Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/pch2TTcE7Nv8w1a_TI_02hH5RkU.roa
File: pch2TTcE7Nv8w1a_TI_02hH5RkU.roa (raw, json)
Hash identifier: 3wWrdGqPTl+JxFDOVS45H9ESHwIZ8qzTO+aezZ5fUgQ=
Subject key identifier: A5:C8:76:4D:37:04:EC:DB:FC:C3:56:BF:4C:8F:F4:DA:11:F9:46:45
Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF
Certificate serial: 0B
Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/pch2TTcE7Nv8w1a_TI_02hH5RkU.roa
Signing time: Tue 23 May 2023 03:28:58 +0000
ROA not before: Tue 23 May 2023 03:28:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63897
IP address blocks: 2400:4460::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF
Validity
Not Before: May 23 03:28:58 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A5C8764D3704ECDBFCC356BF4C8FF4DA11F94645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f3:64:f6:bc:a6:ba:71:71:76:40:bf:25:3c:
21:7d:33:b5:0c:c4:77:b9:c7:95:d9:0f:a0:a6:f0:
de:76:ef:8d:be:70:fb:a3:44:61:44:12:4a:88:9a:
29:7a:42:b4:20:05:d8:d1:5a:7d:d4:57:25:f3:45:
b3:67:48:7d:3a:20:b8:c6:f8:94:53:54:e9:56:02:
da:60:52:a8:09:a2:6a:bf:59:a0:e0:41:54:fe:68:
39:39:08:59:ca:4d:bf:7b:a1:cc:91:ff:a1:90:cf:
ec:6d:9a:75:d0:14:c1:9e:b2:32:08:81:ab:c2:39:
c6:0c:86:0d:e0:07:b3:6e:e7:00:81:d7:02:e3:5c:
9f:ea:fb:70:00:93:7b:93:04:bf:44:dc:9e:59:e7:
a3:61:c2:bc:97:92:3e:5a:ee:a8:36:d2:b1:b7:08:
14:6b:a7:e4:82:ed:2a:3e:7c:53:f5:de:b6:10:40:
d2:28:4a:16:ab:3d:b9:4f:e6:61:0c:bd:3c:dc:b2:
d3:08:15:26:7b:3c:06:75:95:9a:6a:f7:b9:2a:5d:
bb:02:1b:b7:ec:bf:43:a7:e6:ef:2a:17:38:0c:33:
27:9e:a1:cb:e3:ff:b5:36:8b:55:df:65:3e:38:1c:
4a:79:97:f3:58:fa:f4:2b:46:b4:53:a0:17:db:38:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C8:76:4D:37:04:EC:DB:FC:C3:56:BF:4C:8F:F4:DA:11:F9:46:45
X509v3 Authority Key Identifier:
keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/pch2TTcE7Nv8w1a_TI_02hH5RkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4460::/32
Signature Algorithm: sha256WithRSAEncryption
9b:22:2a:30:6a:4e:de:ea:cb:ee:6d:fe:df:58:e6:71:ff:41:
96:25:90:97:20:fa:20:1c:e1:79:88:b4:e8:65:e1:cb:6e:0b:
ec:47:1e:b2:09:92:18:90:41:de:c9:9f:6b:13:07:29:99:9e:
2c:1a:a3:3b:89:fc:c9:23:d1:be:fe:16:7b:e7:89:b4:ab:56:
36:f9:e4:98:14:6f:34:45:0a:34:40:fd:1e:3f:fe:e1:69:3f:
44:51:87:1e:61:5d:ab:3f:7b:b0:a8:5e:40:10:96:e0:d6:9b:
6c:5c:87:a4:75:93:30:a8:31:ba:21:b7:a1:03:c6:70:d7:0f:
4f:32:63:15:2f:51:a3:06:45:54:ba:fb:89:01:77:68:82:4a:
cb:ae:39:34:7f:47:21:46:34:9d:0e:da:b5:67:16:62:c3:f0:
b2:13:34:8c:2a:38:85:b7:35:b3:b5:e3:95:c0:f9:62:13:d7:
9c:85:ac:f7:ff:4b:b4:dc:df:e0:f0:25:5f:ac:b0:07:f6:36:
2f:2e:da:02:d2:7d:a4:47:59:4d:ff:c0:e7:3b:c1:97:26:c7:
bf:29:4a:60:38:e8:82:25:a4:a9:97:f7:0c:68:af:bf:5f:06:
e5:b3:e1:e4:a7:6e:9a:25:8a:10:f3:47:49:7a:eb:e0:30:55:
f7:c8:01:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org