Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/iuW5f-D_bZ2vOu_vGGDbDg1y1Qc.roa
File: iuW5f-D_bZ2vOu_vGGDbDg1y1Qc.roa (raw, json)
Hash identifier: VFY313BIvfJyJR1FGi/TTFIaqFifZSp1NAkgHgIC2P0=
Subject key identifier: 8A:E5:B9:7F:E0:FF:6D:9D:AF:3A:EF:EF:18:60:DB:0E:0D:72:D5:07
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 06C6
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/iuW5f-D_bZ2vOu_vGGDbDg1y1Qc.roa
Signing time: Wed 29 Sep 2021 02:36:36 +0000
ROA not before: Wed 29 Sep 2021 02:36:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1734 (0x6c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 29 02:36:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8AE5B97FE0FF6D9DAF3AEFEF1860DB0E0D72D507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:30:63:9a:b3:1c:a7:91:9e:49:96:41:80:2e:
90:80:c7:d2:b1:51:87:1e:a2:fe:cb:9a:28:07:53:
92:a9:3e:61:76:d6:3f:6b:1d:3d:e3:bf:bd:8c:c6:
8f:f4:51:76:c1:27:cd:4c:b5:2f:da:4d:7b:1f:6e:
6e:81:40:85:ba:b2:b4:ba:12:e5:a9:a3:74:fc:1f:
6d:65:db:17:e0:9e:25:e6:ad:69:8d:e9:40:65:7e:
2c:ad:0b:41:46:d9:2a:7c:13:1a:7d:0e:32:f7:de:
f3:d6:18:6f:f5:36:fa:06:67:d2:51:85:cc:fc:16:
d7:39:55:86:47:42:ac:52:b8:7a:e0:bb:0d:cc:3c:
f3:0b:07:fe:47:e9:9d:63:84:f8:fb:bc:28:9d:06:
5b:ad:90:ec:74:14:75:1f:5e:ee:ca:27:16:5d:a5:
00:12:92:c4:8d:dc:38:ac:5e:f3:f3:1d:16:e3:11:
42:cf:28:32:01:e5:76:05:56:21:a9:fe:13:49:c1:
bd:5c:68:e0:d8:de:a3:a5:8d:b2:4d:5a:9c:0b:53:
62:b2:ed:d0:0a:07:68:e1:b6:3b:0a:96:bb:80:f4:
a0:60:50:54:0e:65:20:f1:37:08:0e:df:52:3b:31:
f6:13:59:98:68:e3:36:83:4b:4a:c0:6c:aa:63:dc:
22:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E5:B9:7F:E0:FF:6D:9D:AF:3A:EF:EF:18:60:DB:0E:0D:72:D5:07
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/iuW5f-D_bZ2vOu_vGGDbDg1y1Qc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:7e:d4:df:90:fe:b3:60:51:38:4e:75:9f:c6:d4:86:f1:34:
29:2f:36:02:74:e5:43:8e:db:7f:8f:54:61:0a:8f:77:98:d7:
75:90:84:24:fa:d7:84:bd:31:76:89:12:42:c0:dc:15:f8:39:
a1:5b:b2:68:0c:ca:c0:d1:0f:9b:a3:bc:6f:6a:24:73:ca:10:
49:61:1e:08:39:e1:24:ab:64:c6:70:a8:24:b3:34:36:8f:06:
d2:91:7b:92:11:2b:bb:07:37:ca:cb:25:24:30:63:df:93:3c:
61:0b:39:41:e6:03:4e:87:12:31:d6:72:bf:6c:ba:2a:32:af:
3e:26:cb:de:e2:03:f4:f7:2d:39:27:99:a1:77:5d:8e:6b:9c:
18:e2:a6:e7:c1:92:d8:57:de:f1:5f:bc:1b:b6:cd:3c:5d:ea:
5c:f9:71:9f:41:7f:ff:63:03:53:cf:b4:7a:ca:37:33:bb:15:
53:1d:25:9d:3e:cd:36:02:09:c3:9c:44:1e:26:d5:d6:ea:54:
04:62:bc:2a:81:ec:25:f0:c2:69:6d:6c:c3:59:82:e7:08:65:
5e:4d:b0:b9:8e:2f:85:fe:64:2d:f4:c2:34:11:1e:9d:77:d8:
83:a5:e9:05:02:1d:a7:a9:17:74:e0:bd:65:22:ba:13:bd:d1:
12:0d:ef:bd
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICBsYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz
OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yMTA5Mjkw
MjM2MzZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhBRTVCOTdGRTBGRjZE
OURBRjNBRUZFRjE4NjBEQjBFMEQ3MkQ1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDyMGOasxynkZ5JlkGALpCAx9KxUYceov7LmigHU5KpPmF21j9r
HT3jv72Mxo/0UXbBJ81MtS/aTXsfbm6BQIW6srS6EuWpo3T8H21l2xfgniXmrWmN
6UBlfiytC0FG2Sp8Exp9DjL33vPWGG/1NvoGZ9JRhcz8Ftc5VYZHQqxSuHrguw3M
PPMLB/5H6Z1jhPj7vCidBlutkOx0FHUfXu7KJxZdpQASksSN3DisXvPzHRbjEULP
KDIB5XYFViGp/hNJwb1caODY3qOljbJNWpwLU2Ky7dAKB2jhtjsKlruA9KBgUFQO
ZSDxNwgO31I7MfYTWZho4zaDS0rAbKpj3CJzAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUiuW5f+D/bZ2vOu/vGGDbDg1y1QcwHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh
CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ
Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC9pdVc1Zi1EX2JaMnZP
dV92R0dEYkRnMXkxUWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAW4wDANBgkqhkiG9w0BAQsFAAOCAQEAsH7U35D+s2BROE51n8bUhvE0KS82
AnTlQ47bf49UYQqPd5jXdZCEJPrXhL0xdokSQsDcFfg5oVuyaAzKwNEPm6O8b2ok
c8oQSWEeCDnhJKtkxnCoJLM0No8G0pF7khEruwc3ysslJDBj35M8YQs5QeYDTocS
MdZyv2y6KjKvPibL3uID9PctOSeZoXddjmucGOKm58GS2Ffe8V+8G7bNPF3qXPlx
n0F//2MDU8+0eso3M7sVUx0lnT7NNgIJw5xEHibV1upUBGK8KoHsJfDCaW1sw1mC
5whlXk2wuY4vhf5kLfTCNBEenXfYg6XpBQIdp6kXdOC9ZSK6E73REg3vvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org