Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/y0aOfc5-Ain7ATHhNKBgiXkikoM.roa
File: y0aOfc5-Ain7ATHhNKBgiXkikoM.roa (raw, json)
Hash identifier: yt03xV1A3esPfuDLXRJ5bVSLc0E6MSGRoUysihyeMTk=
Subject key identifier: CB:46:8E:7D:CE:7E:02:29:FB:01:31:E1:34:A0:60:89:79:22:92:83
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 032F
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/y0aOfc5-Ain7ATHhNKBgiXkikoM.roa
Signing time: Tue 06 Sep 2022 17:49:03 +0000
ROA not before: Tue 06 Sep 2022 17:49:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38136
IP address blocks: 2406:8dc0::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 815 (0x32f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 6 17:49:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB468E7DCE7E0229FB0131E134A0608979229283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:72:38:c1:72:21:8d:ac:cf:81:f0:f6:49:73:
92:a4:af:7d:f2:0e:29:72:55:34:25:b6:51:63:dd:
67:72:80:61:83:09:e2:41:d1:63:23:21:a5:22:6b:
6c:58:4a:5b:a2:05:f1:a2:b4:39:3f:a5:49:22:ea:
a9:57:c8:6f:e9:8b:76:a8:c2:c7:15:63:10:20:c6:
65:53:27:12:ea:3d:17:14:d2:36:e9:a5:af:52:9d:
c3:df:6e:93:2d:fc:8e:31:f8:a1:e8:59:68:89:95:
40:80:1f:7f:59:61:5d:e2:d9:ab:75:d8:67:6b:75:
12:ca:b4:d6:6e:ff:3e:47:93:7d:b0:48:58:c0:8f:
d0:82:ea:53:c0:ca:c3:29:02:a5:80:79:d8:e5:37:
d5:7d:55:21:17:78:91:5f:db:0f:a2:ec:50:91:d1:
93:e5:56:91:aa:61:ee:62:ba:d3:1e:bd:22:f3:ff:
68:ab:cb:cd:07:12:ea:c2:d4:1c:e8:98:7d:fc:55:
74:81:83:ee:35:1c:5b:88:55:b9:66:f6:b1:47:9e:
1e:18:d1:4c:a6:4e:f5:94:69:ae:bf:4f:e4:5a:f0:
69:a7:17:c1:3d:52:c1:10:8a:3e:dc:bc:e6:b2:26:
82:08:f4:1c:71:9b:45:9c:ea:12:6f:b1:b2:b4:82:
ba:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:46:8E:7D:CE:7E:02:29:FB:01:31:E1:34:A0:60:89:79:22:92:83
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/y0aOfc5-Ain7ATHhNKBgiXkikoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0::/36
Signature Algorithm: sha256WithRSAEncryption
73:80:f3:ab:03:50:80:a8:bb:76:8e:56:13:9f:0f:35:a8:de:
8c:f0:cc:70:29:00:95:25:97:26:d1:5a:47:e6:7e:b2:2d:82:
c6:ba:4b:a6:ba:b4:2b:bb:f6:ed:27:d7:52:c9:b5:88:88:21:
98:da:ed:5a:46:ee:52:77:c5:7d:1d:d2:4d:ea:7c:ba:4b:1e:
45:54:c2:c2:42:ed:1a:20:5e:e4:9c:29:76:7d:15:2f:18:72:
15:7f:11:7d:85:e1:76:cb:c4:56:96:01:f8:42:01:f7:73:ce:
a8:81:d1:bd:19:6d:2a:b6:b7:40:06:0b:d9:e8:53:56:81:d6:
aa:2c:92:20:d5:6e:0b:22:0a:ec:00:5d:5f:70:84:e3:19:7d:
46:6d:46:01:74:f1:03:cc:30:4d:15:a1:24:54:1d:82:0a:03:
6b:cd:14:05:91:b8:ee:a9:2f:ca:4f:c5:47:bc:ee:21:44:8e:
85:09:2c:95:02:5c:4a:41:32:62:55:ca:16:6f:db:f2:6b:18:
10:14:60:c1:1d:b8:b0:c7:3e:b2:0c:9b:2c:7a:84:4b:25:83:
e8:d7:c6:f2:32:6e:e2:81:08:24:67:fe:ed:ae:13:cc:ae:69:
22:b0:fa:6b:cb:cb:fa:d8:3c:b3:4c:13:1a:44:05:cf:1f:f6:
cf:ce:4f:50
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB
OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMjA5MDYx
NzQ5MDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENCNDY4RTdEQ0U3RTAy
MjlGQjAxMzFFMTM0QTA2MDg5NzkyMjkyODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYcjjBciGNrM+B8PZJc5Kkr33yDilyVTQltlFj3WdygGGDCeJB
0WMjIaUia2xYSluiBfGitDk/pUki6qlXyG/pi3aowscVYxAgxmVTJxLqPRcU0jbp
pa9SncPfbpMt/I4x+KHoWWiJlUCAH39ZYV3i2at12GdrdRLKtNZu/z5Hk32wSFjA
j9CC6lPAysMpAqWAedjlN9V9VSEXeJFf2w+i7FCR0ZPlVpGqYe5iutMevSLz/2ir
y80HEurC1BzomH38VXSBg+41HFuIVblm9rFHnh4Y0UymTvWUaa6/T+Ra8GmnF8E9
UsEQij7cvOayJoII9Bxxm0Wc6hJvsbK0grr/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUy0aOfc5+Ain7ATHhNKBgiXkikoMwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc
apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT
Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MveTBhT2ZjNS1BaW43QVRI
aE5LQmdpWGtpa29NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG
BCQGjcAAMA0GCSqGSIb3DQEBCwUAA4IBAQBzgPOrA1CAqLt2jlYTnw81qN6M8Mxw
KQCVJZcm0VpH5n6yLYLGukumurQru/btJ9dSybWIiCGY2u1aRu5Sd8V9HdJN6ny6
Sx5FVMLCQu0aIF7knCl2fRUvGHIVfxF9heF2y8RWlgH4QgH3c86ogdG9GW0qtrdA
BgvZ6FNWgdaqLJIg1W4LIgrsAF1fcITjGX1GbUYBdPEDzDBNFaEkVB2CCgNrzRQF
kbjuqS/KT8VHvO4hRI6FCSyVAlxKQTJiVcoWb9vyaxgQFGDBHbiwxz6yDJsseoRL
JYPo18byMm7igQgkZ/7trhPMrmkisPpry8v62DyzTBMaRAXPH/bPzk9Q
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org