Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/80FqRju97f44Q6YhKc3YoYoIo8c.roa
File: 80FqRju97f44Q6YhKc3YoYoIo8c.roa (raw, json)
Hash identifier: IzCut/1UXLR8wFgMCKIC/fwSrZHKVGP2+fLXlmf7nFw=
Subject key identifier: F3:41:6A:46:3B:BD:ED:FE:38:43:A6:21:29:CD:D8:A1:8A:08:A3:C7
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0774
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/80FqRju97f44Q6YhKc3YoYoIo8c.roa
Signing time: Tue 29 Sep 2020 10:00:19 +0000
ROA not before: Tue 29 Sep 2020 10:00:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 2001:4500:1000::/40 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 10:00:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F3416A463BBDEDFE3843A62129CDD8A18A08A3C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:1b:9e:78:ef:f0:ab:59:11:c5:8c:1e:0c:
74:53:f0:58:d2:5b:0d:70:07:8f:6a:8e:0b:b2:cb:
bb:8b:f4:85:bb:7b:62:39:b5:f9:cb:92:29:31:eb:
ef:44:9b:79:bc:67:64:0e:4b:71:e9:12:f3:83:9c:
29:b3:a0:13:bb:e6:45:a0:95:b3:7b:fb:c2:6d:81:
89:50:55:bc:0f:0b:15:00:86:a3:3b:de:0d:be:5c:
49:fa:00:89:68:a5:fd:67:d7:39:38:bc:1f:1e:8f:
04:d5:f7:9b:24:c7:30:53:3f:78:03:9e:4a:5f:cb:
00:41:4c:25:02:b3:15:b1:79:ea:b2:c6:e3:06:c1:
1f:77:88:dc:e1:32:fa:07:5b:8c:15:55:6b:b4:b6:
07:87:bb:3b:e3:37:41:ae:60:9b:36:09:32:b3:88:
61:67:b0:f7:9d:be:aa:3b:14:f2:13:72:cd:96:25:
b0:d7:bf:b8:7d:35:a7:72:dc:df:49:71:fb:24:b2:
00:b3:5b:a8:dd:33:3a:a3:1e:67:bc:be:1a:e0:70:
f0:85:eb:5a:04:85:6b:5e:79:91:d2:1f:06:92:6c:
93:37:9d:13:fd:53:07:e1:75:ec:db:a2:23:89:2f:
27:cb:1e:53:6e:58:b6:08:cb:1e:92:16:61:a5:83:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:41:6A:46:3B:BD:ED:FE:38:43:A6:21:29:CD:D8:A1:8A:08:A3:C7
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/80FqRju97f44Q6YhKc3YoYoIo8c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500:1000::/40
Signature Algorithm: sha256WithRSAEncryption
15:14:ce:56:4d:1f:39:77:e0:4a:0a:8a:b2:75:13:48:54:ae:
ec:69:f3:30:eb:d4:b7:6b:fa:79:5d:da:e2:fa:f2:92:f0:ab:
4b:96:13:86:93:85:2f:3c:6e:e5:6b:50:75:1f:1c:46:19:7b:
ab:59:6a:41:05:48:cf:aa:f7:47:66:ac:34:30:2e:0d:f2:de:
20:e1:cd:f9:9b:d2:bb:26:7c:4a:05:b9:24:12:10:c1:cb:9e:
f1:09:1b:e8:2f:19:a5:19:99:5b:8d:0a:46:a2:58:bc:8b:b0:
c2:92:5a:44:89:4c:36:21:88:27:4f:70:18:ff:b6:92:6b:ed:
92:69:25:bb:6b:85:c2:1d:ed:45:ee:6f:ec:5a:44:1e:a1:e0:
32:3f:27:52:bf:3b:ea:8a:aa:ab:bf:75:6c:a7:65:1b:eb:63:
b5:40:65:7d:5b:41:d5:eb:ac:4f:81:6c:85:5a:9b:e3:a5:2a:
ae:99:c3:b5:c8:b9:7f:01:5d:92:4c:f1:88:f9:76:7c:ac:19:
9f:bd:5d:35:c7:2d:c4:09:26:26:b3:58:00:49:98:ad:c4:b1:
3a:69:dc:b4:41:e1:9c:ec:54:b3:cd:13:6b:1b:22:2b:4e:15:
64:f7:88:8a:ac:b9:fe:e0:39:31:75:31:2d:8d:d9:a5:33:85:
82:40:e6:5d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx
RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yMDA5Mjkx
MDAwMTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYzNDE2QTQ2M0JCREVE
RkUzODQzQTYyMTI5Q0REOEExOEEwOEEzQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvXRueeO/wq1kRxYweDHRT8FjSWw1wB49qjguyy7uL9IW7e2I5
tfnLkikx6+9Em3m8Z2QOS3HpEvODnCmzoBO75kWglbN7+8JtgYlQVbwPCxUAhqM7
3g2+XEn6AIlopf1n1zk4vB8ejwTV95skxzBTP3gDnkpfywBBTCUCsxWxeeqyxuMG
wR93iNzhMvoHW4wVVWu0tgeHuzvjN0GuYJs2CTKziGFnsPedvqo7FPITcs2WJbDX
v7h9Nady3N9JcfsksgCzW6jdMzqjHme8vhrgcPCF61oEhWteeZHSHwaSbJM3nRP9
UwfhdezboiOJLyfLHlNuWLYIyx6SFmGlg/ZnAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU80FqRju97f44Q6YhKc3YoYoIo8cwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p
AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S
Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvODBGcVJqdTk3ZjQ0UTZZaEtjM1lv
WW9JbzhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABRQAQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAVFM5WTR85d+BKCoqydRNIVK7safMw69S3a/p5
Xdri+vKS8KtLlhOGk4UvPG7la1B1HxxGGXurWWpBBUjPqvdHZqw0MC4N8t4g4c35
m9K7JnxKBbkkEhDBy57xCRvoLxmlGZlbjQpGoli8i7DCklpEiUw2IYgnT3AY/7aS
a+2SaSW7a4XCHe1F7m/sWkQeoeAyPydSvzvqiqqrv3Vsp2Ub62O1QGV9W0HV66xP
gWyFWpvjpSqumcO1yLl/AV2STPGI+XZ8rBmfvV01xy3ECSYms1gASZitxLE6ady0
QeGc7FSzzRNrGyIrThVk94iKrLn+4DkxdTEtjdmlM4WCQOZd
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org