Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/O2gMno-YT6tBs9of3eN0sTsle8o.roa
File: O2gMno-YT6tBs9of3eN0sTsle8o.roa (raw, json)
Hash identifier: 0uBKetPq1sLzsQesNZAXSV6uslgo5DgVLeBpcOkSpkU=
Subject key identifier: 3B:68:0C:9E:8F:98:4F:AB:41:B3:DA:1F:DD:E3:74:B1:3B:25:7B:CA
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 03
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/O2gMno-YT6tBs9of3eN0sTsle8o.roa
Signing time: Wed 07 Oct 2020 03:14:56 +0000
ROA not before: Wed 07 Oct 2020 03:14:56 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 209557
IP address blocks: 2406:8dc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Oct 7 03:14:56 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=3B680C9E8F984FAB41B3DA1FDDE374B13B257BCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b0:2c:f6:22:bb:ec:95:56:ce:db:3d:0d:e0:
ca:3a:f9:11:4d:2a:c0:5f:ce:b7:74:c4:ca:d9:e3:
1c:14:a4:86:db:1b:74:a1:96:cb:d8:fc:4f:a6:25:
b5:59:03:34:57:ba:83:f2:23:9f:7a:f0:79:77:b2:
71:48:61:e0:99:f4:ad:6a:ad:33:18:82:15:e3:1b:
14:68:96:34:66:d5:46:14:b3:55:7d:60:8e:f9:5a:
62:dc:70:46:80:e6:87:d7:42:b7:51:f8:f3:82:a2:
52:2e:d0:2f:57:c1:b3:da:0a:bd:9e:8c:7a:0c:e9:
72:45:23:47:3a:63:1e:de:16:9c:15:61:5f:77:6f:
33:7c:a1:e2:6e:86:a2:57:c3:7d:97:73:db:30:6c:
9e:f5:a7:71:9f:4a:00:83:be:84:f6:87:3f:a8:4d:
9a:44:bb:14:8e:2a:24:95:7e:af:7b:2f:24:66:e7:
b5:cf:84:66:a5:bd:df:c5:2c:2f:72:f3:6f:e2:29:
88:73:22:97:b7:91:75:02:11:f2:15:98:95:1d:49:
87:a4:24:51:57:51:e3:e9:77:e0:d8:ac:c7:b5:b2:
26:ab:2c:6e:ac:50:f4:ca:d9:14:b6:b8:03:e2:a0:
a0:0c:be:15:cb:28:4f:07:d4:ec:68:8e:b6:06:10:
69:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:68:0C:9E:8F:98:4F:AB:41:B3:DA:1F:DD:E3:74:B1:3B:25:7B:CA
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/O2gMno-YT6tBs9of3eN0sTsle8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
a8:c9:b6:0d:ab:0a:2c:40:d5:28:a4:3f:a1:a4:f9:79:0a:55:
53:98:f1:08:f4:f3:08:0b:50:6e:1c:85:6d:9e:6b:d9:76:23:
4b:0b:76:b0:3f:a4:37:75:0e:42:af:66:eb:fe:5f:b0:d2:75:
c1:24:a6:20:6c:7c:ad:34:f8:44:00:4e:a9:ab:2c:6b:6c:4a:
63:e7:31:e4:fd:de:2f:ec:8e:b5:fe:0e:e2:29:fb:54:6c:0e:
45:de:7b:ae:82:9b:51:79:68:c1:ec:c4:0a:8a:17:fd:86:a5:
ef:fe:13:59:25:76:7a:7a:d4:74:93:ac:45:c4:82:c9:7f:dd:
70:42:da:7a:c6:07:d8:fc:a9:fd:fb:fd:0a:1b:f8:16:63:07:
56:16:97:da:e3:54:ca:c1:67:83:33:9a:d0:51:e8:fc:8b:a0:
2d:9c:f5:cc:cb:d1:51:6b:fe:32:94:0b:35:30:76:c1:e1:38:
0d:24:fc:00:c1:88:27:8c:e4:c0:2f:46:77:58:f9:54:d4:b9:
fe:c2:a2:30:ff:f6:67:4e:fe:0e:9f:63:9d:a4:20:0e:ee:0c:
e5:6d:e5:8c:96:ef:29:9c:cf:2d:fe:d9:6c:b4:52:c2:98:3f:
28:bd:6b:b7:c4:67:36:5d:84:4a:e1:63:c9:7d:88:e1:0f:6c:
9c:7f:54:e3
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1N0E5
OTRCRDYwNTU1MTQ1Q0I2NDUyREM2QTk4MEZDODUxMTM2QkRBMB4XDTIwMTAwNzAz
MTQ1NloXDTIxMTAwNTA0MDQzNlowMzExMC8GA1UEAxMoM0I2ODBDOUU4Rjk4NEZB
QjQxQjNEQTFGRERFMzc0QjEzQjI1N0JDQTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKewLPYiu+yVVs7bPQ3gyjr5EU0qwF/Ot3TEytnjHBSkhtsbdKGW
y9j8T6YltVkDNFe6g/Ijn3rweXeycUhh4Jn0rWqtMxiCFeMbFGiWNGbVRhSzVX1g
jvlaYtxwRoDmh9dCt1H484KiUi7QL1fBs9oKvZ6MegzpckUjRzpjHt4WnBVhX3dv
M3yh4m6GolfDfZdz2zBsnvWncZ9KAIO+hPaHP6hNmkS7FI4qJJV+r3svJGbntc+E
ZqW938UsL3Lzb+IpiHMil7eRdQIR8hWYlR1Jh6QkUVdR4+l34Nisx7WyJqssbqxQ
9MrZFLa4A+KgoAy+FcsoTwfU7GiOtgYQaZkCAwEAAaOCAfEwggHtMB0GA1UdDgQW
BBQ7aAyej5hPq0Gz2h/d43SxOyV7yjAfBgNVHSMEGDAWgBRXqZS9YFVRRctkUtxq
mA/IURNr2jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTExQQVNT
L1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVjZtVXZXQlZVVVhMWkZMY2FwZ1B5RkVUYTlvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFTUy9PMmdNbm8tWVQ2dEJzOW9m
M2VOMHNUc2xlOG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
JAaNwDANBgkqhkiG9w0BAQsFAAOCAQEAqMm2DasKLEDVKKQ/oaT5eQpVU5jxCPTz
CAtQbhyFbZ5r2XYjSwt2sD+kN3UOQq9m6/5fsNJ1wSSmIGx8rTT4RABOqassa2xK
Y+cx5P3eL+yOtf4O4in7VGwORd57roKbUXlowezECooX/Yal7/4TWSV2enrUdJOs
RcSCyX/dcELaesYH2Pyp/fv9Chv4FmMHVhaX2uNUysFngzOa0FHo/IugLZz1zMvR
UWv+MpQLNTB2weE4DST8AMGIJ4zkwC9Gd1j5VNS5/sKiMP/2Z07+Dp9jnaQgDu4M
5W3ljJbvKZzPLf7ZbLRSwpg/KL1rt8RnNl2ESuFjyX2I4Q9snH9U4w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org