Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/r7THW-4gRbVqmdTVhKIcv9zvLvE.roa
File: r7THW-4gRbVqmdTVhKIcv9zvLvE.roa (raw, json)
Hash identifier: g7YDxUW6TNEJ8/XFD01Hu/XZuMAgBB4PZNavhsWq0mg=
Subject key identifier: AF:B4:C7:5B:EE:20:45:B5:6A:99:D4:D5:84:A2:1C:BF:DC:EF:2E:F1
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0AF8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r7THW-4gRbVqmdTVhKIcv9zvLvE.roa
Signing time: Wed 08 Feb 2023 03:10:15 +0000
ROA not before: Wed 08 Feb 2023 03:10:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18412
IP address blocks: 2401:e180:8e00::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2808 (0xaf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 8 03:10:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFB4C75BEE2045B56A99D4D584A21CBFDCEF2EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:c3:f6:2c:05:29:3b:2c:88:49:d6:8e:9c:
50:06:7b:f5:cd:5d:43:b5:04:b8:1a:f3:f3:e6:fa:
79:25:6f:7e:70:cb:cd:ca:58:b5:e2:be:eb:30:10:
89:ba:c1:02:88:1c:c1:19:09:c1:72:22:fc:06:25:
30:f6:9a:ff:55:8f:49:ce:ca:ec:fe:f4:48:7d:ec:
09:c8:b5:f5:b2:b9:74:9a:0e:35:7a:47:d0:e4:cd:
37:e8:54:0f:e8:44:b1:5c:df:5b:7e:3f:2a:52:7e:
b6:1c:20:fb:be:1c:4f:d0:88:af:87:ce:85:4d:cf:
b4:84:03:eb:a0:61:0a:5f:af:7c:b4:a4:39:ca:bf:
c7:55:c7:65:b3:82:89:9d:d5:56:70:e7:1f:6c:d5:
b7:0c:13:f3:ef:80:d6:41:25:d9:9b:ef:74:80:13:
bf:b9:13:24:22:a7:a3:7f:8e:17:69:77:45:e5:b5:
02:6e:a1:b5:93:2d:53:16:cb:b5:55:31:13:8d:62:
92:a1:b3:92:64:1e:34:f2:f9:57:a4:b0:f7:da:5b:
52:17:e7:b8:52:a1:4a:d1:f8:fe:88:3c:fe:77:33:
01:15:92:8c:e5:01:2e:75:50:17:e5:af:3a:47:80:
e3:e1:44:ef:7e:94:e0:95:4a:92:5f:39:6e:21:d9:
9d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B4:C7:5B:EE:20:45:B5:6A:99:D4:D5:84:A2:1C:BF:DC:EF:2E:F1
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r7THW-4gRbVqmdTVhKIcv9zvLvE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8e00::/44
Signature Algorithm: sha256WithRSAEncryption
7c:91:90:0d:5b:1f:78:65:ab:95:49:19:8a:04:13:9d:de:dc:
18:d7:e0:b1:ba:22:8d:80:c3:99:34:60:c4:78:a2:c7:19:19:
2b:1a:e1:82:d3:e4:e7:3d:93:47:0a:66:56:c0:59:11:45:7a:
c9:07:dc:78:48:87:94:39:08:62:52:92:8d:d3:f9:d2:58:2b:
92:73:cc:05:eb:01:80:26:f9:2a:8b:4b:7d:7d:68:35:fd:6f:
85:f2:c3:ea:19:4a:60:ff:4f:c8:4c:95:43:7e:1c:ef:91:68:
95:53:bb:19:32:4c:3e:00:ac:8e:55:2b:a1:d6:0b:fd:40:ba:
b3:36:c8:b0:00:4e:7f:87:e2:4e:b0:6a:1f:14:fa:8f:d4:12:
8e:12:8a:46:35:80:e1:3c:d6:90:bf:68:cc:28:88:a6:5c:51:
9f:c7:fe:1c:eb:fd:d5:07:24:de:62:55:8d:e4:d7:75:d8:ee:
cf:fa:5b:9b:43:4b:52:53:5e:47:b5:ec:88:59:b5:ea:04:a8:
77:88:b9:83:fd:e1:a3:15:e4:c1:4b:a1:b6:bd:18:6b:d7:6c:
fd:c4:7d:6d:82:32:f8:35:7a:44:43:43:5d:f4:93:88:1e:1c:
5c:d5:4e:d8:d4:8c:c4:57:3a:4f:5c:3a:46:5f:fa:83:58:f0:
d0:43:fc:6a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzAyMDgw
MzEwMTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGQjRDNzVCRUUyMDQ1
QjU2QTk5RDRENTg0QTIxQ0JGRENFRjJFRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOnsP2LAUpOyyISdaOnFAGe/XNXUO1BLga8/Pm+nklb35wy83K
WLXivuswEIm6wQKIHMEZCcFyIvwGJTD2mv9Vj0nOyuz+9Eh97AnItfWyuXSaDjV6
R9DkzTfoVA/oRLFc31t+PypSfrYcIPu+HE/QiK+HzoVNz7SEA+ugYQpfr3y0pDnK
v8dVx2Wzgomd1VZw5x9s1bcME/PvgNZBJdmb73SAE7+5EyQip6N/jhdpd0XltQJu
obWTLVMWy7VVMRONYpKhs5JkHjTy+VeksPfaW1IX57hSoUrR+P6IPP53MwEVkozl
AS51UBflrzpHgOPhRO9+lOCVSpJfOW4h2Z3xAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUr7THW+4gRbVqmdTVhKIcv9zvLvEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3I3VEhXLTRnUmJWcW1kVFZoS0ljdjl6
dkx2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAjgAw
DQYJKoZIhvcNAQELBQADggEBAHyRkA1bH3hlq5VJGYoEE53e3BjX4LG6Io2Aw5k0
YMR4oscZGSsa4YLT5Oc9k0cKZlbAWRFFeskH3HhIh5Q5CGJSko3T+dJYK5JzzAXr
AYAm+SqLS319aDX9b4Xyw+oZSmD/T8hMlUN+HO+RaJVTuxkyTD4ArI5VK6HWC/1A
urM2yLAATn+H4k6wah8U+o/UEo4SikY1gOE81pC/aMwoiKZcUZ/H/hzr/dUHJN5i
VY3k13XY7s/6W5tDS1JTXke17IhZteoEqHeIuYP94aMV5MFLoba9GGvXbP3EfW2C
Mvg1ekRDQ130k4geHFzVTtjUjMRXOk9cOkZf+oNY8NBD/Go=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org