Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ppnz4t5rU-MUTnjhxlDZHJgSLXs.roa
File: ppnz4t5rU-MUTnjhxlDZHJgSLXs.roa (raw, json)
Hash identifier: MfU7Tcq3vIrySVIbx10+GeXAg30cSHuLaiZDEL/1goM=
Subject key identifier: A6:99:F3:E2:DE:6B:53:E3:14:4E:78:E1:C6:50:D9:1C:98:12:2D:7B
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0773
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ppnz4t5rU-MUTnjhxlDZHJgSLXs.roa
Signing time: Tue 29 Sep 2020 09:51:43 +0000
ROA not before: Tue 29 Sep 2020 09:51:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 2407:7100::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 29 09:51:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A699F3E2DE6B53E3144E78E1C650D91C98122D7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b2:eb:87:4d:9d:58:e0:ae:87:ba:93:ed:ef:
71:9f:70:3b:01:1a:ca:66:ba:3f:40:95:6a:a8:69:
49:95:6e:49:14:dc:6b:3f:ac:95:bf:69:03:5d:68:
01:a0:58:39:24:93:0f:d4:5d:aa:e0:85:67:88:9e:
af:e2:8e:7f:c5:fb:76:b2:cd:75:62:23:b1:da:a8:
80:e0:5f:19:4e:98:b5:c4:50:b3:f1:9c:c3:6a:98:
26:ea:79:ec:98:0a:55:86:ec:8b:68:11:66:9f:0c:
d9:6b:79:b4:7d:27:b2:b4:23:75:ba:79:ca:aa:03:
a1:a8:2e:17:97:89:02:e0:f3:04:47:e4:2f:74:0a:
98:f9:c6:65:fb:26:df:e5:47:e1:ac:9b:ee:80:08:
03:f0:5a:d3:65:d8:e8:ab:88:44:21:a8:27:5b:6d:
a9:4b:7f:ea:31:a4:85:67:90:ac:8f:55:7b:9f:60:
35:fd:5c:cf:88:e2:73:48:2b:5c:ec:dd:1b:62:02:
a7:c8:4e:8e:87:2c:14:76:d0:9e:a0:6d:ff:0e:1e:
0d:cf:35:db:0f:f4:dd:4c:8a:37:92:29:96:93:63:
68:8a:73:b5:61:3a:20:d0:a3:d1:b8:de:32:fa:d1:
03:06:1b:60:5d:df:0a:63:7a:79:18:c3:43:1f:13:
c0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:99:F3:E2:DE:6B:53:E3:14:4E:78:E1:C6:50:D9:1C:98:12:2D:7B
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/ppnz4t5rU-MUTnjhxlDZHJgSLXs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:7100::/32
Signature Algorithm: sha256WithRSAEncryption
38:6a:43:55:76:d3:f2:32:d6:8c:5b:64:1f:73:9a:a3:57:9b:
27:a9:b1:69:a9:b1:80:6a:91:58:af:76:b0:8b:a2:f6:38:5e:
e0:3d:63:af:69:1f:33:ce:16:aa:49:29:94:ce:29:3e:75:8b:
a7:84:12:e6:c5:17:da:c7:72:0a:25:a0:27:c8:5a:3b:96:69:
69:fa:66:e4:a3:da:c2:b9:db:10:d8:c4:6e:fc:78:8c:9d:b7:
80:c9:49:76:36:da:36:51:25:0c:36:ef:57:4f:c2:88:83:fd:
10:91:d6:22:6d:b3:b5:4b:dd:1d:70:e8:4f:c1:56:c3:f9:2f:
c9:5e:1b:23:8b:b6:85:28:f5:06:2c:94:5f:f0:89:a1:60:97:
19:5d:e7:4f:2d:3f:40:0b:fb:c7:70:e6:73:bc:67:cc:68:5d:
aa:84:d7:68:31:f9:6f:93:d8:98:58:4d:e7:8b:80:6d:ee:4b:
6d:93:8f:6b:5b:d0:07:c8:db:33:3b:2e:dd:b2:77:66:59:45:
ad:74:2b:ce:1f:06:32:29:2b:6a:aa:36:c8:04:39:67:0c:87:
8f:b4:9e:04:ff:8e:58:f0:83:0f:bf:fa:0c:4c:10:07:75:19:
fe:c4:a1:63:d5:f8:24:53:b6:e7:6e:14:9f:b6:0e:3d:73:17:
47:5b:07:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org