Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/6cTCtRd5_S_gH_7YjF0l2r1jScY.roa
File: 6cTCtRd5_S_gH_7YjF0l2r1jScY.roa (raw, json)
Hash identifier: Nww2zkWjJO5wJOYYHdEv1TISdF0q1dryjWxM3hVqvzw=
Subject key identifier: E9:C4:C2:B5:17:79:FD:2F:E0:1F:FE:D8:8C:5D:25:DA:BD:63:49:C6
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CE0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6cTCtRd5_S_gH_7YjF0l2r1jScY.roa
Signing time: Wed 26 Apr 2023 07:59:15 +0000
ROA not before: Wed 26 Apr 2023 07:59:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 2401:ab00::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3296 (0xce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 07:59:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E9C4C2B51779FD2FE01FFED88C5D25DABD6349C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a4:b7:09:02:4f:a1:29:73:bf:92:a6:71:20:
5b:ab:64:09:8e:7b:23:38:c9:55:0b:ae:d7:e1:aa:
15:a2:64:f9:db:01:26:e6:59:c8:c3:a9:f4:75:a8:
d2:17:32:14:b2:39:22:81:6c:a7:61:9a:c7:9c:6b:
3a:67:55:62:5f:2f:8c:96:fa:f6:78:63:ab:26:37:
b9:cb:75:3f:ea:d1:15:0e:70:57:16:b8:dd:3c:9a:
bf:72:81:53:35:1e:05:f5:da:21:d9:b5:3a:1e:38:
97:b5:e4:47:c7:a3:f8:20:8b:90:ad:61:d3:5a:2e:
9d:4a:a5:12:e2:cb:05:82:c2:00:d6:16:5a:ca:39:
45:ef:84:a1:2d:c2:e6:3b:dd:0b:31:e7:3d:6d:83:
15:11:fb:27:3b:3a:f9:9e:d7:ac:05:9b:8b:9d:21:
a0:90:ec:f4:6d:c4:ea:81:f3:ef:2e:76:f5:dc:53:
5a:90:6c:6e:ec:0c:07:14:c8:7d:78:b8:d7:60:71:
e1:36:90:e4:c4:17:7e:ef:2a:e4:59:99:95:9f:18:
d3:1c:ed:fb:d8:a9:c3:cb:16:3a:ae:1a:9a:4d:f6:
4e:f6:34:4f:5f:e4:f7:fd:c4:5d:d5:ec:ef:3f:fa:
ba:6d:35:01:8c:f5:49:20:20:3b:80:8c:17:3b:c4:
13:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C4:C2:B5:17:79:FD:2F:E0:1F:FE:D8:8C:5D:25:DA:BD:63:49:C6
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6cTCtRd5_S_gH_7YjF0l2r1jScY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
42:a1:5d:aa:3d:19:58:3b:83:8a:2d:db:d8:60:2b:ca:69:60:
b9:29:2d:e0:e2:8d:6d:9c:7a:e7:b2:d8:04:14:96:c3:bc:a5:
a6:aa:7b:2a:c8:3d:ed:fc:08:04:a3:5c:f4:bb:f2:42:7a:ca:
24:2b:1e:62:61:cb:89:48:81:03:2b:f4:b8:5c:60:ca:14:e7:
19:65:c8:7d:55:d5:1a:e8:a9:63:db:5c:dc:f3:4a:a4:63:c2:
45:4f:df:cd:bc:71:9e:f8:08:3b:bc:9c:d8:1c:b5:45:dc:a6:
ea:2f:0f:e7:81:f6:f3:27:83:b3:ee:e8:99:ea:07:10:98:21:
52:79:29:83:de:88:7e:4a:47:0a:79:72:07:4b:57:b6:c1:d9:
82:ce:1e:64:1f:b6:a7:11:da:d1:26:b4:32:80:2f:42:c6:38:
7f:68:14:8d:fd:f7:ad:40:dd:0b:87:93:9d:fa:63:07:85:ce:
6f:af:2d:69:f8:dd:28:ae:e8:a5:b2:a4:4a:9b:40:ec:b9:07:
e2:75:31:c9:e6:12:9e:96:77:bf:35:23:7a:cd:fb:6e:cd:f8:
e0:d7:12:2f:91:e1:d5:c3:e9:b6:18:98:25:4f:ab:ea:b2:e9:
ac:f3:f5:21:1e:d6:10:e2:19:81:e2:b6:fe:d9:67:c7:ad:27:
57:c0:39:f6
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYw
NzU5MTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU5QzRDMkI1MTc3OUZE
MkZFMDFGRkVEODhDNUQyNURBQkQ2MzQ5QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDrpLcJAk+hKXO/kqZxIFurZAmOeyM4yVULrtfhqhWiZPnbASbm
WcjDqfR1qNIXMhSyOSKBbKdhmsecazpnVWJfL4yW+vZ4Y6smN7nLdT/q0RUOcFcW
uN08mr9ygVM1HgX12iHZtToeOJe15EfHo/ggi5CtYdNaLp1KpRLiywWCwgDWFlrK
OUXvhKEtwuY73Qsx5z1tgxUR+yc7Ovme16wFm4udIaCQ7PRtxOqB8+8udvXcU1qQ
bG7sDAcUyH14uNdgceE2kOTEF37vKuRZmZWfGNMc7fvYqcPLFjquGppN9k72NE9f
5Pf9xF3V7O8/+rptNQGM9UkgIDuAjBc7xBNjAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU6cTCtRd5/S/gH/7YjF0l2r1jScYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNmNUQ3RSZDVfU19nSF83WWpGMGwy
cjFqU2NZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBqwAw
DQYJKoZIhvcNAQELBQADggEBAEKhXao9GVg7g4ot29hgK8ppYLkpLeDijW2ceuey
2AQUlsO8paaqeyrIPe38CASjXPS78kJ6yiQrHmJhy4lIgQMr9LhcYMoU5xllyH1V
1RroqWPbXNzzSqRjwkVP3828cZ74CDu8nNgctUXcpuovD+eB9vMng7Pu6JnqBxCY
IVJ5KYPeiH5KRwp5cgdLV7bB2YLOHmQftqcR2tEmtDKAL0LGOH9oFI39961A3QuH
k536YweFzm+vLWn43Siu6KWypEqbQOy5B+J1McnmEp6Wd781I3rN+27N+ODXEi+R
4dXD6bYYmCVPq+qy6azz9SEe1hDiGYHitv7ZZ8etJ1fAOfY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org