Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2jai7CtBMQ0_q6tX1y_OQ8Wu0Hg.roa
File: 2jai7CtBMQ0_q6tX1y_OQ8Wu0Hg.roa (raw, json)
Hash identifier: IM8pAr8o2icDvI6GCXR0I/4f3q2AwjiHTHeh423OBGk=
Subject key identifier: DA:36:A2:EC:2B:41:31:0D:3F:AB:AB:57:D7:2F:CE:43:C5:AE:D0:78
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 087A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2jai7CtBMQ0_q6tX1y_OQ8Wu0Hg.roa
Signing time: Tue 29 Sep 2020 09:52:04 +0000
ROA not before: Tue 29 Sep 2020 09:52:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 2001:4580::/26 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2170 (0x87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DA36A2EC2B41310D3FABAB57D72FCE43C5AED078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:32:b4:d8:69:b2:37:df:5e:fb:53:ba:12:b7:
18:3f:c9:70:04:5b:28:49:5f:54:51:95:35:b0:c4:
41:62:01:ec:8d:90:c9:ab:42:99:70:8a:4b:56:25:
e9:c2:04:57:e9:ad:8c:e9:76:9b:94:65:99:be:76:
cd:82:fa:2d:5d:71:96:38:f3:d4:db:6b:a2:d6:95:
20:a3:c5:3f:8b:d8:57:30:ef:1d:9a:63:45:b9:72:
6f:39:d6:43:e8:9b:bb:da:1c:a4:8d:aa:8b:29:5f:
00:2e:a7:75:32:31:69:89:2a:fb:6e:91:d8:e5:bb:
ac:60:43:c5:be:25:9b:16:24:b4:8c:54:34:68:12:
65:2c:42:3b:4b:60:15:fd:83:f2:f1:5f:5a:fb:6b:
0e:bc:d7:4a:43:e8:b0:66:23:41:25:df:49:2c:ab:
06:a2:39:4c:f9:42:d3:13:4a:d5:e4:32:66:90:f1:
5c:3a:a4:70:ed:3e:3e:88:c0:78:74:f4:43:62:a2:
f6:02:cb:1e:de:e4:7f:96:14:0e:28:a8:0c:3c:b6:
39:91:46:44:f5:88:87:0c:80:69:4d:25:98:9c:95:
f4:6a:be:55:26:6f:d6:b0:dd:72:18:7c:54:9a:83:
21:75:ea:16:8b:5f:e9:5a:69:a1:fd:ed:8a:19:fc:
61:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:36:A2:EC:2B:41:31:0D:3F:AB:AB:57:D7:2F:CE:43:C5:AE:D0:78
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2jai7CtBMQ0_q6tX1y_OQ8Wu0Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4580::/26
Signature Algorithm: sha256WithRSAEncryption
aa:1c:2d:1b:bb:60:cf:58:32:fb:08:62:ca:b1:46:76:dd:3f:
5f:8a:86:c0:57:ca:e6:6b:39:bd:f3:e6:bb:07:cb:84:36:11:
b6:2b:51:6e:b4:c0:1d:61:d7:05:bb:ab:a6:d8:1c:0d:f2:b7:
40:42:96:f7:f2:b1:7b:aa:f9:28:cc:67:55:c0:5d:4a:05:ef:
78:4c:17:a6:eb:ce:c4:d8:5f:eb:2b:37:74:0a:e2:b4:6c:9d:
ae:d3:8b:81:f3:9d:0b:66:ed:b5:47:9b:77:50:d5:1f:1b:f0:
dc:10:00:c3:ac:b0:46:45:b4:93:3f:0f:0e:a8:06:37:cf:b6:
97:05:18:3c:62:04:43:bc:fb:7d:23:74:b7:f0:bb:9a:7c:44:
c8:eb:42:4a:16:19:a4:cf:fc:83:29:2d:bc:81:d2:15:8e:ee:
f7:dc:d1:71:98:cf:9d:b8:e0:c4:39:91:4b:de:f6:fa:7d:98:
68:19:61:a1:96:ea:6c:c3:64:58:00:5a:78:73:a4:01:bb:99:
99:78:03:a6:8d:0e:32:6c:bb:39:e9:ec:5f:4d:1c:db:7b:6e:
88:75:1f:73:04:f3:67:08:ac:c4:d7:63:9f:14:80:70:4b:6c:
0f:0f:c1:08:cf:82:12:0d:d9:52:ad:9c:e5:e0:ce:9a:09:95:
d9:0f:b6:e4
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERBMzZBMkVDMkI0MTMx
MEQzRkFCQUI1N0Q3MkZDRTQzQzVBRUQwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYMrTYabI33177U7oStxg/yXAEWyhJX1RRlTWwxEFiAeyNkMmr
QplwiktWJenCBFfprYzpdpuUZZm+ds2C+i1dcZY489Tba6LWlSCjxT+L2Fcw7x2a
Y0W5cm851kPom7vaHKSNqospXwAup3UyMWmJKvtukdjlu6xgQ8W+JZsWJLSMVDRo
EmUsQjtLYBX9g/LxX1r7aw6810pD6LBmI0El30ksqwaiOUz5QtMTStXkMmaQ8Vw6
pHDtPj6IwHh09ENiovYCyx7e5H+WFA4oqAw8tjmRRkT1iIcMgGlNJZiclfRqvlUm
b9aw3XIYfFSagyF16haLX+laaaH97YoZ/GHvAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU2jai7CtBMQ0/q6tX1y/OQ8Wu0HgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMmphaTdDdEJNUTBfcTZ0WDF5X09R
OFd1MEhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiABRYAw
DQYJKoZIhvcNAQELBQADggEBAKocLRu7YM9YMvsIYsqxRnbdP1+KhsBXyuZrOb3z
5rsHy4Q2EbYrUW60wB1h1wW7q6bYHA3yt0BClvfysXuq+SjMZ1XAXUoF73hMF6br
zsTYX+srN3QK4rRsna7Ti4HznQtm7bVHm3dQ1R8b8NwQAMOssEZFtJM/Dw6oBjfP
tpcFGDxiBEO8+30jdLfwu5p8RMjrQkoWGaTP/IMpLbyB0hWO7vfc0XGYz5244MQ5
kUve9vp9mGgZYaGW6mzDZFgAWnhzpAG7mZl4A6aNDjJsuznp7F9NHNt7boh1H3ME
82cIrMTXY58UgHBLbA8PwQjPghIN2VKtnOXgzpoJldkPtuQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org