Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-FOiBvBC5l4HZw_AM1885Wo_Nng.roa
File: -FOiBvBC5l4HZw_AM1885Wo_Nng.roa (raw, json)
Hash identifier: QGa1f6PgK/7ZuAw9mM7z3SQSyDvMZcECtUd99HvM0Z8=
Subject key identifier: F8:53:A2:06:F0:42:E6:5E:07:67:0F:C0:33:5F:3C:E5:6A:3F:36:78
Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Certificate serial: 26
Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-FOiBvBC5l4HZw_AM1885Wo_Nng.roa
Signing time: Mon 16 Jan 2023 10:00:19 +0000
ROA not before: Mon 16 Jan 2023 10:00:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38136
IP address blocks: 2400:bea0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Validity
Not Before: Jan 16 10:00:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F853A206F042E65E07670FC0335F3CE56A3F3678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a3:88:18:ee:d5:39:1f:35:2a:26:ca:0f:fb:
18:d4:86:45:7b:66:2c:08:6b:a5:da:dc:94:91:1b:
6d:35:55:1f:96:23:60:ab:23:bd:78:e7:1e:93:22:
47:fd:50:fe:7e:1d:b2:f5:10:5e:59:1d:02:36:1e:
bf:35:78:c6:1c:b3:a7:2f:ae:20:d8:27:0c:ac:8e:
24:e2:0b:a9:89:dd:6c:97:fd:d9:48:92:ab:d3:4e:
58:f5:5c:e2:f1:35:f3:c8:22:ec:58:10:fe:47:b3:
c3:7d:06:9a:54:fe:7b:9f:c0:a6:90:5c:b9:ae:f5:
0a:d2:06:3a:bb:cd:01:89:93:9a:93:0f:54:29:f1:
df:88:19:92:ba:b7:8c:33:b7:6c:c3:b2:9e:29:45:
fb:43:a9:73:a3:fe:f9:65:91:78:d6:27:6a:5b:68:
a1:f2:90:e8:db:e2:1b:dc:de:1f:00:c2:17:fc:39:
b5:ce:50:ac:8d:b7:bf:1d:b8:14:07:70:12:ee:9f:
ae:5c:03:d8:e7:75:d5:f4:fb:c1:33:a0:1c:43:67:
9c:a1:24:8b:e4:74:c6:bb:3c:f0:ec:4e:dc:6b:d1:
c6:46:f3:03:52:d2:6c:5a:c8:c3:96:bc:fc:41:df:
e2:46:76:d0:5e:39:b3:57:b7:e1:51:d0:19:41:78:
dc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:53:A2:06:F0:42:E6:5E:07:67:0F:C0:33:5F:3C:E5:6A:3F:36:78
X509v3 Authority Key Identifier:
keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-FOiBvBC5l4HZw_AM1885Wo_Nng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:bea0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:e8:70:72:83:67:ae:8a:4f:77:54:76:85:e5:85:59:8d:bd:
b1:85:42:ed:1b:e4:73:e3:87:f4:d3:aa:49:8e:56:f3:71:88:
fd:47:f8:29:a7:9c:f3:f6:a1:12:24:8c:29:d4:1b:3e:ce:7f:
56:a0:cc:61:24:a3:78:3a:87:3e:74:a3:cf:71:0c:f0:26:f5:
a5:eb:69:20:89:f3:e5:53:dc:8a:a8:6a:0b:7d:3d:2b:8a:9e:
4b:2e:55:97:d3:ab:fc:86:1a:ae:38:f1:f2:93:46:37:31:45:
df:6b:8d:f7:c4:74:e0:86:31:95:7d:01:69:f7:cf:d1:ac:ef:
cf:d2:1e:8f:c8:46:f4:94:56:12:75:f8:3e:2d:ff:0f:1d:31:
83:8e:20:e2:9a:f0:60:e8:be:c4:df:31:32:14:38:e3:ba:fe:
1b:c2:f6:c2:48:67:79:96:da:c1:47:1a:e7:f3:32:40:4f:b4:
a6:0c:d7:10:58:86:41:24:89:a8:7b:38:c9:5b:47:3e:cd:f3:
05:da:e5:23:48:ba:b5:18:23:c2:db:d4:34:a1:fd:4c:a4:4b:
72:31:21:2d:0f:f8:83:5f:64:57:87:fa:ce:b2:b4:86:42:c2:
7d:d7:53:12:ab:6f:ba:09:4b:31:dd:07:a0:af:9b:a3:b7:87:
1e:c9:26:94
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBNzM2
Q0ZGMTk0ODc0MDYxNEQwMzIxRTYzQjg0MDNFQjlBQjk3NDhEMB4XDTIzMDExNjEw
MDAxOVoXDTIzMDkwNjAzMDAzNVowMzExMC8GA1UEAxMoRjg1M0EyMDZGMDQyRTY1
RTA3NjcwRkMwMzM1RjNDRTU2QTNGMzY3ODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ6jiBju1TkfNSomyg/7GNSGRXtmLAhrpdrclJEbbTVVH5YjYKsj
vXjnHpMiR/1Q/n4dsvUQXlkdAjYevzV4xhyzpy+uINgnDKyOJOILqYndbJf92UiS
q9NOWPVc4vE188gi7FgQ/kezw30GmlT+e5/AppBcua71CtIGOrvNAYmTmpMPVCnx
34gZkrq3jDO3bMOynilF+0Opc6P++WWReNYnaltoofKQ6NviG9zeHwDCF/w5tc5Q
rI23vx24FAdwEu6frlwD2Od11fT7wTOgHENnnKEki+R0xrs88OxO3GvRxkbzA1LS
bFrIw5a8/EHf4kZ20F45s1e34VHQGUF43DMCAwEAAaOCAfUwggHxMB0GA1UdDgQW
BBT4U6IG8ELmXgdnD8AzXzzlaj82eDAfBgNVHSMEGDAWgBSnNs/xlIdAYU0DIeY7
hAPrmrl0jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NIRU5U
RUsvcHpiUDhaU0hRR0ZOQXlIbU80UUQ2NXE1ZEkwLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9wemJQOFpTSFFHRk5BeUhtTzRRRDY1cTVkSTAuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NIRU5URUsvLUZPaUJ2QkM1bDRI
WndfQU0xODg1V29fTm5nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw
BwMFACQAvqAwDQYJKoZIhvcNAQELBQADggEBALbocHKDZ66KT3dUdoXlhVmNvbGF
Qu0b5HPjh/TTqkmOVvNxiP1H+CmnnPP2oRIkjCnUGz7Of1agzGEko3g6hz50o89x
DPAm9aXraSCJ8+VT3Iqoagt9PSuKnksuVZfTq/yGGq448fKTRjcxRd9rjffEdOCG
MZV9AWn3z9Gs78/SHo/IRvSUVhJ1+D4t/w8dMYOOIOKa8GDovsTfMTIUOOO6/hvC
9sJIZ3mW2sFHGufzMkBPtKYM1xBYhkEkiah7OMlbRz7N8wXa5SNIurUYI8Lb1DSh
/UykS3IxIS0P+INfZFeH+s6ytIZCwn3XUxKrb7oJSzHdB6Cvm6O3hx7JJpQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org