Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YaV76g71WWD8cEqxNNJfPxnJabk.roa
File: YaV76g71WWD8cEqxNNJfPxnJabk.roa (raw, json)
Hash identifier: Z5dcWxLxjXIJJHjYJ/VQinGYfuGQhllNX/tf5lZGKvk=
Subject key identifier: 61:A5:7B:EA:0E:F5:59:60:FC:70:4A:B1:34:D2:5F:3F:19:C9:69:B9
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0870
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YaV76g71WWD8cEqxNNJfPxnJabk.roa
Signing time: Wed 04 Nov 2020 08:40:24 +0000
ROA not before: Wed 04 Nov 2020 08:40:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 2405:8700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2160 (0x870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:40:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61A57BEA0EF55960FC704AB134D25F3F19C969B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:63:98:97:f3:89:34:14:e2:99:b6:6a:15:7a:
05:f8:da:92:11:5f:5f:21:c9:69:b3:e4:49:36:eb:
f9:e1:65:b6:18:9b:5a:11:9b:8a:15:77:33:31:0b:
40:c9:e3:ed:c2:70:cb:bb:63:d6:58:7c:ff:b0:40:
31:54:12:ef:d2:40:bb:a7:de:a3:c3:25:84:05:f2:
4a:b8:5f:23:a8:41:e1:df:8b:8c:c1:cd:6f:05:77:
eb:5b:27:0e:65:72:2e:af:e2:b0:42:6a:12:37:52:
d9:06:6f:41:91:da:45:db:c2:96:18:75:5b:7d:00:
1c:24:22:ce:f0:5f:2f:c0:1a:9a:bb:60:07:ec:de:
08:82:60:68:54:93:0f:ef:86:9e:86:7f:ef:4c:1d:
6f:99:0f:69:19:08:49:ad:07:72:39:d0:85:f5:a7:
e9:a1:af:84:c2:05:ad:b8:9e:86:61:38:f0:21:c3:
6a:d3:42:b1:82:5b:0c:b6:79:5a:f4:26:e7:70:d1:
02:c5:b2:27:11:c3:e3:84:a4:4a:a7:2a:14:83:f6:
31:16:2d:55:31:d2:c1:13:a9:f2:0b:95:e7:80:13:
59:c3:98:32:de:44:d0:ed:13:ef:67:32:f0:c3:e2:
5f:67:bf:c3:68:50:81:22:59:65:7c:9b:c6:8f:1c:
63:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A5:7B:EA:0E:F5:59:60:FC:70:4A:B1:34:D2:5F:3F:19:C9:69:B9
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YaV76g71WWD8cEqxNNJfPxnJabk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:8700::/32
Signature Algorithm: sha256WithRSAEncryption
49:b3:3c:e7:26:a5:44:6c:82:d9:81:8d:78:de:cc:b1:9b:f5:
3b:83:a0:ab:29:e9:5c:ea:10:c4:32:e1:3b:4f:fa:1a:31:79:
3a:12:78:6e:bf:aa:2c:a4:ea:61:94:51:c6:d1:d7:40:88:15:
eb:f0:af:67:1d:56:30:d2:7c:c6:08:da:a2:52:c6:89:76:9d:
34:0f:c8:35:9b:ce:50:04:70:55:59:29:09:57:2a:b2:e0:6e:
c1:db:e2:51:d1:c3:d9:ff:9e:54:08:56:2f:43:4d:5d:1f:83:
f1:e0:3b:44:1c:ba:2b:f6:4f:d1:b3:cd:8e:24:9b:90:ff:57:
23:df:6c:20:60:58:87:26:c9:1d:cc:5b:19:25:4a:ac:c6:a0:
11:07:6c:ea:24:dc:e4:54:45:3f:ff:a2:5f:79:e4:54:5a:c5:
6c:44:b3:c0:eb:bb:56:cb:0c:17:1a:6d:49:33:7e:74:f3:0c:
6b:be:dd:e2:f8:44:7d:a5:f4:c3:9c:7d:d9:29:b2:2f:c8:9b:
b8:1e:06:12:95:89:6f:ce:d6:12:5e:be:36:38:66:3a:58:4e:
3b:f8:71:52:b7:23:5a:ce:34:2e:89:02:5d:85:6b:18:9d:d4:
4d:61:58:ff:03:0b:65:43:ae:d6:1b:6a:22:1b:3f:f5:01:1e:
90:a7:a3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org