Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wo9haU_VQv5w-7xr_mTtLuEh5nA.roa
File: wo9haU_VQv5w-7xr_mTtLuEh5nA.roa (raw, json)
Hash identifier: opFFY46DihkgVemXF+6N1hrGJukUNOBTBqNZMsoPmas=
Subject key identifier: C2:8F:61:69:4F:D5:42:FE:70:FB:BC:6B:FE:64:ED:2E:E1:21:E6:70
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wo9haU_VQv5w-7xr_mTtLuEh5nA.roa
Signing time: Thu 15 Sep 2022 02:43:04 +0000
ROA not before: Thu 15 Sep 2022 02:43:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131586
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C28F61694FD542FE70FBBC6BFE64ED2EE121E670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:85:8f:f8:2d:54:7f:77:c4:22:59:47:27:dd:
3f:06:6a:79:70:f6:1d:0b:b7:ee:b1:b1:e7:83:6f:
6b:db:10:8b:3b:a8:ef:1d:08:99:02:c9:aa:13:c3:
a8:53:5b:56:8d:34:2b:eb:ea:7f:d1:97:d1:d6:7e:
b1:14:e2:19:71:59:f0:0e:91:29:c7:e7:42:61:28:
b1:40:0a:5c:09:af:ff:4e:9d:5d:20:a4:3b:5c:61:
3f:64:93:9a:73:71:2e:b8:70:02:75:1d:b3:66:bb:
aa:43:8e:8a:44:ed:9d:41:08:65:2e:fa:f0:f4:f9:
9e:37:37:1c:dc:a6:25:7d:c9:8a:eb:ef:91:ad:f8:
c3:af:47:43:ef:e2:a1:dd:00:23:e0:31:bd:8b:09:
76:26:61:01:53:7a:b7:15:53:5a:8e:11:75:1d:c3:
40:3e:f7:57:f2:7d:a2:d6:bb:39:3e:0d:b1:10:b9:
0a:47:bc:74:8d:9b:98:fb:1c:8a:64:45:2b:a1:64:
7a:13:1b:2b:8b:10:af:5a:17:a9:45:16:90:a6:5d:
c2:53:21:b4:80:63:14:82:2b:42:99:c6:9a:78:f6:
a2:c7:33:72:47:72:ae:ba:44:cf:70:a8:b2:92:65:
33:0e:24:db:db:10:b9:16:68:14:0f:47:8b:59:09:
0d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:8F:61:69:4F:D5:42:FE:70:FB:BC:6B:FE:64:ED:2E:E1:21:E6:70
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wo9haU_VQv5w-7xr_mTtLuEh5nA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
9c:13:23:60:98:cd:bc:98:9c:78:ed:37:17:9d:07:e6:0e:29:
bf:6e:65:aa:08:04:19:4a:73:3e:be:7c:8f:e0:6c:54:09:18:
e4:89:73:18:48:5f:d6:d7:96:24:ad:53:69:e3:bf:1c:49:65:
5f:ce:8c:2d:05:a7:76:f1:5c:c1:31:b6:e9:3f:c0:c3:8b:1c:
16:e2:1d:3b:92:bb:d4:74:25:e8:80:e6:9e:9e:87:fc:9b:30:
80:71:df:8f:0a:31:f1:4e:6d:a9:10:fe:8c:b8:57:52:72:a0:
b4:f3:03:fd:d8:da:0d:ce:4b:a4:53:6e:9a:86:02:50:a1:dc:
53:cf:8d:63:91:9b:2b:cc:9f:20:12:63:1e:65:fb:da:4a:1a:
c9:b8:c7:ea:30:a5:fd:4e:c1:a7:5a:2f:6f:87:66:af:37:cf:
e7:60:07:10:0e:5b:4c:68:fe:d7:7c:9a:00:25:fa:ee:eb:f1:
7f:97:54:90:e9:f0:82:a9:92:fd:ca:9a:42:28:05:38:d2:55:
48:6f:12:5f:f0:b7:b3:3d:c2:fd:8c:c0:f0:9b:1a:ad:78:45:
0b:3d:74:5a:a9:35:f6:73:75:93:e1:34:69:12:45:5a:31:4f:
94:b6:27:1c:42:cc:63:85:4d:e1:e8:0e:c3:71:b0:1e:41:a5:
8c:7e:de:34
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzMDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEMyOEY2MTY5NEZENTQy
RkU3MEZCQkM2QkZFNjRFRDJFRTEyMUU2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1hY/4LVR/d8QiWUcn3T8Ganlw9h0Lt+6xseeDb2vbEIs7qO8d
CJkCyaoTw6hTW1aNNCvr6n/Rl9HWfrEU4hlxWfAOkSnH50JhKLFAClwJr/9OnV0g
pDtcYT9kk5pzcS64cAJ1HbNmu6pDjopE7Z1BCGUu+vD0+Z43NxzcpiV9yYrr75Gt
+MOvR0Pv4qHdACPgMb2LCXYmYQFTercVU1qOEXUdw0A+91fyfaLWuzk+DbEQuQpH
vHSNm5j7HIpkRSuhZHoTGyuLEK9aF6lFFpCmXcJTIbSAYxSCK0KZxpp49qLHM3JH
cq66RM9wqLKSZTMOJNvbELkWaBQPR4tZCQ2PAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUwo9haU/VQv5w+7xr/mTtLuEh5nAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvd285aGFVX1ZRdjV3LTd4cl9tVHRM
dUVoNW5BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBoEAw
DQYJKoZIhvcNAQELBQADggEBAJwTI2CYzbyYnHjtNxedB+YOKb9uZaoIBBlKcz6+
fI/gbFQJGOSJcxhIX9bXliStU2njvxxJZV/OjC0Fp3bxXMExtuk/wMOLHBbiHTuS
u9R0JeiA5p6eh/ybMIBx348KMfFObakQ/oy4V1JyoLTzA/3Y2g3OS6RTbpqGAlCh
3FPPjWORmyvMnyASYx5l+9pKGsm4x+owpf1OwadaL2+HZq83z+dgBxAOW0xo/td8
mgAl+u7r8X+XVJDp8IKpkv3KmkIoBTjSVUhvEl/wt7M9wv2MwPCbGq14RQs9dFqp
NfZzdZPhNGkSRVoxT5S2JxxCzGOFTeHoDsNxsB5BpYx+3jQ=
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:20:07 2025 by rpki-client