Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/U7iLQXL3mLaUYE_Puk3k8R5IIHg.roa
File: U7iLQXL3mLaUYE_Puk3k8R5IIHg.roa (raw, json)
Hash identifier: TZAshu2krnOGI1Pqk+m6GitF0FLLtuC62kZykBvZt1s=
Subject key identifier: 53:B8:8B:41:72:F7:98:B6:94:60:4F:CF:BA:4D:E4:F1:1E:48:20:78
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0772
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/U7iLQXL3mLaUYE_Puk3k8R5IIHg.roa
Signing time: Tue 29 Sep 2020 10:00:11 +0000
ROA not before: Tue 29 Sep 2020 10:00:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 2405:5600::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906 (0x772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 10:00:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53B88B4172F798B694604FCFBA4DE4F11E482078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:61:aa:50:bb:0c:b6:c7:a2:95:c8:f3:1e:
7d:74:e0:f9:da:33:1c:e1:0b:a8:0d:b8:03:a1:d1:
b3:6e:42:df:39:fa:40:51:01:d0:ac:c3:88:c8:ea:
6b:c7:13:41:56:c9:af:76:2b:12:57:94:49:41:6b:
39:39:3e:27:a8:a2:30:0f:95:8e:e5:d3:8f:3c:d6:
85:f5:72:87:fd:53:80:4a:30:e3:7e:a4:4e:f5:7d:
b4:91:18:ee:ad:57:06:d0:95:14:06:e3:a6:92:44:
3e:8e:de:dd:bd:37:0e:7c:72:a2:93:93:c3:47:e8:
51:7a:a4:00:8d:23:9a:58:99:45:9a:40:7f:89:1a:
5d:bb:33:fd:ca:ec:7e:cd:23:47:35:1c:c9:81:02:
3e:e6:10:8c:28:b5:86:84:b1:de:40:f6:68:9c:61:
3d:02:06:04:34:bd:ea:2c:3e:95:6c:59:bb:46:6b:
80:2a:aa:67:91:93:7e:70:65:3d:6f:d0:e3:47:c2:
70:fc:40:4e:1e:c8:25:6f:f1:ac:8b:3b:6c:72:14:
7f:88:35:12:4d:f5:cb:11:24:ce:6b:67:b4:48:dd:
d9:32:a3:91:fe:7f:ae:0d:69:35:aa:7e:1b:63:65:
ee:5b:ef:12:0a:21:d5:1e:0e:f1:6c:43:1d:d0:d5:
2f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B8:8B:41:72:F7:98:B6:94:60:4F:CF:BA:4D:E4:F1:1E:48:20:78
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/U7iLQXL3mLaUYE_Puk3k8R5IIHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:5600::/32
Signature Algorithm: sha256WithRSAEncryption
85:c3:45:36:11:7d:02:d9:71:f6:15:ff:49:11:93:60:a2:ef:
82:3a:b7:33:5d:05:02:5d:90:51:8c:f9:33:75:ed:58:31:e8:
f2:22:be:22:f5:d9:e8:32:33:c9:93:f5:f0:56:08:04:f2:39:
7d:e5:aa:87:e0:4b:c3:1d:9d:ed:31:37:4e:18:bc:63:bc:e9:
f0:a0:64:9a:b6:9b:0b:5f:b1:c8:bb:8c:89:f5:17:d8:d2:73:
cc:3c:3f:bf:72:b9:f3:c7:c9:da:6a:02:c6:1f:39:2a:d6:5b:
87:32:c1:3f:b7:77:b1:fc:ba:9f:c0:2b:cb:d1:25:8f:98:b2:
3b:f1:40:40:ef:4a:e1:70:0f:7d:70:cb:e3:e3:3c:3d:9a:bb:
1c:bf:e6:b6:50:06:9a:e3:0f:42:9b:bd:81:f0:62:06:70:8b:
84:1d:11:4a:9f:b8:21:cf:ed:e0:1f:2f:a1:42:f7:8e:98:53:
4a:8e:e7:fe:61:a6:9d:d9:92:3e:cc:0b:2b:b9:41:8b:7a:d5:
e8:4a:d9:9b:f9:3a:6a:8d:e6:91:1b:01:8b:c9:a7:f9:8e:50:
fa:92:50:6d:ef:9a:7e:73:6f:b3:85:16:7e:13:d1:1f:fa:7d:
11:56:07:2f:d0:21:8b:8d:41:96:cb:32:5a:63:93:51:cb:ac:
1a:da:18:c0
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy
QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yMDA5Mjkx
MDAwMTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUzQjg4QjQxNzJGNzk4
QjY5NDYwNEZDRkJBNERFNEYxMUU0ODIwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDad2GqULsMtseilcjzHn104PnaMxzhC6gNuAOh0bNuQt85+kBR
AdCsw4jI6mvHE0FWya92KxJXlElBazk5PieoojAPlY7l04881oX1cof9U4BKMON+
pE71fbSRGO6tVwbQlRQG46aSRD6O3t29Nw58cqKTk8NH6FF6pACNI5pYmUWaQH+J
Gl27M/3K7H7NI0c1HMmBAj7mEIwotYaEsd5A9micYT0CBgQ0veosPpVsWbtGa4Aq
qmeRk35wZT1v0ONHwnD8QE4eyCVv8ayLO2xyFH+INRJN9csRJM5rZ7RI3dkyo5H+
f64NaTWqfhtjZe5b7xIKIdUeDvFsQx3Q1S/zAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUU7iLQXL3mLaUYE/Puk3k8R5IIHgwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT
ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F
VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvVTdpTFFYTDNtTGFVWUVf
UHVrM2s4UjVJSUhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQFVgAwDQYJKoZIhvcNAQELBQADggEBAIXDRTYRfQLZcfYV/0kRk2Ci74I6tzNd
BQJdkFGM+TN17Vgx6PIiviL12egyM8mT9fBWCATyOX3lqofgS8Mdne0xN04YvGO8
6fCgZJq2mwtfsci7jIn1F9jSc8w8P79yufPHydpqAsYfOSrWW4cywT+3d7H8up/A
K8vRJY+YsjvxQEDvSuFwD31wy+PjPD2auxy/5rZQBprjD0KbvYHwYgZwi4QdEUqf
uCHP7eAfL6FC946YU0qO5/5hpp3Zkj7MCyu5QYt61ehK2Zv5OmqN5pEbAYvJp/mO
UPqSUG3vmn5zb7OFFn4T0R/6fRFWBy/QIYuNQZbLMlpjk1HLrBraGMA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org