Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/2spaAsDCGKKdxu1blOj9APoy8l4.roa
File: 2spaAsDCGKKdxu1blOj9APoy8l4.roa (raw, json)
Hash identifier: QTF4Xu91ymXwp6q+nMQ/dO3RclHa8O4lqXDTqIoOK0w=
Subject key identifier: DA:CA:5A:02:C0:C2:18:A2:9D:C6:ED:5B:94:E8:FD:00:FA:32:F2:5E
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 10AD
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/2spaAsDCGKKdxu1blOj9APoy8l4.roa
Signing time: Thu 15 Sep 2022 02:49:16 +0000
ROA not before: Thu 15 Sep 2022 02:49:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131636
IP address blocks: 2403:b9c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4269 (0x10ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Sep 15 02:49:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DACA5A02C0C218A29DC6ED5B94E8FD00FA32F25E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:3c:91:0b:6a:04:0a:ed:c8:7b:24:06:20:
55:34:0e:20:92:38:43:93:c8:a1:55:c3:2c:c7:2b:
e9:18:bf:74:43:78:38:87:b9:19:c9:1a:67:4e:7a:
1a:b9:d6:80:76:7c:12:92:67:04:db:db:ed:7e:68:
92:39:46:65:3b:21:d8:ad:31:7f:f1:fb:9a:6c:a1:
4d:67:d9:8a:c7:c4:51:77:b8:4a:58:13:03:a7:c7:
0d:e7:1b:d5:b2:10:bb:df:e0:bc:54:d1:e8:f0:6e:
47:ba:3c:07:23:af:90:26:17:dd:99:e8:a3:68:5c:
97:ed:49:f3:a0:17:28:f0:04:fc:3d:ed:46:1b:db:
10:e0:15:26:75:90:33:ac:51:ad:1c:a6:43:b7:c2:
bd:b1:30:bb:be:14:ec:8f:c1:2e:ff:ec:74:20:00:
c6:fb:fa:b3:66:95:f8:b8:9d:50:fa:be:61:32:7f:
1f:29:76:66:4a:52:4b:c2:02:74:bf:a8:66:61:56:
88:6c:b0:eb:6b:0b:63:fe:58:21:d2:cb:fb:7e:7f:
72:50:0a:db:62:0c:d1:cc:cc:bf:da:d9:88:32:85:
fb:40:d5:e4:11:d7:eb:40:7b:57:8c:92:1e:47:d2:
9c:6f:8e:de:ea:22:9f:4d:05:2f:82:0a:97:51:6a:
b0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CA:5A:02:C0:C2:18:A2:9D:C6:ED:5B:94:E8:FD:00:FA:32:F2:5E
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/2spaAsDCGKKdxu1blOj9APoy8l4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b9c0::/32
Signature Algorithm: sha256WithRSAEncryption
56:1e:77:d4:63:88:01:10:ca:55:0b:31:95:e1:8b:37:25:8a:
af:a5:06:dc:c1:55:30:28:c9:fe:cb:81:c4:90:6f:cb:b5:4c:
53:79:2f:7d:c0:56:3f:d0:6e:ed:59:4f:65:7d:d2:fa:66:14:
19:3f:a7:ce:a1:7f:b0:aa:bb:da:e9:3a:07:af:12:40:35:3c:
37:95:4c:d0:96:89:7a:ca:2e:97:57:c7:59:e7:c8:61:b8:f8:
3f:4d:b0:76:2b:ff:72:01:f0:a9:c7:c2:7f:94:a1:af:13:d9:
f8:15:2b:48:db:16:b0:8f:00:9e:3f:98:d6:44:bb:94:5e:9f:
4b:01:80:f8:ed:b9:c1:45:90:f2:2d:74:e7:ae:25:dd:3c:e5:
5c:e4:a9:eb:ba:b7:d1:cc:34:1a:c5:67:89:b0:ab:1d:55:49:
25:16:3c:66:eb:d1:0d:bd:67:7e:78:91:77:20:b7:ab:f7:91:
c4:c2:f3:9d:4b:2b:2b:65:7e:12:80:ef:2f:3b:77:98:65:e1:
2f:7f:ed:bb:1a:d2:98:30:d1:0f:da:48:f3:68:13:ae:57:27:
d9:8a:fa:7c:06:72:57:5c:10:26:cc:6c:52:bd:b5:04:38:fb:
8d:91:b6:12:e8:00:69:32:c2:19:01:b9:8e:d9:71:63:10:eb:
f7:6a:e8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org