Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/XLrkYshd_uTARX6nyXUAaInah5Y.roa
File: XLrkYshd_uTARX6nyXUAaInah5Y.roa (raw, json)
Hash identifier: W3P1vTnGdvZ7Clu7a8DtgzrPmff1wgGFDxDjGRdHMaE=
Subject key identifier: 5C:BA:E4:62:C8:5D:FE:E4:C0:45:7E:A7:C9:75:00:68:89:DA:87:96
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 0DDE
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/XLrkYshd_uTARX6nyXUAaInah5Y.roa
Signing time: Tue 29 Sep 2020 09:59:23 +0000
ROA not before: Tue 29 Sep 2020 09:59:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131636
IP address blocks: 2403:b9c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3550 (0xdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Sep 29 09:59:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5CBAE462C85DFEE4C0457EA7C975006889DA8796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:a1:06:f9:27:96:7f:45:25:f3:3d:14:40:
69:1b:72:ec:f3:e6:26:d7:e8:be:0a:5a:09:74:d9:
a0:8f:51:3b:61:69:ee:ae:9d:a1:a7:19:e5:c7:fb:
1b:82:ad:5e:9b:db:2b:42:58:bf:49:cb:a7:b1:e8:
fb:5f:19:4e:86:dc:f5:b1:66:15:7f:00:f1:cc:e2:
2b:5c:cd:7d:05:7f:3c:0e:63:d5:ca:00:77:50:00:
f0:a7:3b:7f:7c:18:6f:35:6b:9c:b0:29:ba:fb:6f:
34:d7:a1:ec:3e:f2:ea:6e:e2:fb:5a:0b:f8:34:ce:
78:2a:bc:6e:85:c2:8c:ac:46:74:f7:e9:f5:f0:0c:
5f:a6:b4:6d:72:cf:45:06:d7:e0:5f:66:16:40:59:
79:41:ab:2e:36:af:4a:e5:f7:66:5e:f7:99:05:f8:
3d:b0:90:c4:90:70:81:dd:5c:4c:9b:b0:21:5d:a1:
77:87:19:de:fc:e9:ad:55:b9:69:92:85:b7:76:a4:
f5:b7:59:2f:4c:39:1e:74:3d:1f:9c:ad:23:12:75:
2d:87:14:d9:5f:54:6c:ec:8f:ea:e5:f8:d1:e5:3f:
af:22:ff:ed:e7:f1:cf:91:7a:40:94:99:93:94:58:
53:f0:ab:ca:86:20:b0:a5:9e:b9:fb:54:e4:21:2b:
c2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BA:E4:62:C8:5D:FE:E4:C0:45:7E:A7:C9:75:00:68:89:DA:87:96
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/XLrkYshd_uTARX6nyXUAaInah5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b9c0::/32
Signature Algorithm: sha256WithRSAEncryption
6e:f8:4c:bb:cc:ff:99:57:be:86:d6:ee:d9:3e:05:b3:e6:d6:
19:0c:ec:ec:6b:b4:7c:a6:62:27:36:d5:96:e4:b9:b2:2c:f8:
cb:bf:4c:c6:fb:e5:33:da:7c:a5:af:a1:c2:2d:ba:34:d6:68:
f7:2c:14:4c:8c:0d:66:dc:64:e4:f0:98:73:6b:11:e5:0f:0c:
46:61:9a:4d:6d:ff:6a:b5:c4:e5:82:12:4e:2a:dc:f1:1a:5c:
ed:e8:36:35:da:3d:64:a6:01:a2:2e:8c:9d:7a:dc:cd:30:97:
b0:1a:74:46:11:c4:3a:fb:27:fa:8d:bb:a2:a5:96:a5:f0:0d:
58:d1:b4:fe:3e:16:5c:a1:54:e6:af:9d:43:84:f2:6c:84:0f:
e1:ad:d4:8e:5f:6b:fd:6c:e5:aa:73:e9:8d:cc:19:e3:4e:87:
a5:b9:1e:47:b6:ea:08:e2:3f:f5:b1:aa:5c:75:53:5d:e9:37:
cc:96:1e:90:c5:09:f4:6e:e6:00:3a:59:23:8e:2c:4f:8c:31:
51:dc:13:29:77:03:17:11:e8:f4:d3:25:84:cb:cd:c8:16:da:
b1:00:88:06:1d:97:f0:0c:8c:01:4f:da:aa:5e:ab:2d:2e:7f:
55:5c:74:a0:1b:8a:65:72:ce:1e:38:a3:0d:69:1b:c4:43:04:
6f:49:f6:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org