Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/4F2jnXTFzI_20JbmdMud_ZJrlP8.roa
File: 4F2jnXTFzI_20JbmdMud_ZJrlP8.roa (raw, json)
Hash identifier: idDMBZH8sr0yDX3u/9rliTSZm6abT/W2KhKeJi5mdsk=
Subject key identifier: E0:5D:A3:9D:74:C5:CC:8F:F6:D0:96:E6:74:CB:9D:FD:92:6B:94:FF
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 099B
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/4F2jnXTFzI_20JbmdMud_ZJrlP8.roa
Signing time: Wed 29 Sep 2021 02:38:11 +0000
ROA not before: Wed 29 Sep 2021 02:38:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 2001:4420::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2459 (0x99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E05DA39D74C5CC8FF6D096E674CB9DFD926B94FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:44:c6:98:19:dc:67:72:03:04:85:c8:79:5e:
01:c3:f3:0d:7b:c4:a4:bf:db:a3:d2:e2:ca:e0:32:
6a:4e:20:e7:b7:f2:16:e1:46:f0:bf:76:27:83:7f:
ad:f7:12:bf:b9:ca:7e:41:c4:7a:9c:10:c7:0e:3c:
2f:6d:a0:0b:65:49:0a:6d:8b:b6:0c:bf:ee:fb:d9:
58:24:60:8e:ab:84:79:96:eb:d5:13:53:bc:52:f0:
d7:4e:6f:d9:6c:10:11:27:e0:67:3b:0e:c1:53:51:
e3:f5:6d:3c:2d:ba:a9:0b:1a:05:c3:ea:3d:97:d1:
e0:6e:2d:b2:59:65:b6:f3:e5:ca:b7:2a:bb:ed:d6:
93:9c:57:c0:90:d5:46:1c:01:1d:9b:98:be:7f:5e:
73:76:ba:f6:79:da:6c:e7:5e:39:51:76:db:8d:5a:
ec:c6:d3:f4:c0:81:8b:37:93:16:58:b8:01:4b:e2:
e0:de:a2:b0:b4:6e:f6:b3:e0:42:4e:b5:31:5c:b9:
19:66:99:f9:31:e6:93:1e:3d:4d:c0:d4:f3:90:d1:
0e:13:ac:4a:df:9c:f1:15:f2:81:dd:b0:f6:65:61:
a9:3d:50:87:54:e0:d3:20:e8:12:1f:d2:5f:bb:5f:
ed:e8:c9:7f:38:af:f1:02:5f:20:b8:3b:bf:de:d6:
9e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5D:A3:9D:74:C5:CC:8F:F6:D0:96:E6:74:CB:9D:FD:92:6B:94:FF
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/4F2jnXTFzI_20JbmdMud_ZJrlP8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4420::/32
Signature Algorithm: sha256WithRSAEncryption
28:18:57:5f:e1:06:e5:f9:cf:a7:b0:42:39:97:68:d8:a3:3a:
82:b1:46:22:0b:4d:46:67:7c:c0:af:64:6c:c5:0a:9a:02:50:
1b:59:25:5b:9f:ee:ff:37:82:c6:27:ef:f9:f8:f0:7f:3e:5f:
89:3c:a0:f7:a4:51:fa:03:f0:cd:c3:cd:63:30:6d:84:be:2f:
4a:be:fe:d0:ae:d0:f1:f6:59:b5:de:26:e3:86:ff:0c:7a:b4:
79:61:12:31:e4:54:9a:75:39:26:41:71:03:8d:61:7c:8d:fe:
cb:22:ed:72:fb:aa:e4:76:6e:58:a4:e7:16:95:77:e7:29:bd:
ae:17:fb:3c:4e:23:a2:f4:a6:28:33:1b:87:23:aa:1c:03:ff:
9e:20:7c:17:b2:87:ea:d3:ac:aa:24:3a:f4:cd:56:a8:a1:2f:
f2:dc:b1:65:1d:a6:53:ac:93:26:ae:c2:91:41:c6:55:02:29:
36:e8:dd:f5:ed:ca:61:65:73:d5:f6:25:75:a6:e0:19:36:2c:
c1:92:b4:4c:7d:29:df:32:e8:7b:51:46:53:52:8d:12:79:0d:
57:6e:99:2f:e1:04:57:d5:e8:69:c9:4b:42:54:b0:45:94:10:
21:58:89:47:a1:95:db:f8:b9:c5:dc:0b:79:65:8a:36:ab:bd:
26:ea:2a:c9
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCZswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMTA5Mjkw
MjM4MTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUwNURBMzlENzRDNUND
OEZGNkQwOTZFNjc0Q0I5REZEOTI2Qjk0RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDORMaYGdxncgMEhch5XgHD8w17xKS/26PS4srgMmpOIOe38hbh
RvC/dieDf633Er+5yn5BxHqcEMcOPC9toAtlSQpti7YMv+772VgkYI6rhHmW69UT
U7xS8NdOb9lsEBEn4Gc7DsFTUeP1bTwtuqkLGgXD6j2X0eBuLbJZZbbz5cq3Krvt
1pOcV8CQ1UYcAR2bmL5/XnN2uvZ52mznXjlRdtuNWuzG0/TAgYs3kxZYuAFL4uDe
orC0bvaz4EJOtTFcuRlmmfkx5pMePU3A1POQ0Q4TrErfnPEV8oHdsPZlYak9UIdU
4NMg6BIf0l+7X+3oyX84r/ECXyC4O7/e1p7rAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU4F2jnXTFzI/20JbmdMud/ZJrlP8wHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOLzRGMmpuWFRGeklfMjBKYm1kTXVkX1pK
cmxQOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUQgMA0G
CSqGSIb3DQEBCwUAA4IBAQAoGFdf4Qbl+c+nsEI5l2jYozqCsUYiC01GZ3zAr2Rs
xQqaAlAbWSVbn+7/N4LGJ+/5+PB/Pl+JPKD3pFH6A/DNw81jMG2Evi9Kvv7QrtDx
9lm13ibjhv8MerR5YRIx5FSadTkmQXEDjWF8jf7LIu1y+6rkdm5YpOcWlXfnKb2u
F/s8TiOi9KYoMxuHI6ocA/+eIHwXsofq06yqJDr0zVaooS/y3LFlHaZTrJMmrsKR
QcZVAik26N317cphZXPV9iV1puAZNizBkrRMfSnfMuh7UUZTUo0SeQ1Xbpkv4QRX
1ehpyUtCVLBFlBAhWIlHoZXb+LnF3At5ZYo2q70m6irJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org