr 12 03:55:36 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8B755AD1BCEBA5821BED9C80BD66FDF0589D4362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:49:34:38:35:84:d7:f4:8d:fb:f4:91:e1:99:
29:38:dd:76:de:7d:34:85:b0:7d:49:35:28:cd:dd:
0d:c9:53:a1:ab:5e:a2:99:b0:8e:bc:70:24:de:30:
ba:72:51:a3:ce:81:af:e7:48:85:91:98:41:cd:2a:
d8:1a:b4:b1:62:a2:03:7a:e6:41:be:18:ff:1a:4f:
ea:1a:57:f1:39:ab:71:ba:03:b6:b6:74:c5:08:e9:
d8:ea:82:19:4d:3a:1c:0c:43:17:2a:4a:8a:7b:7d:
74:06:2b:2e:20:93:c3:96:c3:54:b0:f0:58:c3:10:
13:1d:d7:89:b1:c3:75:07:0e:e5:31:e5:23:ec:79:
bc:e6:c0:7c:da:89:6d:41:cb:43:15:c5:f6:17:dc:
99:b9:ec:6b:63:ea:9f:06:13:09:04:cb:2e:5f:e2:
90:23:e9:63:ca:9f:61:0a:65:3a:6e:8b:69:48:4b:
c8:85:b3:8e:dc:11:2b:fb:0a:cf:60:42:29:4d:08:
ac:f9:a3:b4:5f:ad:d9:46:0e:1f:90:b4:cb:dc:3e:
94:b7:d0:88:6d:0f:73:da:02:b2:6d:1c:aa:6e:1c:
5f:96:9f:14:ff:ae:36:03:25:1e:f3:e9:28:53:04:
44:46:de:a2:c5:f9:30:99:b4:b1:aa:0a:16:6b:e5:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:75:5A:D1:BC:EB:A5:82:1B:ED:9C:80:BD:66:FD:F0:58:9D:43:62
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/i3Va0bzrpYIb7ZyAvWb98FidQ2I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a3c0::/32
Signature Algorithm: sha256WithRSAEncryption
b3:4d:f5:a7:45:90:75:06:fa:76:f3:36:0a:f2:dd:54:59:96:
61:5d:35:1e:37:6b:fd:26:05:0b:78:a9:88:52:39:34:8b:c0:
1d:8a:66:16:18:f3:8b:81:c4:c2:dd:c2:85:ca:d2:28:fc:b9:
7e:8b:30:e8:5a:97:e5:cb:c2:cc:0d:97:d5:03:5a:ea:91:0e:
c6:b9:5e:79:7c:bc:06:0d:81:5e:ea:c8:6e:9b:59:c4:96:a0:
f0:88:80:43:d3:d7:64:32:8d:e3:84:93:79:6d:c9:38:f3:2a:
bd:00:8d:ed:6d:f6:47:8e:34:93:b7:ef:92:b0:a9:ae:6b:fc:
9b:96:17:eb:99:73:ad:3d:b6:0a:2a:be:42:01:b0:6d:06:2a:
be:aa:5c:40:da:9a:73:fe:a2:5b:ec:9c:bc:b8:b2:86:ec:d7:
7b:53:66:80:14:91:cb:e2:96:b1:af:85:9e:1a:8f:cc:ff:69:
d5:f8:67:84:52:21:fa:66:33:78:37:a0:9d:d2:bc:e9:0a:dd:
0a:3a:33:d3:6a:c5:82:11:4a:e5:45:31:3a:bb:71:3e:99:5e:
9b:b0:aa:ba:37:57:4c:c4:56:b9:80:e4:6a:ab:42:79:e5:65:
66:c2:14:12:68:9a:d3:ca:32:7e:44:5f:24:8d:67:13:f5:3d:
e6:f1:1c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org