Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/LgkQfiyyUBLsWCNtCZB9L9PTa1U.roa
File: LgkQfiyyUBLsWCNtCZB9L9PTa1U.roa (raw, json)
Hash identifier: KRIA4mD7FV+aVwa4aFIBtk/UbdSwnf22VA2MbWkcWns=
Subject key identifier: 2E:09:10:7E:2C:B2:50:12:EC:58:23:6D:09:90:7D:2F:D3:D3:6B:55
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0C6A
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/LgkQfiyyUBLsWCNtCZB9L9PTa1U.roa
Signing time: Wed 29 Sep 2021 02:37:21 +0000
ROA not before: Wed 29 Sep 2021 02:37:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131642
IP address blocks: 2404:aac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3178 (0xc6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 02:37:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2E09107E2CB25012EC58236D09907D2FD3D36B55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:62:07:25:c6:d4:e4:d9:3d:ce:e3:af:ce:
ee:9b:82:02:1e:62:f6:23:4e:5b:0a:b7:30:47:57:
04:22:08:41:04:48:e5:0a:cc:2a:d1:19:d0:43:8c:
e6:07:92:54:f8:4c:a5:e6:79:05:84:c5:b0:4b:57:
42:a3:db:3e:b8:d7:d3:a1:99:1d:1a:0f:2e:82:07:
5d:01:94:f2:13:ac:e9:86:6a:92:c0:f5:fb:f5:5b:
47:1f:ef:2a:e1:f3:c2:77:85:3e:29:53:75:bd:7c:
a4:e1:7e:e4:c2:5f:01:4d:c8:8a:35:39:67:f1:ed:
ba:b0:8d:8a:b7:84:bb:89:ea:23:de:a4:04:ce:64:
f6:3c:b5:31:4c:12:77:df:05:56:72:c9:cd:e4:48:
10:83:21:35:53:d5:b9:04:9f:3a:d0:c7:c9:31:4a:
c8:bc:c0:dd:e8:67:8b:70:d6:49:9e:bf:14:1b:23:
1d:55:1d:9c:6d:1e:cc:45:40:10:6c:62:a7:39:e8:
19:5b:2d:b2:85:8a:1a:ae:02:ea:fd:5c:49:ac:db:
c0:c5:46:d9:c7:13:33:6b:78:c9:13:93:79:11:9b:
1a:3d:00:aa:28:99:13:7a:50:52:b1:f0:52:b8:d8:
7b:96:c1:96:25:ca:45:f5:cb:63:f4:a2:46:35:16:
d1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:09:10:7E:2C:B2:50:12:EC:58:23:6D:09:90:7D:2F:D3:D3:6B:55
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/LgkQfiyyUBLsWCNtCZB9L9PTa1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
75:2b:0d:79:68:1a:ba:5c:a7:32:f7:64:fe:df:90:a8:37:ed:
92:f3:3b:7d:3c:20:ef:7c:4e:1e:e8:19:a9:5a:53:5b:2b:dc:
1f:1c:86:38:a7:2f:9e:26:27:c0:b4:2a:76:e8:d3:dd:43:08:
aa:16:f3:96:68:88:be:b7:e9:ad:8b:58:4b:61:89:93:78:e4:
f2:84:8f:c2:04:64:97:94:e2:ef:92:44:62:a1:1e:30:47:08:
13:79:e8:23:24:48:05:68:8c:05:65:9d:a7:aa:84:84:be:a7:
b5:61:09:ba:c1:3c:c0:bb:9e:15:a4:bf:8e:9a:04:65:4b:cd:
17:7a:e5:7e:ff:72:d2:fa:42:3e:51:72:25:34:54:f3:56:35:
93:02:9e:b5:05:13:a0:cf:9f:ad:21:09:0e:9c:34:81:58:67:
93:cb:62:8d:a7:8f:a4:4b:6c:33:60:d6:ee:cf:88:0c:b0:6e:
4b:b0:94:b3:46:7d:35:50:b1:67:ce:14:da:5f:e5:ef:fd:62:
e0:ed:66:e7:03:22:98:50:4b:13:4d:e5:e7:0e:ed:49:a2:f8:
a6:2c:f6:c4:ff:ad:c1:bb:6c:f6:f1:80:67:14:03:ee:7f:db:
c5:a7:74:c5:df:12:b2:49:4d:4b:85:5d:97:c5:46:39:e8:ed:
7a:ea:30:ba
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzE0
RkFDRkQ0NUMyQzAyNzY4RTgyNzJGNEZCODNGQjJFREFGNzQzOTAeFw0yMTA5Mjkw
MjM3MjFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJFMDkxMDdFMkNCMjUw
MTJFQzU4MjM2RDA5OTA3RDJGRDNEMzZCNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhmWIHJcbU5Nk9zuOvzu6bggIeYvYjTlsKtzBHVwQiCEEESOUK
zCrRGdBDjOYHklT4TKXmeQWExbBLV0Kj2z6419OhmR0aDy6CB10BlPITrOmGapLA
9fv1W0cf7yrh88J3hT4pU3W9fKThfuTCXwFNyIo1OWfx7bqwjYq3hLuJ6iPepATO
ZPY8tTFMEnffBVZyyc3kSBCDITVT1bkEnzrQx8kxSsi8wN3oZ4tw1kmevxQbIx1V
HZxtHsxFQBBsYqc56BlbLbKFihquAur9XEms28DFRtnHEzNreMkTk3kRmxo9AKoo
mRN6UFKx8FK42HuWwZYlykX1y2P0okY1FtG1AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQULgkQfiyyUBLsWCNtCZB9L9PTa1UwHwYDVR0jBBgwFoAUwU+s/UXCwCdo6Ccv
T7g/su2vdDkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3dV
LXNfVVhDd0NkbzZDY3ZUN2dfc3UydmREay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
d1Utc19VWEN3Q2RvNkNjdlQ3Z19zdTJ2ZERrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL0xna1FmaXl5VUJMc1dDTnRDWkI5TDlQ
VGExVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBKrAAAAw
DQYJKoZIhvcNAQELBQADggEBAHUrDXloGrpcpzL3ZP7fkKg37ZLzO308IO98Th7o
GalaU1sr3B8chjinL54mJ8C0Knbo091DCKoW85ZoiL636a2LWEthiZN45PKEj8IE
ZJeU4u+SRGKhHjBHCBN56CMkSAVojAVlnaeqhIS+p7VhCbrBPMC7nhWkv46aBGVL
zRd65X7/ctL6Qj5RciU0VPNWNZMCnrUFE6DPn60hCQ6cNIFYZ5PLYo2nj6RLbDNg
1u7PiAywbkuwlLNGfTVQsWfOFNpf5e/9YuDtZucDIphQSxNN5ecO7Umi+KYs9sT/
rcG7bPbxgGcUA+5/28WndMXfErJJTUuFXZfFRjno7XrqMLo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org