Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/V0EcytSfkLllW8ZsYwv6czeorhQ.roa
File: V0EcytSfkLllW8ZsYwv6czeorhQ.roa (raw, json)
Hash identifier: A4L0m4vjn/mscPNJuliCQ+/lijeIc7g7GGlvJ1L2KP0=
Subject key identifier: 57:41:1C:CA:D4:9F:90:B9:65:5B:C6:6C:63:0B:FA:73:37:A8:AE:14
Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Certificate serial: 06D1
Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/V0EcytSfkLllW8ZsYwv6czeorhQ.roa
Signing time: Wed 29 Sep 2021 02:44:45 +0000
ROA not before: Wed 29 Sep 2021 02:44:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131667
IP address blocks: 2405:a040::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1745 (0x6d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Validity
Not Before: Sep 29 02:44:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=57411CCAD49F90B9655BC66C630BFA7337A8AE14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4b:64:14:d7:ea:cd:f8:b9:8e:49:50:05:e2:
87:2d:6c:11:04:b4:a0:16:7d:0c:ef:4a:9c:8d:4f:
38:ba:e8:ce:19:c1:e3:83:57:47:d6:58:a4:96:52:
a2:e4:fb:37:2f:1e:3e:d0:f6:27:c0:c9:90:c0:61:
45:36:f5:aa:0f:44:e3:39:ff:6b:ee:75:54:5f:e7:
a8:f2:28:d8:9b:33:79:6b:ba:fd:4f:73:56:24:68:
e3:21:61:7e:83:1b:ec:92:6d:54:54:d7:02:38:c2:
56:a4:7c:24:4c:db:58:1c:45:ae:bb:a6:20:bb:5d:
66:79:df:db:f9:f2:69:58:83:67:7e:8d:59:ab:df:
38:1b:3e:62:66:44:d8:fb:bc:99:23:60:43:a6:f7:
68:fd:0a:67:6e:9d:88:e6:f7:e4:f0:63:8c:eb:37:
a9:9a:93:e9:05:df:10:fd:81:b4:77:0c:e2:d8:c8:
54:00:d4:d6:4f:70:f8:a4:ad:3a:1e:cd:4b:2a:b0:
bb:7f:e5:51:00:d5:9f:17:1d:5d:17:3d:48:3b:b8:
f9:cb:a1:ce:22:c2:36:cf:0d:c9:8d:4e:1c:a4:3d:
75:61:7c:ef:9f:9a:b6:e6:04:fe:dc:82:6e:99:69:
b4:dd:6d:a5:60:c9:a4:79:04:1b:92:fd:c2:63:23:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:41:1C:CA:D4:9F:90:B9:65:5B:C6:6C:63:0B:FA:73:37:A8:AE:14
X509v3 Authority Key Identifier:
keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/V0EcytSfkLllW8ZsYwv6czeorhQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a040::/32
Signature Algorithm: sha256WithRSAEncryption
42:3d:6d:03:69:e9:78:b4:a7:54:63:cd:b9:00:2e:40:7f:93:
50:64:2c:33:27:fa:7b:2f:68:25:17:b2:c8:0f:68:fd:a1:36:
bb:a9:c8:c7:d3:eb:12:98:c2:5a:fa:e1:75:55:8a:8a:96:5c:
d9:54:41:cc:6a:57:da:6c:17:76:f2:53:c5:90:89:67:e7:e5:
87:35:a5:54:3b:20:dc:d6:6c:93:08:ed:92:77:75:16:3f:4e:
63:55:91:28:2e:7e:63:d2:5c:0d:75:b4:b4:9a:75:63:58:d7:
f2:c9:4b:91:95:1d:43:39:d2:27:31:11:1b:55:dd:f8:6a:02:
b2:f9:14:5c:da:2d:a3:37:89:e6:00:65:f0:30:88:3a:56:f8:
4d:38:25:a3:a3:bf:c2:a1:98:58:31:ae:8a:ae:c4:b4:08:de:
97:88:91:f8:4e:f4:26:1d:61:fb:4f:cb:bb:d3:0f:f0:1f:81:
8d:0c:32:70:16:5a:a9:1a:e5:45:fd:86:5f:3f:38:04:1c:c5:
72:d4:dd:a5:da:3b:82:e9:aa:5f:03:ff:78:ab:7d:6c:88:cd:
1f:36:e4:a1:d4:d8:07:58:b4:06:97:db:4a:0e:2f:8c:f1:4f:
52:69:4d:f2:66:28:05:24:45:94:40:77:31:d5:b4:8e:a3:db:
da:6c:9a:6a
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUE2
MTBBNjJBOEE3MkNEMzZDMUQyMkM3MDg1RURGMTgwOTUxODk5NDAeFw0yMTA5Mjkw
MjQ0NDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU3NDExQ0NBRDQ5Rjkw
Qjk2NTVCQzY2QzYzMEJGQTczMzdBOEFFMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjS2QU1+rN+LmOSVAF4octbBEEtKAWfQzvSpyNTzi66M4ZweOD
V0fWWKSWUqLk+zcvHj7Q9ifAyZDAYUU29aoPROM5/2vudVRf56jyKNibM3lruv1P
c1YkaOMhYX6DG+ySbVRU1wI4wlakfCRM21gcRa67piC7XWZ539v58mlYg2d+jVmr
3zgbPmJmRNj7vJkjYEOm92j9CmdunYjm9+TwY4zrN6mak+kF3xD9gbR3DOLYyFQA
1NZPcPikrToezUsqsLt/5VEA1Z8XHV0XPUg7uPnLoc4iwjbPDcmNThykPXVhfO+f
mrbmBP7cgm6ZabTdbaVgyaR5BBuS/cJjIwZDAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUV0EcytSfkLllW8ZsYwv6czeorhQwHwYDVR0jBBgwFoAUGmEKYqinLNNsHSLH
CF7fGAlRiZQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1JPTkVY
VC9HbUVLWXFpbkxOTnNIU0xIQ0Y3ZkdBbFJpWlEuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dtRUtZcWluTE5Oc0hTTEhDRjdmR0FsUmlaUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0dST05FWFQvVjBFY3l0U2ZrTGxsVzha
c1l3djZjemVvcmhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQFoEAwDQYJKoZIhvcNAQELBQADggEBAEI9bQNp6Xi0p1RjzbkALkB/k1BkLDMn
+nsvaCUXssgPaP2hNrupyMfT6xKYwlr64XVVioqWXNlUQcxqV9psF3byU8WQiWfn
5Yc1pVQ7INzWbJMI7ZJ3dRY/TmNVkSgufmPSXA11tLSadWNY1/LJS5GVHUM50icx
ERtV3fhqArL5FFzaLaM3ieYAZfAwiDpW+E04JaOjv8KhmFgxroquxLQI3peIkfhO
9CYdYftPy7vTD/AfgY0MMnAWWqka5UX9hl8/OAQcxXLU3aXaO4Lpql8D/3irfWyI
zR825KHU2AdYtAaX20oOL4zxT1JpTfJmKAUkRZRAdzHVtI6j29psmmo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org