Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/R8RvP3v8GRtdQeA9UsaDRdJegY0.roa
File: R8RvP3v8GRtdQeA9UsaDRdJegY0.roa (raw, json)
Hash identifier: qOHluSm/0huX0TO+9iwFF94Cst5cD5skjS88APJbPzM=
Subject key identifier: 47:C4:6F:3F:7B:FC:19:1B:5D:41:E0:3D:52:C6:83:45:D2:5E:81:8D
Certificate issuer: /CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Certificate serial: 0D39
Authority key identifier: 61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/R8RvP3v8GRtdQeA9UsaDRdJegY0.roa
Signing time: Sun 23 Apr 2023 05:57:10 +0000
ROA not before: Sun 23 Apr 2023 05:57:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 2404:a3c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3385 (0xd39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Validity
Not Before: Apr 23 05:57:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=47C46F3F7BFC191B5D41E03D52C68345D25E818D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:52:12:70:55:8b:86:fd:19:81:75:23:9a:15:
e5:bf:31:b9:0f:46:d2:f2:88:8e:13:44:aa:4f:dd:
49:45:49:14:96:93:0b:45:9d:15:6a:61:f9:31:ba:
0b:22:77:4b:82:e8:b5:63:1d:7a:e2:c2:85:35:e0:
fb:57:d9:d9:c5:7c:ef:b0:95:53:cf:b7:95:37:08:
a7:76:28:3a:46:0e:4f:ec:54:3a:ba:80:ab:28:76:
c8:f4:00:25:4c:d4:bb:91:8d:62:85:dd:50:b5:ec:
a9:af:d4:04:a2:98:e8:c8:f2:3b:68:f6:f7:f1:5e:
66:c0:47:00:e4:dc:98:d4:71:a4:73:e3:da:49:dd:
bd:12:9d:a7:47:d4:b2:4b:6d:87:c0:57:ca:db:26:
02:eb:5d:7e:f6:dd:43:ec:1e:5b:ca:02:4e:d0:b5:
e7:90:53:7c:e7:62:48:87:03:41:26:67:b8:e2:3f:
39:51:d0:28:47:4d:ff:6b:b5:44:18:1e:a9:a7:3a:
e8:c3:75:cb:95:78:38:b5:4b:54:7d:eb:12:f6:66:
8f:50:f6:af:ff:62:67:32:62:9c:d2:a8:01:f3:5b:
b8:7b:01:c7:4f:cb:f6:86:b4:25:06:24:60:36:f3:
93:94:b2:79:d7:78:10:75:13:f0:fd:cb:86:1c:1a:
d2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C4:6F:3F:7B:FC:19:1B:5D:41:E0:3D:52:C6:83:45:D2:5E:81:8D
X509v3 Authority Key Identifier:
keyid:61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/R8RvP3v8GRtdQeA9UsaDRdJegY0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:a3c0::/32
Signature Algorithm: sha256WithRSAEncryption
54:c9:26:ae:e0:87:bd:52:24:68:cb:b3:4e:1b:ed:76:ed:11:
73:bc:df:93:f0:7e:82:e0:d8:3f:6d:97:a2:b1:f7:fd:1b:4c:
b4:ab:01:33:03:f8:a6:22:e0:b4:92:27:00:1c:7f:cf:24:3a:
94:ca:db:79:ed:aa:0e:bf:d1:be:19:c0:db:bc:84:ba:73:8b:
8b:0d:85:d8:a6:cf:d9:63:51:0b:62:cd:d0:2a:3c:c2:d9:0a:
1e:e5:9f:ba:a6:ec:aa:e9:ea:c1:2b:7f:d2:9f:7e:c4:26:d2:
e7:da:f6:2c:bc:ac:b6:d4:fe:09:9a:2f:95:b6:ab:55:37:35:
45:bd:67:9f:90:11:43:07:24:d4:4d:53:8d:30:9d:26:7a:01:
71:c5:6e:bc:dd:81:e5:a7:84:82:79:b7:a1:d6:cc:d2:1e:60:
2a:58:5f:62:5e:21:88:bf:c1:aa:63:2b:ed:1d:7f:b7:98:5c:
1a:51:d2:79:53:d3:a4:78:4a:d8:51:ac:52:be:01:e0:90:ef:
3f:96:e1:d0:c9:bd:70:ea:33:c9:cd:a2:4c:c5:b8:a9:44:c1:
be:6c:7e:37:c0:1b:22:8e:16:2a:eb:35:7c:fd:73:2e:46:dc:
02:17:03:5a:7e:13:00:15:81:ee:cb:3b:93:d2:c8:11:b2:9b:
06:c6:89:c0
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICDTkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjFF
MEVFNzk0MjhCODVFREFCQjVGNkVCOTU3OEVGQjE5RTYzQzk4RjAeFw0yMzA0MjMw
NTU3MTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ3QzQ2RjNGN0JGQzE5
MUI1RDQxRTAzRDUyQzY4MzQ1RDI1RTgxOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTUhJwVYuG/RmBdSOaFeW/MbkPRtLyiI4TRKpP3UlFSRSWkwtF
nRVqYfkxugsid0uC6LVjHXriwoU14PtX2dnFfO+wlVPPt5U3CKd2KDpGDk/sVDq6
gKsodsj0ACVM1LuRjWKF3VC17Kmv1ASimOjI8jto9vfxXmbARwDk3JjUcaRz49pJ
3b0SnadH1LJLbYfAV8rbJgLrXX723UPsHlvKAk7QteeQU3znYkiHA0EmZ7jiPzlR
0ChHTf9rtUQYHqmnOujDdcuVeDi1S1R96xL2Zo9Q9q//YmcyYpzSqAHzW7h7AcdP
y/aGtCUGJGA285OUsnnXeBB1E/D9y4YcGtIJAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUR8RvP3v8GRtdQeA9UsaDRdJegY0wHwYDVR0jBBgwFoAUYeDueUKLhe2rtfbr
lXjvsZ5jyY8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V
RC9ZZUR1ZVVLTGhlMnJ0ZmJybFhqdnNaNWp5WTguY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1llRHVlVUtMaGUycnRmYnJsWGp2c1o1anlZOC5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvUjhSdlAzdjhHUnRkUWVB
OVVzYURSZEplZ1kwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQEo8AwDQYJKoZIhvcNAQELBQADggEBAFTJJq7gh71SJGjLs04b7XbtEXO835Pw
foLg2D9tl6Kx9/0bTLSrATMD+KYi4LSSJwAcf88kOpTK23ntqg6/0b4ZwNu8hLpz
i4sNhdimz9ljUQtizdAqPMLZCh7ln7qm7Krp6sErf9KffsQm0ufa9iy8rLbU/gma
L5W2q1U3NUW9Z5+QEUMHJNRNU40wnSZ6AXHFbrzdgeWnhIJ5t6HWzNIeYCpYX2Je
IYi/wapjK+0df7eYXBpR0nlT06R4SthRrFK+AeCQ7z+W4dDJvXDqM8nNokzFuKlE
wb5sfjfAGyKOFirrNXz9cy5G3AIXA1p+EwAVge7LO5PSyBGymwbGicA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org