Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/qlL_4jqfTYsgShYkYQpr-EPY2Po.roa
File: qlL_4jqfTYsgShYkYQpr-EPY2Po.roa (raw, json)
Hash identifier: kQcQbBRXz+tRdrbHjVsTLz9mpCa68TULywuivyNbLU4=
Subject key identifier: AA:52:FF:E2:3A:9F:4D:8B:20:4A:16:24:61:0A:6B:F8:43:D8:D8:FA
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 076E
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qlL_4jqfTYsgShYkYQpr-EPY2Po.roa
Signing time: Tue 29 Sep 2020 09:58:05 +0000
ROA not before: Tue 29 Sep 2020 09:58:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9264
IP address blocks: 2001:c08::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Sep 29 09:58:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA52FFE23A9F4D8B204A1624610A6BF843D8D8FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a6:f2:50:98:a3:a9:a6:9b:82:37:ba:a6:9b:
82:e2:56:49:b0:67:3d:5f:60:7c:68:68:30:9f:d8:
66:28:3e:53:e0:62:3c:60:01:78:c5:b4:a5:01:41:
56:61:a1:01:b3:c1:f0:78:cf:af:da:10:45:de:aa:
ff:bd:16:d9:a5:2d:cc:e9:51:2b:1c:ef:11:7b:b6:
5c:88:54:3d:da:af:5b:4c:79:18:3a:f4:4d:bd:73:
e6:d7:66:34:b9:90:5b:56:8d:52:78:f2:24:d8:09:
fa:32:ba:87:11:c6:83:a8:51:12:58:93:9d:0d:a6:
7a:b0:df:43:2d:fc:48:b0:ae:52:f1:e5:f5:79:5c:
41:48:dc:57:d3:bc:35:4b:01:b3:f8:5d:63:9c:33:
6d:6f:2a:e0:f1:ef:06:0e:d1:90:c6:f5:5c:35:6d:
f3:ba:a6:f5:64:bd:7e:11:bc:a9:10:dd:5c:8b:50:
6e:3a:90:97:c8:9b:a7:77:d5:f3:2a:28:7a:d3:fa:
59:a1:6f:df:38:95:fa:ee:72:19:b3:da:a6:fc:50:
cc:ed:a5:70:e5:04:b5:02:4c:ad:c3:9c:aa:54:5a:
ae:54:10:9b:9d:ce:e5:60:80:57:6e:25:f5:b0:7c:
76:83:70:1e:fa:f0:34:2b:e3:cd:9e:30:93:2b:22:
66:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:52:FF:E2:3A:9F:4D:8B:20:4A:16:24:61:0A:6B:F8:43:D8:D8:FA
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/qlL_4jqfTYsgShYkYQpr-EPY2Po.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c08::/32
Signature Algorithm: sha256WithRSAEncryption
36:b2:42:e6:6c:b3:d2:41:9e:8b:1c:4d:cf:0f:d0:49:97:16:
91:13:99:ad:d7:13:c2:49:d6:a6:26:20:31:12:84:17:da:61:
9f:2f:52:19:3b:c9:54:36:8c:8a:44:f4:81:4e:fb:59:af:66:
0e:85:83:c2:de:ee:4b:d2:b3:e0:20:67:f4:17:8f:0b:90:9c:
b2:ef:18:e1:c6:5d:d8:00:c6:40:22:c7:ae:66:77:a4:e6:cc:
15:af:76:26:4a:6e:ab:ff:5a:f0:e3:18:62:99:1a:f8:bf:57:
76:2a:f0:4f:67:24:97:21:18:63:4c:b8:b3:7c:8e:2a:80:2a:
a0:ef:3f:42:4e:77:b6:05:f2:e6:42:f3:dc:90:74:12:c3:3d:
b9:b3:67:da:7a:e1:bc:b3:54:06:49:a8:bc:b6:fb:ba:8b:91:
f8:5d:e2:1b:09:31:68:f3:d4:d4:9b:39:06:a1:c0:fc:33:b3:
69:2a:f6:53:67:d5:13:08:13:51:c5:6e:04:18:6d:80:56:67:
f1:40:35:90:2c:16:1f:0b:f7:e7:1e:76:2e:01:c9:2d:e0:d9:
0a:1e:b9:9d:83:df:58:61:cb:4a:02:f3:0d:c0:fb:fc:67:c6:
b1:ee:aa:c5:d2:74:0b:cf:42:1b:42:47:74:f7:0f:56:07:c3:
46:e8:9f:1c
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICB24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5
ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yMDA5Mjkw
OTU4MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFBNTJGRkUyM0E5RjRE
OEIyMDRBMTYyNDYxMEE2QkY4NDNEOEQ4RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8pvJQmKOpppuCN7qmm4LiVkmwZz1fYHxoaDCf2GYoPlPgYjxg
AXjFtKUBQVZhoQGzwfB4z6/aEEXeqv+9FtmlLczpUSsc7xF7tlyIVD3ar1tMeRg6
9E29c+bXZjS5kFtWjVJ48iTYCfoyuocRxoOoURJYk50Npnqw30Mt/EiwrlLx5fV5
XEFI3FfTvDVLAbP4XWOcM21vKuDx7wYO0ZDG9Vw1bfO6pvVkvX4RvKkQ3VyLUG46
kJfIm6d31fMqKHrT+lmhb984lfruchmz2qb8UMztpXDlBLUCTK3DnKpUWq5UEJud
zuVggFduJfWwfHaDcB768DQr482eMJMrImZxAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUqlL/4jqfTYsgShYkYQpr+EPY2PowHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj
U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv
Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9xbExfNGpxZlRZc2dTaFlrWVFw
ci1FUFkyUG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEM
CDANBgkqhkiG9w0BAQsFAAOCAQEANrJC5myz0kGeixxNzw/QSZcWkROZrdcTwknW
piYgMRKEF9phny9SGTvJVDaMikT0gU77Wa9mDoWDwt7uS9Kz4CBn9BePC5Ccsu8Y
4cZd2ADGQCLHrmZ3pObMFa92Jkpuq/9a8OMYYpka+L9XdirwT2cklyEYY0y4s3yO
KoAqoO8/Qk53tgXy5kLz3JB0EsM9ubNn2nrhvLNUBkmovLb7uouR+F3iGwkxaPPU
1Js5BqHA/DOzaSr2U2fVEwgTUcVuBBhtgFZn8UA1kCwWHwv35x52LgHJLeDZCh65
nYPfWGHLSgLzDcD7/GfGse6qxdJ0C89CG0JHdPcPVgfDRuifHA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org