Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/Tzw-7q6wkYSY5ZXtNWCyjsSs3eQ.roa
File: Tzw-7q6wkYSY5ZXtNWCyjsSs3eQ.roa (raw, json)
Hash identifier: OdL6JQtI0OjkAi4oXxx3kmqdcfkQXMoBlWLP9Xxuiqs=
Subject key identifier: 4F:3C:3E:EE:AE:B0:91:84:98:E5:95:ED:35:60:B2:8E:C4:AC:DD:E4
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: 07
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/Tzw-7q6wkYSY5ZXtNWCyjsSs3eQ.roa
Signing time: Mon 11 Jan 2021 09:45:08 +0000
ROA not before: Mon 11 Jan 2021 09:45:08 +0000
ROA not after: Thu 02 Dec 2021 03:52:15 +0000
asID: 31972
IP address blocks: 2406:ce40::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Jan 11 09:45:08 2021 GMT
Not After : Dec 2 03:52:15 2021 GMT
Subject: CN=4F3C3EEEAEB0918498E595ED3560B28EC4ACDDE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:25:23:8b:ed:52:a2:00:bd:52:a5:f2:f8:
ce:5d:4b:0f:30:d6:20:87:96:32:4a:b1:9b:6a:18:
85:30:55:da:40:22:69:b1:48:f9:6a:f1:82:da:42:
f9:b8:4f:bc:2b:7f:ad:67:4d:6a:bf:04:06:d6:a2:
cf:19:3d:fc:4c:23:75:44:84:94:50:e2:8b:c7:e2:
20:1f:f4:05:63:dc:c0:20:16:3b:78:1f:18:8d:e0:
a7:f4:3c:1f:02:71:5b:83:42:5a:a7:34:35:17:7b:
31:53:35:e1:78:69:2b:3b:cd:ea:09:08:7d:e1:21:
5c:6d:64:14:d5:12:d9:b0:96:7c:6f:81:3c:23:ba:
e3:77:80:d0:e7:e8:2f:5f:92:b3:18:5f:95:c3:f5:
24:6b:de:3b:60:1e:09:d4:a0:81:be:1b:ae:30:25:
74:7a:48:e7:01:e5:91:3d:3e:b0:e1:32:1a:1c:69:
82:fa:1a:ec:e3:34:f8:4a:ce:d5:12:fa:da:b0:14:
5e:b8:a7:21:25:a8:d7:2c:ce:22:96:b7:19:30:85:
80:a0:6a:40:27:45:e6:c1:56:be:dd:6c:42:98:07:
bb:e0:5e:de:3a:18:f6:e7:f1:23:5d:8d:8d:95:67:
de:55:cd:66:94:52:f6:d4:41:98:79:bf:b7:88:3f:
3f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:3C:3E:EE:AE:B0:91:84:98:E5:95:ED:35:60:B2:8E:C4:AC:DD:E4
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/Tzw-7q6wkYSY5ZXtNWCyjsSs3eQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
95:cd:fb:7b:f6:24:3d:20:67:a0:c3:29:32:fc:20:70:18:dd:
65:6c:1a:5d:95:28:0a:67:5e:20:0b:4c:83:1f:b4:8f:db:2d:
60:95:2d:77:62:37:5f:6d:1d:e0:0e:3d:a4:10:f2:40:89:e5:
58:7f:b1:4b:fb:d5:c5:1a:d0:36:12:20:0c:9c:2b:d4:b1:f3:
59:04:1d:37:3d:63:88:31:f8:e3:e4:c2:01:7a:1e:43:f2:d6:
38:92:b6:6c:6f:65:fc:75:47:81:98:b8:74:b3:62:48:a7:93:
89:5c:5c:16:0e:a6:f8:c9:37:b6:69:cb:09:48:e3:c3:ae:ea:
92:77:28:af:cd:29:28:be:1d:a0:f8:d8:23:55:40:1e:9d:e0:
d5:a3:e8:c5:0f:87:8c:c7:43:c2:43:70:26:f7:cb:6e:20:b3:
bf:61:42:8f:45:4b:d4:1f:e9:77:ba:25:db:b3:de:eb:b6:c9:
ee:7d:5e:5a:e3:d3:8e:11:67:f6:b8:03:66:bc:31:96:61:0f:
6d:77:7a:4c:e3:1b:19:66:a9:72:5f:5f:c9:37:13:ec:67:d3:
ff:e5:c2:15:a1:67:67:47:41:9c:44:cd:48:15:f5:a0:a3:c9:
c9:1e:a6:15:5d:38:e4:d7:15:86:5a:00:51:9b:7a:27:51:44:
a4:14:fd:ba
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzMTIy
QTkyOTJDQzkzMDE1MkFERTVBMjU4NDhDMUJEQzQwNDRDOTAyMB4XDTIxMDExMTA5
NDUwOFoXDTIxMTIwMjAzNTIxNVowMzExMC8GA1UEAxMoNEYzQzNFRUVBRUIwOTE4
NDk4RTU5NUVEMzU2MEIyOEVDNEFDRERFNDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM25JSOL7VKiAL1SpfL4zl1LDzDWIIeWMkqxm2oYhTBV2kAiabFI
+WrxgtpC+bhPvCt/rWdNar8EBtaizxk9/EwjdUSElFDii8fiIB/0BWPcwCAWO3gf
GI3gp/Q8HwJxW4NCWqc0NRd7MVM14XhpKzvN6gkIfeEhXG1kFNUS2bCWfG+BPCO6
43eA0OfoL1+SsxhflcP1JGveO2AeCdSggb4brjAldHpI5wHlkT0+sOEyGhxpgvoa
7OM0+ErO1RL62rAUXrinISWo1yzOIpa3GTCFgKBqQCdF5sFWvt1sQpgHu+Be3joY
9ufxI12NjZVn3lXNZpRS9tRBmHm/t4g/P8cCAwEAAaOCAfUwggHxMB0GA1UdDgQW
BBRPPD7urrCRhJjlle01YLKOxKzd5DAfBgNVHSMEGDAWgBQxIqkpLMkwFSreWiWE
jBvcQETJAjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OSU1CVVND
T00vTVNLcEtTekpNQlVxM2xvbGhJd2IzRUJFeVFJLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9NU0twS1N6Sk1CVXEzbG9saEl3YjNFQkV5UUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OSU1CVVNDT00vVHp3LTdxNndrWVNZ
NVpYdE5XQ3lqc1NzM2VRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw
BwMFACQGzkAwDQYJKoZIhvcNAQELBQADggEBAJXN+3v2JD0gZ6DDKTL8IHAY3WVs
Gl2VKApnXiALTIMftI/bLWCVLXdiN19tHeAOPaQQ8kCJ5Vh/sUv71cUa0DYSIAyc
K9Sx81kEHTc9Y4gx+OPkwgF6HkPy1jiStmxvZfx1R4GYuHSzYkink4lcXBYOpvjJ
N7ZpywlI48Ou6pJ3KK/NKSi+HaD42CNVQB6d4NWj6MUPh4zHQ8JDcCb3y24gs79h
Qo9FS9Qf6Xe6Jduz3uu2ye59Xlrj044RZ/a4A2a8MZZhD213ekzjGxlmqXJfX8k3
E+xn0//lwhWhZ2dHQZxEzUgV9aCjyckephVdOOTXFYZaAFGbeidRRKQU/bo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org