Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/wLwM9Lvw28NLUFoaI6ulHgK9VMc.roa
File: wLwM9Lvw28NLUFoaI6ulHgK9VMc.roa (raw, json)
Hash identifier: r3bZcDK/BGNxYWGcO3USabaquInReWi/73vupXxw29I=
Subject key identifier: C0:BC:0C:F4:BB:F0:DB:C3:4B:50:5A:1A:23:AB:A5:1E:02:BD:54:C7
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0B33
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/wLwM9Lvw28NLUFoaI6ulHgK9VMc.roa
Signing time: Fri 01 Sep 2023 09:20:18 +0000
ROA not before: Fri 01 Sep 2023 09:20:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18179
IP address blocks: 2404:db00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2867 (0xb33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 1 09:20:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C0BC0CF4BBF0DBC34B505A1A23ABA51E02BD54C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:a3:44:ef:a5:30:8b:57:c0:55:bc:be:01:
5e:51:8e:cf:29:c5:9a:70:60:0f:d7:c2:aa:e9:b5:
d7:1e:36:7b:c8:69:2f:fc:22:db:22:76:8c:bd:c5:
8c:7e:00:8f:81:05:1d:1e:ac:6e:05:97:82:74:d8:
ba:3c:21:86:34:72:8a:be:5c:58:c4:2a:65:fd:35:
d2:c9:da:db:92:e6:fc:0e:f8:f6:01:69:32:6e:0a:
e5:86:6b:6c:52:b6:33:40:a7:fc:9a:d8:05:06:97:
58:93:46:9e:5b:4e:3c:aa:fa:65:99:8c:73:d7:31:
36:50:bf:4e:9c:38:d2:a1:a1:15:e4:45:70:b3:d2:
de:3e:c8:c6:bd:fc:29:3f:e8:29:8d:f6:01:89:8a:
9b:e3:08:b0:a7:f4:c3:45:04:5a:da:7e:d5:d9:be:
0d:d3:49:7c:a3:ad:69:fa:de:22:49:a3:66:f5:d6:
01:18:8e:08:31:85:f4:ec:69:e8:52:68:9b:5e:2e:
94:34:42:31:63:db:0e:f8:0e:db:fe:a6:57:cf:54:
97:e6:48:30:fc:fd:84:8d:ad:b8:4c:da:24:1c:86:
57:93:55:b3:07:a8:25:a7:27:92:16:00:ee:02:df:
b7:d8:b3:dd:7b:02:57:bc:ef:55:dc:86:0a:7b:9e:
1f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BC:0C:F4:BB:F0:DB:C3:4B:50:5A:1A:23:AB:A5:1E:02:BD:54:C7
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/wLwM9Lvw28NLUFoaI6ulHgK9VMc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:db00::/32
Signature Algorithm: sha256WithRSAEncryption
31:0e:18:c7:97:be:70:c6:fa:22:87:9b:57:34:76:d9:4e:53:
2e:4a:81:7c:63:dd:27:49:95:73:6c:9f:55:b2:37:20:1a:69:
8a:4d:36:6f:85:f9:53:f7:95:fb:85:b4:1b:6b:1c:11:d2:73:
ab:9e:22:ec:41:7e:9f:7c:f6:96:b5:20:ef:71:c5:ce:bc:e7:
8c:c4:39:43:83:d6:9f:76:03:38:ba:f6:1a:a2:94:07:d5:ab:
0c:a7:17:21:04:fb:05:53:7d:9b:02:ab:44:21:dd:a8:3e:bb:
75:09:99:c2:72:1b:b4:a0:b2:72:7a:92:f4:58:b7:b5:67:0c:
d3:25:59:10:16:9f:e5:10:0b:d2:78:f2:dc:bb:78:2d:ad:c7:
68:00:3c:4e:8e:2f:85:fc:87:f7:35:42:62:c8:ff:68:e9:e3:
d7:27:b1:19:b8:14:5b:ee:8c:2e:3b:52:2b:5d:17:9c:db:ba:
05:e7:3e:e7:d5:2c:0a:54:ec:25:5a:09:c4:80:76:4b:bc:a7:
e7:d1:26:16:c8:a9:8c:85:58:10:14:d6:d2:bc:c0:a0:d1:c5:
35:22:de:65:3f:97:ba:75:0e:e4:fa:86:c3:5e:af:c2:a0:1c:
38:ee:b1:19:de:db:df:95:de:04:d2:25:b9:8b:f2:79:49:67:
6a:b5:e0:eb
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQ2
QzVDQkZDRUNCQTc5ODc5NTExMTJEQUExODdGRkNCNjIwNEUyNjAeFw0yMzA5MDEw
OTIwMThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMwQkMwQ0Y0QkJGMERC
QzM0QjUwNUExQTIzQUJBNTFFMDJCRDU0QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs3aNE76Uwi1fAVby+AV5Rjs8pxZpwYA/XwqrptdceNnvIaS/8
Itsidoy9xYx+AI+BBR0erG4Fl4J02Lo8IYY0coq+XFjEKmX9NdLJ2tuS5vwO+PYB
aTJuCuWGa2xStjNAp/ya2AUGl1iTRp5bTjyq+mWZjHPXMTZQv06cONKhoRXkRXCz
0t4+yMa9/Ck/6CmN9gGJipvjCLCn9MNFBFraftXZvg3TSXyjrWn63iJJo2b11gEY
jggxhfTsaehSaJteLpQ0QjFj2w74Dtv+plfPVJfmSDD8/YSNrbhM2iQchleTVbMH
qCWnJ5IWAO4C37fYs917Ale871Xchgp7nh9XAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUwLwM9Lvw28NLUFoaI6ulHgK9VMcwHwYDVR0jBBgwFoAUbWxcv87Lp5h5UREt
qhh//LYgTiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlUQUNN
REMvYld4Y3Y4N0xwNWg1VVJFdHFoaF9fTFlnVGlZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9iV3hjdjg3THA1aDVVUkV0cWhoX19MWWdUaVkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSVRBQ01EQy93THdNOUx2dzI4TkxV
Rm9hSTZ1bEhnSzlWTWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJATbADANBgkqhkiG9w0BAQsFAAOCAQEAMQ4Yx5e+cMb6IoebVzR22U5TLkqB
fGPdJ0mVc2yfVbI3IBppik02b4X5U/eV+4W0G2scEdJzq54i7EF+n3z2lrUg73HF
zrznjMQ5Q4PWn3YDOLr2GqKUB9WrDKcXIQT7BVN9mwKrRCHdqD67dQmZwnIbtKCy
cnqS9Fi3tWcM0yVZEBaf5RAL0njy3Lt4La3HaAA8To4vhfyH9zVCYsj/aOnj1yex
GbgUW+6MLjtSK10XnNu6Bec+59UsClTsJVoJxIB2S7yn59EmFsipjIVYEBTW0rzA
oNHFNSLeZT+XunUO5PqGw16vwqAcOO6xGd7b35XeBNIluYvyeUlnarXg6w==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:37 2025 by rpki-client