Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/hbeewIFRCgyW4K0xqEEc-Fu4c9g.roa
File: hbeewIFRCgyW4K0xqEEc-Fu4c9g.roa (raw, json)
Hash identifier: WkOPbmXN/oWqmM1DGBi5T4s9p9kY5f3DSLuLMxBmEVc=
Subject key identifier: 85:B7:9E:C0:81:51:0A:0C:96:E0:AD:31:A8:41:1C:F8:5B:B8:73:D8
Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3
Certificate serial: 06
Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/hbeewIFRCgyW4K0xqEEc-Fu4c9g.roa
Signing time: Mon 07 Dec 2020 09:45:48 +0000
ROA not before: Mon 07 Dec 2020 09:45:48 +0000
ROA not after: Tue 07 Dec 2021 08:40:28 +0000
asID: 38839
IP address blocks: 2406:d7c0:10::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3
Validity
Not Before: Dec 7 09:45:48 2020 GMT
Not After : Dec 7 08:40:28 2021 GMT
Subject: CN=85B79EC081510A0C96E0AD31A8411CF85BB873D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:74:15:3a:8d:bc:f4:fd:3a:ce:88:be:2b:
85:e5:2a:4b:ce:86:8f:f7:52:19:52:64:cd:fd:7f:
77:f1:78:a9:ca:94:d4:91:83:d3:42:92:5b:1f:96:
07:49:d9:f2:7d:c5:99:ae:ea:85:3a:61:61:99:bc:
89:c4:cc:30:ad:ef:b2:53:6f:5d:c0:ee:27:24:97:
f0:8f:cf:f6:52:25:ec:3e:96:5c:d8:b5:67:99:0e:
8c:6b:ee:e6:67:50:59:6e:44:c1:6a:16:54:66:6a:
d8:ba:2b:ff:d8:63:85:a9:3d:b3:e3:22:8d:87:76:
5c:b3:9c:33:8f:a8:a6:a0:77:f8:d2:5c:af:dd:29:
66:77:84:dc:b1:44:cd:d1:ff:69:45:87:e4:9a:eb:
73:45:41:49:a3:ca:24:1e:d4:ed:96:23:27:61:07:
26:54:ce:c5:2c:e6:60:95:9b:78:ce:b3:f9:a4:d5:
02:93:5a:dd:d6:4f:e2:62:50:f0:34:d9:94:d4:96:
95:b7:08:b8:4a:60:d5:c4:a7:95:17:28:f2:36:9d:
86:7a:be:c1:89:6a:e7:85:9c:4c:2c:30:69:c7:a6:
b6:76:b4:ad:1e:39:83:88:3c:11:9a:d2:5f:8c:a5:
68:8e:45:bd:e8:37:3e:f6:98:3f:2e:c1:b6:56:9f:
0c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B7:9E:C0:81:51:0A:0C:96:E0:AD:31:A8:41:1C:F8:5B:B8:73:D8
X509v3 Authority Key Identifier:
keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/hbeewIFRCgyW4K0xqEEc-Fu4c9g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d7c0:10::/44
Signature Algorithm: sha256WithRSAEncryption
43:53:58:f8:89:66:ab:c7:14:54:51:1b:72:68:54:5e:be:c6:
2c:81:fc:ce:78:bd:a8:68:b5:7c:23:a4:92:bf:79:09:9f:52:
1e:ac:02:5b:ad:5d:7c:c4:b1:9d:30:33:78:74:79:4b:ae:3d:
a9:3b:fc:ee:37:ea:b3:e2:25:e3:e5:c9:19:ef:2a:e9:e4:62:
0d:b9:59:2b:3b:43:6c:c4:82:69:64:91:27:3d:b8:1f:15:0e:
10:1a:2d:69:d4:c4:99:d0:2f:cf:20:6a:04:8d:7d:ca:f6:80:
07:e1:22:65:bd:40:30:1d:a7:cc:9b:82:5b:2a:17:95:e4:fa:
3d:51:fe:b2:14:db:b3:4b:3c:5d:42:67:28:41:3b:35:c2:72:
47:bc:93:8a:f2:e2:70:10:59:78:7d:55:11:3f:46:1d:fd:e3:
31:b1:85:f8:e6:44:95:16:ca:9c:48:84:8f:98:3a:13:2a:3e:
b2:4a:2d:89:80:ff:73:aa:c5:b7:bb:00:2f:3d:02:e9:5d:c8:
b6:3a:9f:92:09:e0:6a:b6:a8:3d:31:13:b8:06:3c:81:e7:c5:
15:30:8e:7d:6a:2f:b5:56:11:54:8b:0c:e0:f8:86:1b:33:c5:
bd:1d:18:66:27:f9:53:b9:67:aa:3d:aa:d0:44:d1:8a:77:69:
ed:63:9a:ef
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBMDgy
RjVEOTkyRTZCQzI1RTA4OTk3NTM4NjE2MTgwNzAyRTg1N0MzMB4XDTIwMTIwNzA5
NDU0OFoXDTIxMTIwNzA4NDAyOFowMzExMC8GA1UEAxMoODVCNzlFQzA4MTUxMEEw
Qzk2RTBBRDMxQTg0MTFDRjg1QkI4NzNEODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANKFdBU6jbz0/TrOiL4rheUqS86Gj/dSGVJkzf1/d/F4qcqU1JGD
00KSWx+WB0nZ8n3Fma7qhTphYZm8icTMMK3vslNvXcDuJySX8I/P9lIl7D6WXNi1
Z5kOjGvu5mdQWW5EwWoWVGZq2Lor/9hjhak9s+MijYd2XLOcM4+opqB3+NJcr90p
ZneE3LFEzdH/aUWH5Jrrc0VBSaPKJB7U7ZYjJ2EHJlTOxSzmYJWbeM6z+aTVApNa
3dZP4mJQ8DTZlNSWlbcIuEpg1cSnlRco8jadhnq+wYlq54WcTCwwacemtna0rR45
g4g8EZrSX4ylaI5Fveg3PvaYPy7BtlafDB0CAwEAAaOCAfEwggHtMB0GA1UdDgQW
BBSFt57AgVEKDJbgrTGoQRz4W7hz2DAfBgNVHSMEGDAWgBSggvXZkua8JeCJl1OG
FhgHAuhXwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DU1BURUsv
b0lMMTJaTG12Q1hnaVpkVGhoWVlCd0xvVjhNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9vSUwxMlpMbXZDWGdpWmRUaGhZWUJ3TG9WOE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DU1BURUsvaGJlZXdJRlJDZ3lXNEsweHFF
RWMtRnU0YzlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCQG
18AAEDANBgkqhkiG9w0BAQsFAAOCAQEAQ1NY+Ilmq8cUVFEbcmhUXr7GLIH8zni9
qGi1fCOkkr95CZ9SHqwCW61dfMSxnTAzeHR5S649qTv87jfqs+Il4+XJGe8q6eRi
DblZKztDbMSCaWSRJz24HxUOEBotadTEmdAvzyBqBI19yvaAB+EiZb1AMB2nzJuC
WyoXleT6PVH+shTbs0s8XUJnKEE7NcJyR7yTivLicBBZeH1VET9GHf3jMbGF+OZE
lRbKnEiEj5g6Eyo+skotiYD/c6rFt7sALz0C6V3ItjqfkgngaraoPTETuAY8gefF
FTCOfWovtVYRVIsM4PiGGzPFvR0YZif5U7lnqj2q0ETRindp7WOa7w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org