Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VNFK8a66K5INOrjc1YQlUj3-NWE.roa
File: VNFK8a66K5INOrjc1YQlUj3-NWE.roa (raw, json)
Hash identifier: AAxw29n4VEU5Z+T1AJnFhWGIDNUqfCdaxrAqGAT1KxA=
Subject key identifier: 54:D1:4A:F1:AE:BA:2B:92:0D:3A:B8:DC:D5:84:25:52:3D:FE:35:61
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E45
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VNFK8a66K5INOrjc1YQlUj3-NWE.roa
Signing time: Wed 29 Sep 2021 02:40:10 +0000
ROA not before: Wed 29 Sep 2021 02:40:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24155
IP address blocks: 2404:0:6000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3653 (0xe45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=54D14AF1AEBA2B920D3AB8DCD58425523DFE3561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:ec:d9:d0:3b:ff:ba:69:8c:f8:6f:c6:1d:
f1:bb:90:1b:e3:f3:1f:36:95:fd:e4:1c:43:d8:74:
d6:c8:af:49:c1:83:ec:94:37:67:ca:e8:91:d7:09:
2f:f3:09:4b:27:de:37:fe:f3:d7:73:5c:a4:56:70:
38:43:36:db:f7:40:bd:96:69:d2:39:c2:90:7f:49:
1b:1c:f1:78:46:20:39:cd:5a:b4:56:2d:63:be:75:
05:be:ab:4f:0a:9f:52:1f:42:96:af:d8:b2:97:42:
c9:14:26:c5:d8:56:0d:35:84:f1:e1:cf:50:f2:99:
27:23:9f:e3:fb:fc:32:13:e5:bb:85:68:12:bb:e1:
f4:4f:9a:3b:17:75:f2:5d:7c:cb:48:08:98:1d:2c:
43:23:ca:4c:01:f8:be:4c:ff:f1:c4:19:e2:c2:57:
b9:29:28:84:81:1a:83:59:da:6b:48:3d:df:e2:b0:
d4:19:f5:be:aa:f2:e8:84:34:db:b4:c1:ca:77:dd:
a5:61:bf:f9:d3:46:05:8c:29:02:ea:fd:5e:71:6c:
c3:bc:77:40:87:b6:91:de:c6:1f:eb:6e:66:c9:94:
86:17:ad:11:9a:fd:28:c3:97:e4:25:aa:a1:39:fc:
ee:d7:0e:ce:b7:4a:f2:1d:62:7b:4d:a7:f6:bf:85:
5b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D1:4A:F1:AE:BA:2B:92:0D:3A:B8:DC:D5:84:25:52:3D:FE:35:61
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VNFK8a66K5INOrjc1YQlUj3-NWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
6a:5c:fe:59:71:fc:b1:ed:ab:91:43:ac:0b:b5:e1:63:e0:2b:
62:a7:c0:3e:1c:b8:a1:a2:51:bf:16:cd:e9:e9:50:fd:97:c3:
a9:2f:9d:a7:ba:d6:37:a8:ad:01:1a:7b:cd:bc:81:83:53:a7:
a2:bb:82:00:21:7e:24:c4:7a:91:a0:92:81:5c:0b:cd:62:c1:
42:4c:b5:5f:5d:86:23:ac:8e:39:2d:af:cf:7c:51:70:b7:b6:
93:63:0c:33:16:30:9a:ff:ed:e7:09:a9:85:cd:8b:fa:86:40:
31:5e:f6:eb:31:bd:4b:d5:ff:7e:30:5c:68:b7:42:3b:23:91:
a0:2f:b3:8b:9b:4b:db:f7:b5:56:e7:6e:79:4f:fc:31:36:52:
84:b8:e9:80:49:b8:96:be:60:37:ca:8c:7f:d8:5b:00:e7:2f:
4f:dc:c3:e0:9d:97:31:fc:59:bc:da:99:ef:51:6a:54:3f:47:
4a:bc:05:48:75:69:08:c7:8a:ed:d8:a3:fd:17:ea:d5:22:ca:
f6:a2:90:03:d2:fd:c7:42:b3:7a:97:a3:51:2b:05:b2:13:d9:
53:f8:fa:37:14:96:e8:d6:20:1b:e2:93:e3:b0:32:7e:27:bf:
94:f8:3d:19:0e:b2:d3:ac:3d:b2:4b:e7:60:59:1e:4a:65:fd:
b3:84:9d:b6
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDkUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU0RDE0QUYxQUVCQTJC
OTIwRDNBQjhEQ0Q1ODQyNTUyM0RGRTM1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGu+zZ0Dv/ummM+G/GHfG7kBvj8x82lf3kHEPYdNbIr0nBg+yU
N2fK6JHXCS/zCUsn3jf+89dzXKRWcDhDNtv3QL2WadI5wpB/SRsc8XhGIDnNWrRW
LWO+dQW+q08Kn1IfQpav2LKXQskUJsXYVg01hPHhz1DymScjn+P7/DIT5buFaBK7
4fRPmjsXdfJdfMtICJgdLEMjykwB+L5M//HEGeLCV7kpKISBGoNZ2mtIPd/isNQZ
9b6q8uiENNu0wcp33aVhv/nTRgWMKQLq/V5xbMO8d0CHtpHexh/rbmbJlIYXrRGa
/SjDl+QlqqE5/O7XDs63SvIdYntNp/a/hVujAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUVNFK8a66K5INOrjc1YQlUj3+NWEwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvVk5GSzhhNjZLNUlOT3JqYzFZUWxV
ajMtTldFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEAABg
MA0GCSqGSIb3DQEBCwUAA4IBAQBqXP5Zcfyx7auRQ6wLteFj4Ctip8A+HLiholG/
Fs3p6VD9l8OpL52nutY3qK0BGnvNvIGDU6eiu4IAIX4kxHqRoJKBXAvNYsFCTLVf
XYYjrI45La/PfFFwt7aTYwwzFjCa/+3nCamFzYv6hkAxXvbrMb1L1f9+MFxot0I7
I5GgL7OLm0vb97VW5255T/wxNlKEuOmASbiWvmA3yox/2FsA5y9P3MPgnZcx/Fm8
2pnvUWpUP0dKvAVIdWkIx4rt2KP9F+rVIsr2opAD0v3HQrN6l6NRKwWyE9lT+Po3
FJbo1iAb4pPjsDJ+J7+U+D0ZDrLTrD2yS+dgWR5KZf2zhJ22
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org