Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/8X4DP6Mmdt3QyYa_NvKsoW6WPvU.roa
File: 8X4DP6Mmdt3QyYa_NvKsoW6WPvU.roa (raw, json)
Hash identifier: Ghwi3VOcqGpbn5Zhvh1xvOGnImeTzRciJw9v3XEHSeE=
Subject key identifier: F1:7E:03:3F:A3:26:76:DD:D0:C9:86:BF:36:F2:AC:A1:6E:96:3E:F5
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 04DD
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/8X4DP6Mmdt3QyYa_NvKsoW6WPvU.roa
Signing time: Thu 15 Sep 2022 02:38:22 +0000
ROA not before: Thu 15 Sep 2022 02:38:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131682
IP address blocks: 2406:3540:fffc::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1245 (0x4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 15 02:38:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F17E033FA32676DDD0C986BF36F2ACA16E963EF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:8d:29:ad:a8:88:31:ef:3f:bb:e1:8b:0a:
9f:49:14:f5:e3:30:77:29:75:ea:9e:f7:25:47:97:
ec:ef:31:2e:e1:9a:79:45:77:c3:82:8f:bd:16:80:
f8:83:fd:57:6a:08:d8:e1:71:bb:32:f8:5a:8f:5c:
89:60:29:e5:f8:44:e0:57:d0:9a:59:33:bb:1b:ca:
fc:c1:79:91:20:e9:18:e2:09:6d:36:8b:db:f5:e7:
11:3f:db:9d:4b:17:a8:d5:d7:3d:27:aa:20:70:56:
0a:37:4e:7e:82:25:31:25:26:cf:af:ff:40:86:c9:
13:89:55:45:1f:d4:63:85:e8:77:95:35:79:cc:ea:
c2:c5:27:5a:ea:bc:21:b6:85:9b:b1:b2:27:ec:d1:
bb:41:e2:0a:7f:1c:58:1b:1a:dd:09:73:f6:e1:b8:
5a:f1:b0:80:38:42:ee:60:b4:ea:e0:ec:25:59:13:
cf:d9:90:5c:45:76:60:fe:c2:b0:fb:80:51:df:34:
b3:31:ca:f4:bb:16:74:20:10:d5:e4:6c:eb:a8:cb:
0f:c2:62:98:9f:df:58:b2:b2:b6:44:9f:ef:fa:0b:
b0:af:20:2e:54:98:0c:90:c8:e3:e5:35:7c:20:c1:
86:e9:76:3b:8d:d3:5a:73:b6:47:5d:ae:1a:9c:08:
39:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:7E:03:3F:A3:26:76:DD:D0:C9:86:BF:36:F2:AC:A1:6E:96:3E:F5
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/8X4DP6Mmdt3QyYa_NvKsoW6WPvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3540:fffc::/46
Signature Algorithm: sha256WithRSAEncryption
07:01:97:44:9d:52:d9:14:e3:5c:04:82:6a:c5:5c:b3:88:8b:
fe:89:cf:b1:de:7f:04:99:91:c0:f6:24:23:ed:ab:0a:61:ec:
fc:71:51:6c:9b:cb:fd:53:30:20:7f:7e:fa:cc:5a:ad:3a:95:
2a:e2:f5:58:2f:49:fa:5f:45:3d:64:b5:7b:41:90:ea:46:5e:
fc:1c:ef:b3:e3:09:36:f6:fa:18:9c:c1:c3:2c:d9:e6:f3:43:
65:cf:7d:55:dc:bd:60:13:fc:30:7c:89:96:90:97:a3:0c:e2:
09:f2:8d:bc:26:a2:ad:43:1f:f3:d1:05:58:5f:a3:65:4f:68:
d7:45:62:81:bb:3e:ef:ca:0e:9a:e3:36:4c:77:27:dd:c9:b7:
3e:08:71:b7:b2:fc:b7:03:4c:cf:f8:96:d5:b3:d1:e0:9f:1f:
2b:aa:8b:0a:6c:46:35:ff:19:8c:65:70:ed:74:66:19:9e:57:
5d:ec:bc:ff:aa:6c:ae:48:31:79:b1:7e:a8:00:53:f3:4f:f1:
c9:5d:b3:b4:60:02:44:bc:bc:43:fd:81:ab:62:6b:ea:75:10:
5f:2c:e0:ec:29:d4:98:f0:50:fe:fd:fa:8e:d0:ed:94:eb:55:
ec:45:df:76:d6:d2:a1:32:01:3e:08:0d:1a:6e:97:2b:19:72:
0c:b2:66:b0
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG
RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yMjA5MTUw
MjM4MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEYxN0UwMzNGQTMyNjc2
REREMEM5ODZCRjM2RjJBQ0ExNkU5NjNFRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0lo0praiIMe8/u+GLCp9JFPXjMHcpdeqe9yVHl+zvMS7hmnlF
d8OCj70WgPiD/VdqCNjhcbsy+FqPXIlgKeX4ROBX0JpZM7sbyvzBeZEg6RjiCW02
i9v15xE/251LF6jV1z0nqiBwVgo3Tn6CJTElJs+v/0CGyROJVUUf1GOF6HeVNXnM
6sLFJ1rqvCG2hZuxsifs0btB4gp/HFgbGt0Jc/bhuFrxsIA4Qu5gtOrg7CVZE8/Z
kFxFdmD+wrD7gFHfNLMxyvS7FnQgENXkbOuoyw/CYpif31iysrZEn+/6C7CvIC5U
mAyQyOPlNXwgwYbpdjuN01pztkddrhqcCDnhAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQU8X4DP6Mmdt3QyYa/NvKsoW6WPvUwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz
qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ
VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBLzhYNERQNk1tZHQz
UXlZYV9Odktzb1c2V1B2VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwIkBjVA//wwDQYJKoZIhvcNAQELBQADggEBAAcBl0SdUtkU41wEgmrFXLOI
i/6Jz7HefwSZkcD2JCPtqwph7PxxUWyby/1TMCB/fvrMWq06lSri9VgvSfpfRT1k
tXtBkOpGXvwc77PjCTb2+hicwcMs2ebzQ2XPfVXcvWAT/DB8iZaQl6MM4gnyjbwm
oq1DH/PRBVhfo2VPaNdFYoG7Pu/KDprjNkx3J93Jtz4Icbey/LcDTM/4ltWz0eCf
HyuqiwpsRjX/GYxlcO10ZhmeV13svP+qbK5IMXmxfqgAU/NP8clds7RgAkS8vEP9
gatia+p1EF8s4Owp1JjwUP79+o7Q7ZTrVexF33bW0qEyAT4IDRpulysZcgyyZrA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org