Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/iRIoF2JIcge70z8yAnpdassRauU.roa
File: iRIoF2JIcge70z8yAnpdassRauU.roa (raw, json)
Hash identifier: cihdip9FNug/R2PyWMIKIBwsxAXeLiBDbyWM4OolBP4=
Subject key identifier: 89:12:28:17:62:48:72:07:BB:D3:3F:32:02:7A:5D:6A:CB:11:6A:E5
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 63
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/iRIoF2JIcge70z8yAnpdassRauU.roa
Signing time: Wed 09 Nov 2022 19:18:08 +0000
ROA not before: Wed 09 Nov 2022 19:18:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18041
IP address blocks: 2406:ee40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Nov 9 19:18:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8912281762487207BBD33F32027A5D6ACB116AE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:66:41:c4:9c:96:02:98:87:7b:de:27:43:
9a:f0:67:4f:f9:f2:69:4b:40:62:b0:b2:8b:c9:a1:
39:da:75:5d:86:e7:b8:bd:ef:53:45:08:fb:a8:8b:
0c:c9:b5:c5:a7:31:72:33:33:26:28:1d:4f:72:eb:
d1:05:ec:71:84:49:31:65:b0:ee:ae:f1:fd:e8:bb:
ef:7c:86:f8:ec:88:53:93:1a:cc:40:a2:6d:a0:89:
63:f4:7f:30:da:ed:fe:12:bd:cc:23:a0:69:ba:3b:
89:37:18:d2:38:cd:fd:26:c8:47:22:38:1b:06:f0:
b1:39:a3:64:69:a4:b0:87:7a:91:65:6c:e4:2f:a9:
7d:c4:89:d1:fe:36:8b:8c:be:39:b8:b4:52:61:4a:
e2:bf:4d:7e:9e:06:6e:4c:02:c2:29:14:cf:80:0b:
d9:e6:99:69:04:9f:d7:c9:1a:64:18:7f:fc:54:16:
00:cb:54:af:24:9e:82:76:76:b6:62:4a:bc:75:4a:
f0:87:35:53:72:ce:9d:fc:20:17:65:af:98:bc:c5:
a8:91:90:bf:95:06:79:e1:0e:40:78:f4:a2:cc:3e:
be:fe:78:96:dc:10:f5:05:47:f6:e8:7d:39:2b:3d:
48:fd:70:cb:ad:ad:b7:be:3b:6f:0a:03:b6:28:81:
b1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:12:28:17:62:48:72:07:BB:D3:3F:32:02:7A:5D:6A:CB:11:6A:E5
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/iRIoF2JIcge70z8yAnpdassRauU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:ee40::/32
Signature Algorithm: sha256WithRSAEncryption
9c:05:b3:f4:1b:a7:49:70:c9:b1:e4:f2:68:a3:40:73:35:de:
37:05:c0:10:e2:c7:0a:34:34:70:91:a6:67:82:cd:d6:6d:60:
36:c9:57:75:7a:14:6e:28:5c:e3:55:46:12:d0:6a:c7:81:f2:
0f:b3:d1:c7:7f:3e:af:a2:d0:71:a7:ae:0d:72:07:d7:4d:a6:
e6:06:b6:e9:92:3a:48:b4:27:c3:b2:0e:40:d0:85:55:44:40:
73:95:48:7e:53:46:fb:43:89:1f:91:0c:65:50:8a:62:01:f3:
99:6f:69:62:0e:dd:39:c9:31:cf:b4:e5:93:5a:a3:a1:59:e4:
4c:e6:e5:fa:bf:4f:e2:4a:b9:43:93:8f:41:f9:f1:a0:e1:95:
e2:fc:68:86:ad:80:23:bb:b4:ed:97:68:c0:92:4d:d9:f4:73:
bf:5d:3f:13:0d:11:f0:78:f7:a7:e9:40:18:36:1e:85:fe:b5:
38:38:c3:19:14:06:ec:18:d6:2f:2e:ce:55:90:b5:45:f0:50:
93:b9:d0:38:cf:63:ed:15:6f:c5:28:23:07:63:39:53:7b:1f:
cb:72:9e:b8:0f:76:62:ae:dc:91:80:67:af:ff:22:ce:1c:07:
5e:62:ff:e8:79:10:42:a0:23:af:dc:fa:35:b0:35:09:60:c1:
d3:0e:54:fe
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgIBYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkY0
NDFCNTdDODZCRDlEMTkzNDUxQTAwNUQyNkNFMUEzQzZERUU3MB4XDTIyMTEwOTE5
MTgwOFoXDTIzMDkwNjAzMDAzNVowMzExMC8GA1UEAxMoODkxMjI4MTc2MjQ4NzIw
N0JCRDMzRjMyMDI3QTVENkFDQjExNkFFNTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANHIZkHEnJYCmId73idDmvBnT/nyaUtAYrCyi8mhOdp1XYbnuL3v
U0UI+6iLDMm1xacxcjMzJigdT3Lr0QXscYRJMWWw7q7x/ei773yG+OyIU5MazECi
baCJY/R/MNrt/hK9zCOgabo7iTcY0jjN/SbIRyI4GwbwsTmjZGmksId6kWVs5C+p
fcSJ0f42i4y+Obi0UmFK4r9Nfp4GbkwCwikUz4AL2eaZaQSf18kaZBh//FQWAMtU
rySegnZ2tmJKvHVK8Ic1U3LOnfwgF2WvmLzFqJGQv5UGeeEOQHj0osw+vv54ltwQ
9QVH9uh9OSs9SP1wy62tt747bwoDtiiBsakCAwEAAaOCAfMwggHvMB0GA1UdDgQW
BBSJEigXYkhyB7vTPzICel1qyxFq5TAfBgNVHSMEGDAWgBQ79EG1fIa9nRk0UaAF
0mzho8be5zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR
oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5G
Ty9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL09fUkJ0WHlHdlowWk5GR2dCZEpzNGFQRzN1Yy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VSQVlJTkZPL2lSSW9GMkpJY2dlNzB6
OHlBbnBkYXNzUmF1VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p
Yy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD
BQAkBu5AMA0GCSqGSIb3DQEBCwUAA4IBAQCcBbP0G6dJcMmx5PJoo0BzNd43BcAQ
4scKNDRwkaZngs3WbWA2yVd1ehRuKFzjVUYS0GrHgfIPs9HHfz6votBxp64NcgfX
TabmBrbpkjpItCfDsg5A0IVVREBzlUh+U0b7Q4kfkQxlUIpiAfOZb2liDt05yTHP
tOWTWqOhWeRM5uX6v0/iSrlDk49B+fGg4ZXi/GiGrYAju7Ttl2jAkk3Z9HO/XT8T
DRHwePen6UAYNh6F/rU4OMMZFAbsGNYvLs5VkLVF8FCTudA4z2PtFW/FKCMHYzlT
ex/Lcp64D3ZirtyRgGev/yLOHAdeYv/oeRBCoCOv3Po1sDUJYMHTDlT+
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org