Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/pSf2wtoKZvsBO3JBNpT987YlCHQ.roa
File: pSf2wtoKZvsBO3JBNpT987YlCHQ.roa (raw, json)
Hash identifier: iizCOY+r4UezJAkTukv7N+Pyy6Afmo8AXY7sRW0PbyE=
Subject key identifier: A5:27:F6:C2:DA:0A:66:FB:01:3B:72:41:36:94:FD:F3:B6:25:08:74
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0AF2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pSf2wtoKZvsBO3JBNpT987YlCHQ.roa
Signing time: Wed 08 Feb 2023 01:20:10 +0000
ROA not before: Wed 08 Feb 2023 01:20:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 2401:e180:8800::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2802 (0xaf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 8 01:20:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A527F6C2DA0A66FB013B72413694FDF3B6250874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:d2:09:a8:4b:2b:c7:18:07:d0:f8:9a:7d:
a8:82:12:6a:2b:06:ef:00:01:bb:7e:9b:43:ee:3d:
c2:7f:c0:5d:23:35:c9:5e:0d:b0:b9:74:fb:84:05:
c4:d3:0f:63:f5:3e:a5:c2:6b:f8:ee:75:1c:f8:4d:
4a:8d:d4:65:56:89:e9:e7:d5:21:5a:aa:b9:7f:dd:
21:a8:29:75:61:06:81:9a:d4:f8:ea:53:46:59:07:
84:68:73:64:dc:7e:86:7a:47:a8:39:82:fd:fe:48:
8a:c7:0f:29:8d:ca:b9:c2:81:e7:f5:84:2a:7f:3f:
bd:36:da:89:65:3c:df:fb:02:83:bf:8d:dd:41:ac:
fb:42:65:a4:fc:7b:b3:1c:b7:39:bf:fa:55:e3:c0:
c0:cd:3e:e9:64:b4:a0:3f:f8:8b:e8:b0:4b:53:a7:
54:5f:92:25:4e:f7:9d:8a:a5:0d:c4:7e:49:75:e2:
e5:a7:3e:7a:5e:68:e6:4c:49:32:a0:bc:28:e2:ee:
c5:86:57:84:ab:53:67:09:cd:6e:b7:97:3b:50:43:
7f:e8:78:a6:91:af:10:b6:3c:bd:0d:1f:57:49:7f:
03:90:12:eb:aa:be:be:72:98:a4:01:71:a0:0c:b2:
eb:7d:e1:6f:36:78:17:00:d0:b3:cf:38:d9:f0:98:
90:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:27:F6:C2:DA:0A:66:FB:01:3B:72:41:36:94:FD:F3:B6:25:08:74
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pSf2wtoKZvsBO3JBNpT987YlCHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8800::/44
Signature Algorithm: sha256WithRSAEncryption
00:cf:39:f3:eb:d8:7a:2b:d3:81:13:83:7e:18:b6:57:10:b4:
a4:26:9f:32:bb:b2:d1:43:1a:2f:90:42:b4:d9:29:41:6c:ae:
11:24:5d:a1:b5:d3:8e:e7:ad:b7:43:02:0b:83:af:23:0b:0e:
9d:51:77:cc:dd:0c:79:15:44:a0:0d:06:c4:0f:14:14:f4:2d:
cc:7c:d7:dd:fe:8e:f9:f0:c2:7e:11:fc:0a:f7:db:b4:38:00:
15:cd:1b:ac:95:a7:62:09:46:ea:bc:a7:a7:92:5a:3e:63:86:
f4:55:7b:69:5d:0a:fd:b2:7e:69:20:df:75:e2:5b:4b:1f:5c:
5c:ed:21:c5:62:e4:03:e9:93:a2:f1:22:0d:18:64:21:30:5e:
2c:59:c0:c8:8d:c2:e7:c9:e5:24:f1:9c:2a:c4:9a:1c:d5:c3:
0e:5f:57:b5:dc:32:b1:35:aa:a7:9d:1c:5d:0b:7d:fd:35:19:
d0:3e:20:4a:f0:ec:13:c9:f9:9d:d3:da:86:d9:8d:6e:13:21:
26:8a:85:e9:2d:3e:07:e7:4d:05:b7:34:30:61:d9:10:ba:b5:
65:98:11:9b:42:42:0f:72:90:02:1c:13:2c:32:9d:45:1b:82:
4c:58:2a:cf:2c:78:23:d2:3c:aa:78:07:33:2a:43:2d:2b:04:
cd:22:1f:f3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzAyMDgw
MTIwMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE1MjdGNkMyREEwQTY2
RkIwMTNCNzI0MTM2OTRGREYzQjYyNTA4NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3QNIJqEsrxxgH0PiafaiCEmorBu8AAbt+m0PuPcJ/wF0jNcle
DbC5dPuEBcTTD2P1PqXCa/judRz4TUqN1GVWienn1SFaqrl/3SGoKXVhBoGa1Pjq
U0ZZB4Roc2TcfoZ6R6g5gv3+SIrHDymNyrnCgef1hCp/P7022ollPN/7AoO/jd1B
rPtCZaT8e7Mctzm/+lXjwMDNPulktKA/+IvosEtTp1RfkiVO952KpQ3Efkl14uWn
PnpeaOZMSTKgvCji7sWGV4SrU2cJzW63lztQQ3/oeKaRrxC2PL0NH1dJfwOQEuuq
vr5ymKQBcaAMsut94W82eBcA0LPPONnwmJDBAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUpSf2wtoKZvsBO3JBNpT987YlCHQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3BTZjJ3dG9LWnZzQk8zSkJOcFQ5ODdZ
bENIUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiAAw
DQYJKoZIhvcNAQELBQADggEBAADPOfPr2Hor04ETg34YtlcQtKQmnzK7stFDGi+Q
QrTZKUFsrhEkXaG1047nrbdDAguDryMLDp1Rd8zdDHkVRKANBsQPFBT0Lcx8193+
jvnwwn4R/Ar327Q4ABXNG6yVp2IJRuq8p6eSWj5jhvRVe2ldCv2yfmkg33XiW0sf
XFztIcVi5APpk6LxIg0YZCEwXixZwMiNwufJ5STxnCrEmhzVww5fV7XcMrE1qqed
HF0Lff01GdA+IErw7BPJ+Z3T2obZjW4TISaKhektPgfnTQW3NDBh2RC6tWWYEZtC
Qg9ykAIcEywynUUbgkxYKs8seCPSPKp4BzMqQy0rBM0iH/M=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org