Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/zcrZ2HHPb-XvjiYuusIEG-Qlvcg.roa
File: zcrZ2HHPb-XvjiYuusIEG-Qlvcg.roa (raw, json)
Hash identifier: f2nqV7/voTVwk7eXeT6+Lfpg1q/Gcal1G9jReeGRFa0=
Subject key identifier: CD:CA:D9:D8:71:CF:6F:E5:EF:8E:26:2E:BA:C2:04:1B:E4:25:BD:C8
Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF
Certificate serial: 04
Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/zcrZ2HHPb-XvjiYuusIEG-Qlvcg.roa
Signing time: Tue 23 May 2023 02:59:05 +0000
ROA not before: Tue 23 May 2023 02:59:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 63897
IP address blocks: 2400:4460::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF
Validity
Not Before: May 23 02:59:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CDCAD9D871CF6FE5EF8E262EBAC2041BE425BDC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a8:ee:f2:7a:e5:29:ee:29:fa:b6:8a:f0:4f:
91:e7:bc:a1:ec:7f:9f:f3:f6:68:b4:38:72:31:30:
38:53:3d:f8:40:20:ab:ef:bb:cf:ba:1b:30:e6:ba:
9f:1a:fd:b3:c4:78:eb:e3:1d:99:81:42:b0:85:04:
30:3a:f1:c2:55:83:6d:75:75:38:28:67:d8:7d:97:
ba:d7:d7:40:de:ab:c4:ed:d5:8f:76:87:e6:90:dd:
75:a2:5a:18:3f:fd:05:04:cb:7a:ad:26:da:11:0b:
ad:1d:71:97:d7:12:73:63:2d:07:f8:a1:85:55:3e:
14:e2:f3:d3:78:3f:d2:54:a1:cb:5b:e5:61:88:b5:
d8:12:c2:87:cd:ed:04:2f:df:27:4e:4a:a5:b6:13:
d7:56:91:7e:64:1e:52:7a:06:73:ff:7f:e4:7c:d7:
b2:87:c7:af:fa:9d:d4:5e:e5:b1:4e:bb:6d:86:2f:
ad:d3:1d:c3:89:f2:51:c7:ab:89:e2:63:80:ce:8f:
c7:4e:18:24:77:d3:66:1e:ce:a1:48:84:3b:21:6f:
16:b5:02:ba:45:0d:ae:75:1d:53:3a:38:a7:4c:84:
52:96:67:03:a6:7b:8b:12:39:1b:1c:44:d5:0d:14:
a3:6c:83:2a:b1:66:9b:21:e7:1d:35:a1:8b:7c:e1:
30:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CA:D9:D8:71:CF:6F:E5:EF:8E:26:2E:BA:C2:04:1B:E4:25:BD:C8
X509v3 Authority Key Identifier:
keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/zcrZ2HHPb-XvjiYuusIEG-Qlvcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:4460::/32
Signature Algorithm: sha256WithRSAEncryption
5b:d0:b6:d5:55:b4:be:09:cb:13:73:ff:35:4f:5b:99:a0:1c:
03:e3:64:47:20:1c:2a:ff:b7:41:48:03:0a:a8:ee:8d:49:7f:
00:f2:f7:37:4a:8f:1f:fb:78:cd:14:ab:5d:cd:4e:92:e4:10:
16:32:f5:5a:e4:c8:52:33:89:6e:26:0d:b6:b1:10:c2:d6:06:
03:49:10:9a:aa:46:54:bf:a2:f5:a2:2f:1f:01:b7:90:d9:cf:
d9:ee:45:83:83:9d:63:3a:66:39:99:64:3d:4c:2c:cf:29:bf:
95:fe:74:ed:ae:8c:14:b4:9a:b8:da:6f:cd:be:8a:1b:33:24:
20:4a:a7:41:d1:18:33:ed:19:a6:4b:ce:fd:e0:ae:7d:0e:97:
f1:a4:8a:da:6b:49:0c:29:ac:47:5f:17:b7:39:31:3a:33:b6:
b7:c4:81:83:b8:e5:b5:86:48:ad:31:f5:d0:7b:da:77:33:21:
df:77:4d:02:f0:ff:f8:32:89:93:b7:af:f3:fc:1f:b0:4f:28:
42:da:a2:7a:3c:17:af:5d:5f:ba:fc:80:39:71:1c:0a:d8:ab:
32:3d:0b:05:e0:3f:66:c4:fa:fa:20:7b:18:4e:67:55:7a:0d:
33:25:12:63:3c:06:13:cc:69:1c:85:2d:a4:16:8a:59:da:c8:
65:af:d0:e9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RTg0
NzEwOEVCQTBCNTUwQkMwMjBGRDlCMURDNkRFQjI5RTBEQkVGMB4XDTIzMDUyMzAy
NTkwNVoXDTIzMDkwNjAzMDAzNVowMzExMC8GA1UEAxMoQ0RDQUQ5RDg3MUNGNkZF
NUVGOEUyNjJFQkFDMjA0MUJFNDI1QkRDODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMOo7vJ65SnuKfq2ivBPkee8oex/n/P2aLQ4cjEwOFM9+EAgq++7
z7obMOa6nxr9s8R46+MdmYFCsIUEMDrxwlWDbXV1OChn2H2XutfXQN6rxO3Vj3aH
5pDddaJaGD/9BQTLeq0m2hELrR1xl9cSc2MtB/ihhVU+FOLz03g/0lShy1vlYYi1
2BLCh83tBC/fJ05KpbYT11aRfmQeUnoGc/9/5HzXsofHr/qd1F7lsU67bYYvrdMd
w4nyUcerieJjgM6Px04YJHfTZh7OoUiEOyFvFrUCukUNrnUdUzo4p0yEUpZnA6Z7
ixI5GxxE1Q0Uo2yDKrFmmyHnHTWhi3zhMLECAwEAAaOCAe0wggHpMB0GA1UdDgQW
BBTNytnYcc9v5e+OJi66wgQb5CW9yDAfBgNVHSMEGDAWgBSehHEI66C1ULwCD9mx
3G3rKeDb7zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9u
b1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L25vUnhDT3VndFZDOEFnX1pzZHh0NnluZzItOC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1ZPQ09NL3pjcloySEhQYi1YdmppWXV1c0lF
Ry1RbHZjZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y
cmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAERg
MA0GCSqGSIb3DQEBCwUAA4IBAQBb0LbVVbS+CcsTc/81T1uZoBwD42RHIBwq/7dB
SAMKqO6NSX8A8vc3So8f+3jNFKtdzU6S5BAWMvVa5MhSM4luJg22sRDC1gYDSRCa
qkZUv6L1oi8fAbeQ2c/Z7kWDg51jOmY5mWQ9TCzPKb+V/nTtrowUtJq42m/Nvoob
MyQgSqdB0Rgz7RmmS8794K59DpfxpIraa0kMKaxHXxe3OTE6M7a3xIGDuOW1hkit
MfXQe9p3MyHfd00C8P/4MomTt6/z/B+wTyhC2qJ6PBevXV+6/IA5cRwK2KsyPQsF
4D9mxPr6IHsYTmdVeg0zJRJjPAYTzGkchS2kFopZ2shlr9Dp
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:49:01 2025 by rpki-client