Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RigZTmXdXBC2_xeSVbIQ-1w5Jws.roa
File: RigZTmXdXBC2_xeSVbIQ-1w5Jws.roa (raw, json)
Hash identifier: /2OL3Bf4JAjfEtH647jZUD7/+pl0+MePUhRdqQ2qbN8=
Subject key identifier: 46:28:19:4E:65:DD:5C:10:B6:FF:17:92:55:B2:10:FB:5C:39:27:0B
Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Certificate serial: 0742
Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RigZTmXdXBC2_xeSVbIQ-1w5Jws.roa
Signing time: Tue 29 Sep 2020 09:59:05 +0000
ROA not before: Tue 29 Sep 2020 09:59:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134098
IP address blocks: 2403:8ec0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1858 (0x742)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Validity
Not Before: Sep 29 09:59:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4628194E65DD5C10B6FF179255B210FB5C39270B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:68:6e:95:04:a1:00:a8:5a:9e:4e:96:90:
db:3a:bf:c3:73:2b:3f:c7:85:27:b2:a0:ee:fd:ff:
0b:fa:3f:a1:91:d7:50:cb:6f:6a:94:d5:f7:ef:d2:
53:bc:79:4f:d0:af:20:ee:e0:2a:6b:1e:ce:00:e0:
a4:da:57:d4:cc:2c:c1:04:ba:45:26:82:87:e7:a4:
7a:2a:a4:91:fe:51:2e:73:07:8e:cf:71:aa:0e:5a:
06:9e:f3:d1:5a:13:e2:ab:6a:e3:5f:6d:48:2e:80:
90:95:34:bd:1b:e2:1a:a1:4a:4c:ef:51:cb:d8:59:
70:8f:22:82:00:04:9e:03:ae:33:58:d9:f4:c8:ba:
5d:0d:2d:74:68:da:ad:1c:34:df:71:22:f5:db:55:
7f:03:92:dd:63:5e:90:73:5e:6c:bb:2d:04:06:ce:
9f:25:bd:3a:ff:8b:5a:4c:92:cc:a7:79:c4:dc:4b:
0a:68:9d:c6:27:76:96:47:f8:09:ca:51:8c:dd:b5:
bd:21:dd:fd:94:03:68:81:62:39:b6:c9:b3:27:b2:
3c:d7:7e:df:10:4c:89:e9:37:d8:d3:42:a7:52:d3:
70:a9:28:a3:ed:05:a3:0c:b2:3c:3f:f9:65:4b:aa:
a7:e5:15:ab:bf:34:28:d6:e0:e2:80:a9:27:ec:0a:
c4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:28:19:4E:65:DD:5C:10:B6:FF:17:92:55:B2:10:FB:5C:39:27:0B
X509v3 Authority Key Identifier:
keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RigZTmXdXBC2_xeSVbIQ-1w5Jws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:b9:09:36:ba:d6:02:31:b9:18:94:0a:d0:72:be:ac:8f:1a:
96:16:9a:8b:17:70:53:e1:28:be:1b:2e:a8:f5:28:99:9a:34:
69:6f:35:e7:f1:d9:1e:a0:d1:e0:e0:87:26:39:80:d4:24:7a:
8d:ea:b0:28:bf:86:84:0d:44:57:c0:7a:f5:38:09:de:ca:4a:
bf:95:01:c9:89:45:30:aa:a5:64:a7:13:57:33:f2:8a:50:13:
12:2a:17:28:0d:a1:b1:48:17:3a:22:af:46:67:12:bc:6d:25:
47:d6:20:2a:28:a7:8a:15:0a:5e:33:12:49:4c:fc:5f:67:12:
32:a7:f6:96:9e:82:5e:40:55:88:86:a6:cf:53:d1:6e:22:f2:
ef:0b:0d:a5:72:69:58:35:6f:b4:4e:b7:2c:12:7b:99:c0:bc:
9f:3a:34:5b:bb:9f:e4:59:5e:b8:2e:85:17:28:9e:28:b4:df:
8c:20:ee:46:08:e3:d7:5a:67:f6:39:67:36:95:77:bc:16:75:
e6:75:09:87:5b:db:65:20:c8:7f:54:45:55:09:3d:4f:6a:92:
f0:4c:b9:91:60:b3:b8:ba:82:b9:8a:a8:08:57:61:60:bf:94:
d8:0f:3c:06:67:a9:12:f5:6a:44:ee:ec:5b:f5:79:fb:de:04:
94:54:b1:81
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4
NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yMDA5Mjkw
OTU5MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ2MjgxOTRFNjVERDVD
MTBCNkZGMTc5MjU1QjIxMEZCNUMzOTI3MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzSmhulQShAKhank6WkNs6v8NzKz/HhSeyoO79/wv6P6GR11DL
b2qU1ffv0lO8eU/QryDu4CprHs4A4KTaV9TMLMEEukUmgofnpHoqpJH+US5zB47P
caoOWgae89FaE+KrauNfbUgugJCVNL0b4hqhSkzvUcvYWXCPIoIABJ4DrjNY2fTI
ul0NLXRo2q0cNN9xIvXbVX8Dkt1jXpBzXmy7LQQGzp8lvTr/i1pMksynecTcSwpo
ncYndpZH+AnKUYzdtb0h3f2UA2iBYjm2ybMnsjzXft8QTInpN9jTQqdS03CpKKPt
BaMMsjw/+WVLqqflFau/NCjW4OKAqSfsCsRvAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQURigZTmXdXBC2/xeSVbIQ+1w5JwswHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV
alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV
L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL1JpZ1pUbVhkWEJDMl94ZVNW
YklRLTF3NUp3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
A47AMA0GCSqGSIb3DQEBCwUAA4IBAQAOuQk2utYCMbkYlArQcr6sjxqWFpqLF3BT
4Si+Gy6o9SiZmjRpbzXn8dkeoNHg4IcmOYDUJHqN6rAov4aEDURXwHr1OAneykq/
lQHJiUUwqqVkpxNXM/KKUBMSKhcoDaGxSBc6Iq9GZxK8bSVH1iAqKKeKFQpeMxJJ
TPxfZxIyp/aWnoJeQFWIhqbPU9FuIvLvCw2lcmlYNW+0TrcsEnuZwLyfOjRbu5/k
WV64LoUXKJ4otN+MIO5GCOPXWmf2OWc2lXe8FnXmdQmHW9tlIMh/VEVVCT1PapLw
TLmRYLO4uoK5iqgIV2Fgv5TYDzwGZ6kS9WpE7uxb9Xn73gSUVLGB
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org