Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/x-beqQyBSkNaU75_SEJcEqzHuYY.roa
File: x-beqQyBSkNaU75_SEJcEqzHuYY.roa (raw, json)
Hash identifier: G+YUXjXk9sUvxhoxjrSN4TjNzinu8sd9u2BXyslTXWw=
Subject key identifier: C7:E6:DE:A9:0C:81:4A:43:5A:53:BE:7F:48:42:5C:12:AC:C7:B9:86
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A8C
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/x-beqQyBSkNaU75_SEJcEqzHuYY.roa
Signing time: Mon 14 Nov 2022 03:29:16 +0000
ROA not before: Mon 14 Nov 2022 03:29:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 2407:7100::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Nov 14 03:29:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C7E6DEA90C814A435A53BE7F48425C12ACC7B986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:99:dc:12:b7:76:90:79:7b:d1:71:19:40:
28:4a:9e:5e:0e:5b:e9:d7:30:74:97:f3:26:db:7f:
66:21:72:ef:57:0f:ef:0d:c6:3c:71:6b:42:ce:73:
00:66:b3:a9:c5:ac:f1:d6:0b:b1:86:62:e0:49:d1:
a4:48:d6:96:4e:70:b8:56:03:30:56:1c:e9:ec:e7:
e6:45:0d:e8:fd:3a:d5:73:46:d1:f7:4b:62:5c:7e:
9a:73:5e:b6:43:37:b2:40:f0:56:e0:89:4a:df:a6:
aa:68:50:ff:0c:be:94:49:a0:21:48:bf:b0:1f:f9:
92:d2:f2:15:a9:71:b6:33:31:07:6c:fe:67:82:79:
da:c7:53:3e:88:57:f9:b0:86:c8:75:b8:86:04:24:
53:66:52:fc:6e:6d:cf:bd:f5:f9:fa:26:00:29:04:
67:fa:4d:d0:87:f4:da:69:07:a9:7d:b5:9a:ca:46:
b5:52:cf:ee:e0:ad:5d:3f:3e:45:b4:cb:75:a6:43:
d5:30:c4:db:60:e1:15:5b:ad:98:5c:0f:cb:33:62:
36:81:6f:a4:7f:09:af:c9:46:45:d8:d4:31:09:c3:
8f:ce:3e:3b:ee:a8:65:0e:5f:19:e1:0d:ae:c2:bf:
3d:06:77:32:b6:ed:3a:e2:46:b8:d5:2b:e4:2e:ee:
f4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E6:DE:A9:0C:81:4A:43:5A:53:BE:7F:48:42:5C:12:AC:C7:B9:86
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/x-beqQyBSkNaU75_SEJcEqzHuYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:7100::/32
Signature Algorithm: sha256WithRSAEncryption
40:b8:d8:03:ff:a5:a2:d8:86:8c:3f:18:55:73:d1:0f:9d:af:
89:54:b4:91:5e:e2:a6:c0:28:ca:d9:2c:f6:53:fc:da:15:86:
3d:61:0f:68:41:56:5e:9a:93:af:18:09:25:f9:1f:05:05:ea:
2f:d9:ee:0a:a5:e4:5e:ed:01:4e:2b:1e:c2:20:c7:e3:ff:b1:
79:78:a2:44:6e:c7:74:3f:a5:af:55:76:75:49:c2:fc:a4:f0:
d4:88:46:27:1c:e8:93:4a:2e:0c:e8:f3:84:b3:da:8e:83:b0:
5a:8f:ca:d5:22:af:03:a0:97:05:cc:e0:1f:af:5a:51:06:d8:
02:4f:d4:d7:7f:8e:e0:09:58:ed:55:4c:c7:da:49:a9:61:3e:
aa:7c:f5:e9:36:4b:3b:33:4c:fb:73:1a:06:3d:78:ee:a0:3f:
0f:bb:f7:78:66:2c:3a:64:10:ee:65:85:3d:61:95:6a:1f:18:
89:9f:56:75:67:54:1d:dc:c3:68:62:b1:bd:f5:85:65:a9:e9:
68:3b:de:0d:e2:ca:5c:b6:54:89:fb:16:ac:91:70:c8:e3:bc:
e2:af:bc:db:f4:f5:5d:b5:4c:98:00:a9:a2:ef:ea:1e:f1:6f:
e9:f0:f8:9e:ac:f4:65:04:32:92:01:0a:27:0a:0c:ee:70:b0:
10:ce:93:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org