Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/bYjf4tOAnTNLnaePmRiCH52glsc.roa
File: bYjf4tOAnTNLnaePmRiCH52glsc.roa (raw, json)
Hash identifier: Fl7/jEzklxW9wDL2Dh/RwCjBlHDkw0DGDcD/+TDSiUk=
Subject key identifier: 6D:88:DF:E2:D3:80:9D:33:4B:9D:A7:8F:99:18:82:1F:9D:A0:96:C7
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0968
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/bYjf4tOAnTNLnaePmRiCH52glsc.roa
Signing time: Wed 29 Sep 2021 02:38:16 +0000
ROA not before: Wed 29 Sep 2021 02:38:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131662
IP address blocks: 2403:a2c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2408 (0x968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 02:38:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6D88DFE2D3809D334B9DA78F9918821F9DA096C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:43:fb:3a:0a:41:bb:67:42:1d:a6:d8:28:
63:65:ca:4f:51:5e:67:8f:7f:e9:a1:59:08:ee:d9:
f9:b2:20:04:18:d4:e5:a7:80:c8:f5:37:4f:0f:08:
39:a0:1b:3c:a3:a2:5e:71:cd:c3:a3:8b:c1:7c:e5:
f6:d2:78:f7:f7:c4:5b:b8:a7:ba:de:28:87:74:0b:
02:1e:b7:6d:4c:00:8b:f3:c6:02:7e:91:c8:3a:16:
ac:6d:3a:e9:79:ba:3c:49:e4:72:3d:77:7e:69:fe:
7b:e0:e3:a2:03:2e:22:4e:27:5a:5e:f4:a3:98:14:
51:cd:4d:56:a7:ac:39:62:92:f2:7a:2e:ec:81:45:
99:d8:a4:78:94:dc:b5:71:4a:fa:c9:90:fe:d3:fa:
ab:c2:0c:35:ae:95:83:34:e4:b3:71:0a:11:aa:91:
af:b2:60:45:c6:fa:d2:18:6a:80:dd:20:79:19:70:
f3:b1:b7:31:8e:36:1d:41:ff:16:01:e7:d2:6c:f4:
a2:e0:5c:29:e8:8a:11:98:09:db:7a:8d:43:e4:2c:
57:22:c3:74:f3:91:39:df:49:ef:51:5c:0e:a0:b1:
13:f3:26:db:de:43:6a:41:58:d4:58:ee:d9:78:31:
ef:31:92:54:9c:e6:ba:b3:14:05:3d:50:d6:2b:91:
b6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:88:DF:E2:D3:80:9D:33:4B:9D:A7:8F:99:18:82:1F:9D:A0:96:C7
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/bYjf4tOAnTNLnaePmRiCH52glsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a2c0::/32
Signature Algorithm: sha256WithRSAEncryption
70:67:3a:c1:23:a8:81:5e:0f:91:26:55:05:b5:d8:2f:12:58:
20:72:82:28:0e:d2:be:f2:57:0f:ea:ca:3a:ca:f8:8b:9a:f2:
b4:11:78:7a:e5:73:2c:90:d8:db:c4:da:ad:d6:b6:54:ad:f1:
b3:74:4a:a2:5d:f4:ee:11:6a:59:a1:02:c4:54:eb:f0:8e:35:
21:4f:0a:05:ff:df:61:02:60:f0:13:26:7e:5d:50:8e:d6:7c:
a2:0e:39:a6:5b:c7:a1:ce:56:8a:33:86:c1:27:74:7b:fb:17:
03:35:6d:e4:2a:95:87:38:e2:e8:80:d2:b8:56:cb:45:51:f3:
21:31:ff:eb:20:d7:9c:81:2b:ed:06:25:93:de:1b:0f:12:48:
ee:91:e2:4e:49:f8:53:57:6e:6f:21:d1:11:6c:1b:ee:44:d1:
35:b9:34:c2:92:30:e1:ea:95:2c:59:7e:40:92:d0:07:0c:17:
5f:0c:41:3b:38:ad:68:b2:cb:d9:2a:6c:d7:89:a7:00:e8:e2:
15:2a:36:e4:cf:d0:1b:99:d9:e3:50:26:6a:bd:92:0d:72:43:
8e:b9:13:11:6b:bd:d9:f4:c5:1e:42:10:2f:93:a3:40:1c:82:
e7:1e:31:c0:db:7a:07:64:d1:d2:a1:d2:0a:13:5c:aa:a6:55:
7b:ba:6d:4b
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICCWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMTA5Mjkw
MjM4MTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZEODhERkUyRDM4MDlE
MzM0QjlEQTc4Rjk5MTg4MjFGOURBMDk2QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7c0P7OgpBu2dCHabYKGNlyk9RXmePf+mhWQju2fmyIAQY1OWn
gMj1N08PCDmgGzyjol5xzcOji8F85fbSePf3xFu4p7reKId0CwIet21MAIvzxgJ+
kcg6FqxtOul5ujxJ5HI9d35p/nvg46IDLiJOJ1pe9KOYFFHNTVanrDlikvJ6LuyB
RZnYpHiU3LVxSvrJkP7T+qvCDDWulYM05LNxChGqka+yYEXG+tIYaoDdIHkZcPOx
tzGONh1B/xYB59Js9KLgXCnoihGYCdt6jUPkLFciw3TzkTnfSe9RXA6gsRPzJtve
Q2pBWNRY7tl4Me8xklSc5rqzFAU9UNYrkbZrAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUbYjf4tOAnTNLnaePmRiCH52glscwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vYllqZjR0T0FuVE5MbmFl
UG1SaUNINTJnbHNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQDosAwDQYJKoZIhvcNAQELBQADggEBAHBnOsEjqIFeD5EmVQW12C8SWCBygigO
0r7yVw/qyjrK+Iua8rQReHrlcyyQ2NvE2q3WtlSt8bN0SqJd9O4RalmhAsRU6/CO
NSFPCgX/32ECYPATJn5dUI7WfKIOOaZbx6HOVoozhsEndHv7FwM1beQqlYc44uiA
0rhWy0VR8yEx/+sg15yBK+0GJZPeGw8SSO6R4k5J+FNXbm8h0RFsG+5E0TW5NMKS
MOHqlSxZfkCS0AcMF18MQTs4rWiyy9kqbNeJpwDo4hUqNuTP0BuZ2eNQJmq9kg1y
Q465ExFrvdn0xR5CEC+To0AcguceMcDbegdk0dKh0goTXKqmVXu6bUs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org