Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/BZZg-jhbGV9pbHKN6uLp8kig2LI.roa
File: BZZg-jhbGV9pbHKN6uLp8kig2LI.roa (raw, json)
Hash identifier: v1tI2+6MrBlzC6mWWHIrzj5WXAFQPNZ2/Kkg6cE+u/Y=
Subject key identifier: 05:96:60:FA:38:5B:19:5F:69:6C:72:8D:EA:E2:E9:F2:48:A0:D8:B2
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0776
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/BZZg-jhbGV9pbHKN6uLp8kig2LI.roa
Signing time: Tue 29 Sep 2020 10:00:19 +0000
ROA not before: Tue 29 Sep 2020 10:00:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18183
IP address blocks: 2001:4500::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1910 (0x776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 10:00:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=059660FA385B195F696C728DEAE2E9F248A0D8B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c5:3d:57:4a:75:ef:2a:93:93:d5:b8:ad:b7:
60:25:f3:4e:ae:fa:67:4c:7f:08:06:bb:4e:70:12:
8c:12:23:57:5e:12:bb:aa:34:24:eb:41:c5:a7:8c:
51:60:62:7a:5a:e8:22:7e:f6:47:30:a3:f4:e6:9d:
72:46:53:cc:54:65:99:a1:c8:d6:c2:69:58:62:24:
af:3d:43:62:63:94:bb:42:a3:38:3c:e2:d8:65:7d:
67:7a:1f:4e:04:6f:36:d3:04:ba:33:bc:6c:08:55:
dd:71:e4:6d:a2:91:51:58:56:7d:01:51:40:53:d3:
ae:6c:19:23:17:a0:0c:d9:ff:9c:31:2c:83:3c:93:
2e:09:70:19:b5:38:ba:0a:95:03:cc:09:93:0c:29:
5f:93:87:b7:90:e9:99:1d:fc:79:a1:0a:af:05:d2:
b9:f3:d6:a2:cd:d8:3b:43:f5:28:fa:ef:a4:53:10:
e8:7d:26:87:0f:59:19:b5:8e:0e:b1:67:fd:38:91:
01:48:2f:26:9b:63:12:74:b1:78:4c:13:12:9f:c1:
bc:70:f7:89:cb:ab:08:d3:61:7e:1d:d8:36:cd:51:
59:71:ac:8c:49:76:71:d4:51:d9:b5:6c:5c:61:05:
81:22:0d:28:32:ef:09:d8:ab:b0:17:7e:24:69:e4:
c8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:96:60:FA:38:5B:19:5F:69:6C:72:8D:EA:E2:E9:F2:48:A0:D8:B2
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/BZZg-jhbGV9pbHKN6uLp8kig2LI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500::/32
Signature Algorithm: sha256WithRSAEncryption
7b:b8:83:e4:6a:c3:4f:09:0e:c5:a0:b1:63:68:a6:94:42:5f:
a9:2b:61:eb:9a:eb:1c:12:be:b6:5b:4e:e1:ed:15:d9:c9:07:
69:24:75:ff:74:00:64:a6:b6:d8:b4:21:62:8f:4e:54:eb:5e:
6f:2f:d1:5b:10:03:ec:fb:36:21:33:d1:d3:94:fb:e4:81:75:
f7:f4:34:90:7e:f2:82:17:11:16:06:62:53:cd:a5:b3:3f:8e:
fb:62:b1:17:ab:89:e2:48:13:23:9f:ac:b7:93:ef:3b:a0:87:
ff:87:b2:b0:88:31:49:63:ca:16:69:10:08:b4:61:c6:06:0b:
45:83:fd:aa:55:4b:cf:3e:d9:fb:6f:66:2d:66:99:5d:81:e4:
27:17:85:0e:01:a6:81:20:ae:9e:7b:74:9f:56:70:d5:59:91:
56:0b:1b:37:39:21:20:fd:bd:4f:63:5d:30:c3:65:4c:db:72:
10:28:4e:c5:4b:34:a4:53:5c:88:e1:f2:08:e3:c7:d5:1d:87:
66:97:96:dc:2b:0f:2c:83:d4:3d:58:65:ce:38:90:70:fb:a0:
7a:0c:9d:92:43:cf:c1:04:81:71:0b:1d:d9:9c:c9:cc:35:53:
15:81:de:41:05:11:c1:8c:5b:a6:ce:17:f5:c3:1b:08:37:a7:
80:24:fe:16
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx
RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yMDA5Mjkx
MDAwMTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA1OTY2MEZBMzg1QjE5
NUY2OTZDNzI4REVBRTJFOUYyNDhBMEQ4QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD3xT1XSnXvKpOT1bitt2Al806u+mdMfwgGu05wEowSI1deEruq
NCTrQcWnjFFgYnpa6CJ+9kcwo/TmnXJGU8xUZZmhyNbCaVhiJK89Q2JjlLtCozg8
4thlfWd6H04EbzbTBLozvGwIVd1x5G2ikVFYVn0BUUBT065sGSMXoAzZ/5wxLIM8
ky4JcBm1OLoKlQPMCZMMKV+Th7eQ6Zkd/HmhCq8F0rnz1qLN2DtD9Sj676RTEOh9
JocPWRm1jg6xZ/04kQFILyabYxJ0sXhMExKfwbxw94nLqwjTYX4d2DbNUVlxrIxJ
dnHUUdm1bFxhBYEiDSgy7wnYq7AXfiRp5Mj9AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUBZZg+jhbGV9pbHKN6uLp8kig2LIwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p
AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S
Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvQlpaZy1qaGJHVjlwYkhLTjZ1THA4
a2lnMkxJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACABRQAw
DQYJKoZIhvcNAQELBQADggEBAHu4g+Rqw08JDsWgsWNoppRCX6krYeua6xwSvrZb
TuHtFdnJB2kkdf90AGSmtti0IWKPTlTrXm8v0VsQA+z7NiEz0dOU++SBdff0NJB+
8oIXERYGYlPNpbM/jvtisRerieJIEyOfrLeT7zugh/+HsrCIMUljyhZpEAi0YcYG
C0WD/apVS88+2ftvZi1mmV2B5CcXhQ4BpoEgrp57dJ9WcNVZkVYLGzc5ISD9vU9j
XTDDZUzbchAoTsVLNKRTXIjh8gjjx9Udh2aXltwrDyyD1D1YZc44kHD7oHoMnZJD
z8EEgXELHdmcycw1UxWB3kEFEcGMW6bOF/XDGwg3p4Ak/hY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org