Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xurzadTjJiNbmX3qPZwUqEt3r00.roa
File: xurzadTjJiNbmX3qPZwUqEt3r00.roa (raw, json)
Hash identifier: YuIzYmH5e6XNzaOyCMu6vhXmjNyYxNTsKQNNeV/MiHs=
Subject key identifier: C6:EA:F3:69:D4:E3:26:23:5B:99:7D:EA:3D:9C:14:A8:4B:77:AF:4D
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0B7B
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xurzadTjJiNbmX3qPZwUqEt3r00.roa
Signing time: Wed 29 Sep 2021 02:37:51 +0000
ROA not before: Wed 29 Sep 2021 02:37:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131658
IP address blocks: 2404:bac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2939 (0xb7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 29 02:37:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C6EAF369D4E326235B997DEA3D9C14A84B77AF4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a2:db:ec:e8:a1:6a:91:57:fa:b2:6d:ae:25:
e4:22:2e:b5:a4:fd:e0:74:f3:7a:33:de:7b:b9:32:
78:83:63:6a:dd:a6:f1:e6:68:48:a5:9d:fd:a6:bc:
4c:4d:93:da:32:07:ea:ed:b3:5a:2a:6a:da:f8:cc:
a9:2b:2e:0f:19:7f:6a:22:20:f3:40:95:b4:b2:8a:
a3:23:88:14:71:1b:44:f2:e5:15:a8:4b:22:3c:be:
5d:ca:62:6b:e1:a5:b8:92:0d:79:b0:5c:9f:66:80:
94:63:7c:21:20:ec:5f:e0:7c:b6:a6:10:20:33:8c:
e0:57:f7:d1:e7:c7:a1:fd:28:43:68:8e:10:1c:a5:
1e:f3:1b:8e:43:d4:1d:36:6a:e3:72:b9:6e:2c:67:
4a:b1:be:b4:47:c2:c6:8d:ac:3c:82:73:96:96:0b:
da:2f:cb:c2:91:9b:18:25:98:fd:98:95:04:98:5d:
1b:34:54:97:ef:2a:66:02:72:69:44:03:ca:d4:17:
40:6d:1f:bb:b8:b1:7b:d0:62:d2:32:a3:9f:93:ad:
89:09:4d:15:3b:55:fb:4c:3e:7f:ba:75:a1:d3:72:
2f:44:f0:68:78:19:00:64:16:56:0b:54:0c:de:99:
f0:8d:9d:fd:6a:98:55:f2:64:ab:63:36:1c:35:75:
56:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EA:F3:69:D4:E3:26:23:5B:99:7D:EA:3D:9C:14:A8:4B:77:AF:4D
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/xurzadTjJiNbmX3qPZwUqEt3r00.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
39:86:55:8a:c2:87:53:39:75:01:ae:f4:d8:15:89:0d:0a:28:
76:0a:fa:a9:93:5b:12:d6:3f:62:4c:9b:ed:c8:c8:2b:30:92:
bc:13:2f:0c:a0:17:23:3f:9f:25:11:21:c7:7d:af:af:4d:f8:
b6:7b:a9:bd:ae:0d:47:21:76:62:e4:3e:45:03:8b:40:01:48:
4b:89:ce:41:c1:91:a4:95:0b:7d:1d:ba:50:a8:83:4d:e9:b1:
2e:25:98:fe:03:5f:af:d7:c7:19:d6:ee:2f:0b:0e:82:6e:40:
d7:d4:99:32:ea:8c:bb:9e:6c:cf:e2:57:c9:85:84:12:dd:6e:
e5:88:9c:08:e4:b1:97:29:f8:d4:b9:b3:ee:45:6e:71:24:07:
75:bf:df:44:03:06:4c:d8:21:99:fc:d6:ec:30:04:b1:07:78:
3f:15:82:1c:9c:86:d1:c6:15:b6:a4:ab:fe:4d:aa:bf:9d:fd:
4d:57:8f:c2:44:de:f1:58:95:f1:ad:2a:b4:a6:3b:97:3c:a7:
6d:3f:c9:46:95:25:90:44:54:e7:d3:0d:de:25:4b:7f:27:f9:
5f:37:9a:44:6f:38:1b:e3:c0:27:1b:86:d7:d3:22:e7:8f:5a:
1e:57:ac:d0:5e:e3:93:99:a1:95:bf:fb:bd:ac:de:36:e5:40:
02:77:c9:a5
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICC3swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1
NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yMTA5Mjkw
MjM3NTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEM2RUFGMzY5RDRFMzI2
MjM1Qjk5N0RFQTNEOUMxNEE4NEI3N0FGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqotvs6KFqkVf6sm2uJeQiLrWk/eB083oz3nu5MniDY2rdpvHm
aEilnf2mvExNk9oyB+rts1oqatr4zKkrLg8Zf2oiIPNAlbSyiqMjiBRxG0Ty5RWo
SyI8vl3KYmvhpbiSDXmwXJ9mgJRjfCEg7F/gfLamECAzjOBX99Hnx6H9KENojhAc
pR7zG45D1B02auNyuW4sZ0qxvrRHwsaNrDyCc5aWC9ovy8KRmxglmP2YlQSYXRs0
VJfvKmYCcmlEA8rUF0BtH7u4sXvQYtIyo5+TrYkJTRU7VftMPn+6daHTci9E8Gh4
GQBkFlYLVAzemfCNnf1qmFXyZKtjNhw1dVYHAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUxurzadTjJiNbmX3qPZwUqEt3r00wHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD
jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP
VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC94dXJ6YWRUakppTmJt
WDNxUFp3VXFFdDNyMDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAS6wDANBgkqhkiG9w0BAQsFAAOCAQEAOYZVisKHUzl1Aa702BWJDQoodgr6
qZNbEtY/Ykyb7cjIKzCSvBMvDKAXIz+fJREhx32vr034tnupva4NRyF2YuQ+RQOL
QAFIS4nOQcGRpJULfR26UKiDTemxLiWY/gNfr9fHGdbuLwsOgm5A19SZMuqMu55s
z+JXyYWEEt1u5YicCOSxlyn41Lmz7kVucSQHdb/fRAMGTNghmfzW7DAEsQd4PxWC
HJyG0cYVtqSr/k2qv539TVePwkTe8ViV8a0qtKY7lzynbT/JRpUlkERU59MN3iVL
fyf5XzeaRG84G+PAJxuG19Mi549aHles0F7jk5mhlb/7vazeNuVAAnfJpQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org