Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/4fvARG1XAv8OQKV8l_NUnrae8A4.roa
File: 4fvARG1XAv8OQKV8l_NUnrae8A4.roa (raw, json)
Hash identifier: V01NoTae0zfzcZuIRoZrfIRrwwX7OHsh8L0GwFxh/kg=
Subject key identifier: E1:FB:C0:44:6D:57:02:FF:0E:40:A5:7C:97:F3:54:9E:B6:9E:F0:0E
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: B5
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/4fvARG1XAv8OQKV8l_NUnrae8A4.roa
Signing time: Sun 02 Jul 2023 16:13:44 +0000
ROA not before: Sun 02 Jul 2023 16:13:44 +0000
ROA not after: Fri 13 Oct 2023 06:47:27 +0000
asID: 134823
IP address blocks: 2400:b0a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Jul 2 16:13:44 2023 GMT
Not After : Oct 13 06:47:27 2023 GMT
Subject: CN=E1FBC0446D5702FF0E40A57C97F3549EB69EF00E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:13:05:47:e0:70:e4:a2:db:3c:3e:86:ca:
7c:ac:60:58:82:23:0d:ad:55:21:9e:49:b9:af:71:
be:ee:ac:22:07:e9:8d:3e:d2:9c:ec:e2:d2:ab:f2:
c9:6e:ae:5e:07:e3:df:8b:71:d3:6c:08:d0:80:f4:
52:5e:1e:a6:f0:2f:de:f1:26:24:1e:57:46:d3:9e:
10:49:f8:5b:a3:45:aa:13:ee:f4:69:08:9f:d1:84:
7a:3f:0a:55:5f:83:39:db:ab:42:11:2d:91:92:33:
e7:ec:7c:9c:19:6b:3c:cf:14:35:2e:36:f2:7e:89:
82:ef:f7:c5:27:ec:4a:a5:ee:96:87:f8:92:66:c2:
63:55:ca:ae:96:e6:0a:a7:70:a8:74:12:fb:d8:6a:
0a:84:5c:e1:99:6e:c4:ca:44:c0:a7:2d:36:86:cc:
c2:15:d3:22:fb:67:e8:eb:f7:c3:cd:6d:db:89:f2:
72:ba:b9:15:6a:d0:67:f6:5c:93:f3:c2:61:0f:d7:
01:f0:9d:07:9c:0c:15:f7:8f:4a:cf:80:e4:7e:9e:
93:31:19:dc:22:8d:46:ac:26:28:48:00:b4:e9:c6:
e9:b2:35:b2:8b:ef:49:ee:42:ce:7f:39:b9:a0:54:
61:f2:11:a7:33:e0:e2:04:02:fe:41:92:4d:f8:fc:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FB:C0:44:6D:57:02:FF:0E:40:A5:7C:97:F3:54:9E:B6:9E:F0:0E
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/4fvARG1XAv8OQKV8l_NUnrae8A4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b0a0::/32
Signature Algorithm: sha256WithRSAEncryption
0d:83:77:90:af:c7:bf:08:54:b1:d2:ee:45:e4:80:dc:4b:29:
ba:76:cd:83:d4:59:29:9d:5a:eb:12:71:4f:b4:4f:c6:c6:4a:
04:a6:d2:89:54:18:6a:43:f3:04:f0:87:9d:5d:1b:bc:89:c3:
9b:ca:c8:a2:64:7d:6c:53:0e:f5:1a:cf:c2:29:fb:e7:a7:eb:
46:5a:d9:20:de:b5:cd:ed:95:9a:01:c0:fc:d6:9f:79:b3:dd:
5b:42:08:64:a1:bb:22:77:2f:c0:73:db:36:76:2b:6a:14:04:
ad:7c:f9:3e:d1:f7:07:bd:47:fe:a3:44:57:75:d2:7e:98:35:
34:f1:5a:2f:8d:7c:85:43:63:ce:b2:55:fe:aa:9f:1c:96:58:
94:3d:64:13:76:19:18:1b:d1:eb:49:6c:5a:42:31:d6:5e:2e:
eb:6d:ab:41:59:44:4e:8d:2e:07:a0:28:aa:62:17:20:9c:5b:
07:60:e1:9b:21:88:25:33:87:f3:0f:de:5c:cb:01:fc:26:a5:
a2:17:df:15:35:d7:85:98:2c:a4:92:fe:98:3c:4e:9c:03:66:
8c:8f:4f:01:b7:07:e4:c4:00:64:25:93:f0:03:b3:63:b4:f2:
f0:a7:8c:e6:ce:bc:1c:c8:ff:2f:77:58:1d:29:8c:e6:71:46:
5e:c4:22:91
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4
Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yMzA3MDIx
NjEzNDRaFw0yMzEwMTMwNjQ3MjdaMDMxMTAvBgNVBAMTKEUxRkJDMDQ0NkQ1NzAy
RkYwRTQwQTU3Qzk3RjM1NDlFQjY5RUYwMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuXBMFR+Bw5KLbPD6GynysYFiCIw2tVSGeSbmvcb7urCIH6Y0+
0pzs4tKr8slurl4H49+LcdNsCNCA9FJeHqbwL97xJiQeV0bTnhBJ+FujRaoT7vRp
CJ/RhHo/ClVfgznbq0IRLZGSM+fsfJwZazzPFDUuNvJ+iYLv98Un7Eql7paH+JJm
wmNVyq6W5gqncKh0EvvYagqEXOGZbsTKRMCnLTaGzMIV0yL7Z+jr98PNbduJ8nK6
uRVq0Gf2XJPzwmEP1wHwnQecDBX3j0rPgOR+npMxGdwijUasJihIALTpxumyNbKL
70nuQs5/ObmgVGHyEacz4OIEAv5Bkk34/KeLAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU4fvARG1XAv8OQKV8l/NUnrae8A4wHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G
oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv
SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy80ZnZBUkcxWEF2OE9RS1Y4bF9O
VW5yYWU4QTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJACw
oDANBgkqhkiG9w0BAQsFAAOCAQEADYN3kK/HvwhUsdLuReSA3EspunbNg9RZKZ1a
6xJxT7RPxsZKBKbSiVQYakPzBPCHnV0bvInDm8rIomR9bFMO9RrPwin756frRlrZ
IN61ze2VmgHA/NafebPdW0IIZKG7IncvwHPbNnYrahQErXz5PtH3B71H/qNEV3XS
fpg1NPFaL418hUNjzrJV/qqfHJZYlD1kE3YZGBvR60lsWkIx1l4u622rQVlETo0u
B6AoqmIXIJxbB2DhmyGIJTOH8w/eXMsB/CalohffFTXXhZgspJL+mDxOnANmjI9P
AbcH5MQAZCWT8AOzY7Ty8KeM5s68HMj/L3dYHSmM5nFGXsQikQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org