Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/pGJfgrdHS_Eim0dziiJ3Q2LknJQ.roa
File: pGJfgrdHS_Eim0dziiJ3Q2LknJQ.roa (raw, json)
Hash identifier: e4KjPto7vaYxTNOIq+BqlodJegATpABQkOqVvqeOCAc=
Subject key identifier: A4:62:5F:82:B7:47:4B:F1:22:9B:47:73:8A:22:77:43:62:E4:9C:94
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C16
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/pGJfgrdHS_Eim0dziiJ3Q2LknJQ.roa
Signing time: Wed 29 Sep 2021 02:36:30 +0000
ROA not before: Wed 29 Sep 2021 02:36:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131641
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3094 (0xc16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A4625F82B7474BF1229B47738A22774362E49C94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0d:e9:16:4b:e3:79:a6:39:25:77:21:5a:57:
3f:e9:dc:ad:fd:1c:3e:7c:d7:63:d0:c9:e3:9b:39:
d9:80:0d:de:ac:34:b2:93:79:37:cc:a8:e7:42:60:
42:c7:da:32:1c:52:fc:b9:2e:6c:c2:e9:d1:d9:7d:
cc:a9:38:9c:ac:39:a8:43:cc:8c:7b:46:fb:77:74:
a1:32:eb:fd:4c:b5:64:8d:ca:46:85:b6:7b:b5:e3:
3d:b8:4b:fa:95:b9:0b:cb:11:52:fb:35:c0:e7:15:
6b:db:28:a3:de:2c:ca:f9:9c:32:d9:dd:3e:a2:21:
fe:52:65:48:1f:e6:d9:67:4a:5c:13:9d:a8:40:24:
7c:60:90:aa:7c:29:27:c0:d2:31:28:b5:4a:94:0d:
14:66:ad:19:09:5b:6c:24:63:6f:a3:e1:0d:fe:55:
36:05:98:97:71:3a:ee:6f:8b:a4:e0:42:1f:83:20:
91:01:5f:84:68:02:1e:b1:04:00:1c:48:9d:49:6f:
dc:2c:4c:b5:72:37:70:d8:d2:a1:dc:2a:32:7c:e6:
55:47:22:de:9a:d1:71:c6:6b:9d:56:e0:d0:f7:ee:
9f:47:a7:53:12:e1:c9:59:55:4a:be:b2:3b:97:50:
4c:1c:f2:dc:43:7b:8c:f2:a0:cc:7c:8c:82:0d:d9:
b0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:62:5F:82:B7:47:4B:F1:22:9B:47:73:8A:22:77:43:62:E4:9C:94
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/pGJfgrdHS_Eim0dziiJ3Q2LknJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
93:ec:48:8d:fa:68:ce:a1:cb:4f:ea:02:2c:9c:b0:14:b6:7b:
8d:e2:61:63:43:eb:f4:df:7f:23:88:01:1d:8f:d4:58:f4:2a:
c1:d0:55:98:ca:c0:03:36:b2:0e:27:b0:da:39:36:ba:65:cd:
76:6c:a7:e0:66:0d:16:5d:a8:ab:a8:35:16:83:c2:dd:21:39:
b3:ba:5f:69:3c:b8:91:64:02:e9:56:ed:49:cb:8f:17:ce:61:
8b:e8:0a:3e:1d:1b:c2:80:c6:6f:9c:da:5c:2c:ce:fe:db:c3:
68:e6:66:55:c9:63:73:b3:7c:20:8e:e2:0c:45:47:0a:1c:62:
7a:21:4d:8f:a0:4b:82:1c:50:1e:23:d7:56:ae:35:7d:c2:6a:
1d:98:00:fb:06:23:88:72:c4:01:a7:0b:d4:e1:b2:b8:3d:cb:
2b:30:b2:97:d6:08:7c:7b:1c:f3:e1:e9:32:b1:97:2f:c1:17:
c3:61:09:22:a4:8a:e0:dc:75:32:3a:f6:e6:2f:da:38:a5:4d:
bc:a7:fc:3e:10:7f:53:49:59:39:fc:81:8e:11:59:62:93:ef:
6d:de:3e:ab:8b:07:9b:be:87:01:e6:0d:19:58:b1:dd:fb:64:
42:9a:19:1f:da:45:45:e8:5a:00:f0:7b:b6:1f:a7:68:22:0d:
c5:5d:f0:ef
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMTA5Mjkw
MjM2MzBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEE0NjI1RjgyQjc0NzRC
RjEyMjlCNDc3MzhBMjI3NzQzNjJFNDlDOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcDekWS+N5pjkldyFaVz/p3K39HD5812PQyeObOdmADd6sNLKT
eTfMqOdCYELH2jIcUvy5LmzC6dHZfcypOJysOahDzIx7Rvt3dKEy6/1MtWSNykaF
tnu14z24S/qVuQvLEVL7NcDnFWvbKKPeLMr5nDLZ3T6iIf5SZUgf5tlnSlwTnahA
JHxgkKp8KSfA0jEotUqUDRRmrRkJW2wkY2+j4Q3+VTYFmJdxOu5vi6TgQh+DIJEB
X4RoAh6xBAAcSJ1Jb9wsTLVyN3DY0qHcKjJ85lVHIt6a0XHGa51W4ND37p9Hp1MS
4clZVUq+sjuXUEwc8txDe4zyoMx8jIIN2bALAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUpGJfgrdHS/Eim0dziiJ3Q2LknJQwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3BHSmZncmRIU19FaW0wZHppaUozUTJM
a25KUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBIzAMA0G
CSqGSIb3DQEBCwUAA4IBAQCT7EiN+mjOoctP6gIsnLAUtnuN4mFjQ+v0338jiAEd
j9RY9CrB0FWYysADNrIOJ7DaOTa6Zc12bKfgZg0WXairqDUWg8LdITmzul9pPLiR
ZALpVu1Jy48XzmGL6Ao+HRvCgMZvnNpcLM7+28No5mZVyWNzs3wgjuIMRUcKHGJ6
IU2PoEuCHFAeI9dWrjV9wmodmAD7BiOIcsQBpwvU4bK4PcsrMLKX1gh8exzz4eky
sZcvwRfDYQkipIrg3HUyOvbmL9o4pU28p/w+EH9TSVk5/IGOEVlik+9t3j6riweb
vocB5g0ZWLHd+2RCmhkf2kVF6FoA8Hu2H6doIg3FXfDv
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org