Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/fj-F5g6zEIICgiz_134CxmL0pm4.roa
File: fj-F5g6zEIICgiz_134CxmL0pm4.roa (raw, json)
Hash identifier: t//bntqSRmzxaDhlXkxZymi3w9k24R919LS1vtkB31c=
Subject key identifier: 7E:3F:85:E6:0E:B3:10:82:02:82:2C:FF:D7:7E:02:C6:62:F4:A6:6E
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/fj-F5g6zEIICgiz_134CxmL0pm4.roa
Signing time: Thu 15 Sep 2022 02:38:08 +0000
ROA not before: Thu 15 Sep 2022 02:38:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131642
IP address blocks: 2404:aac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7E3F85E60EB3108202822CFFD77E02C662F4A66E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:42:06:5f:67:3b:58:2b:74:bd:6b:ce:77:d3:
87:6e:2c:62:fd:49:23:bc:d8:92:36:19:91:f8:c8:
ff:c8:4e:51:8b:cf:6d:5b:b1:f2:62:7a:ea:ff:21:
5f:74:7e:e8:24:03:c4:70:52:40:9c:f8:8c:47:de:
7a:0c:37:69:73:44:68:0e:3d:5b:70:28:5c:b4:21:
85:e1:31:db:e8:4e:d5:52:98:04:3c:b5:90:c0:ac:
90:97:f0:15:3b:da:2f:9d:82:df:8e:4f:a9:c8:9f:
23:34:62:12:a3:45:4a:5d:0b:fa:12:3f:1b:5c:eb:
6d:e9:00:a7:5e:f8:bf:05:24:b3:59:fc:50:8a:77:
cb:12:6c:fa:fb:38:d2:84:10:36:42:14:54:1d:e2:
3c:42:d5:7a:a6:e6:bf:1a:d8:29:b6:8b:64:92:a5:
5d:c6:64:b7:98:34:ee:3b:4a:01:87:33:b0:f4:48:
6e:e7:37:ef:ad:af:96:49:bd:92:bc:8a:6e:39:fe:
5d:74:dd:81:a0:78:4d:2d:88:02:53:e7:f5:07:cb:
09:db:a4:b3:da:e5:68:5e:14:9d:bc:b5:80:90:c6:
f0:93:e1:7b:47:b9:3c:4e:10:06:c5:49:aa:e7:92:
13:88:f5:68:23:29:88:dc:ab:c9:38:01:82:e0:c3:
e1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3F:85:E6:0E:B3:10:82:02:82:2C:FF:D7:7E:02:C6:62:F4:A6:6E
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/fj-F5g6zEIICgiz_134CxmL0pm4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
17:77:33:a1:7c:0c:0d:2f:8d:2f:c7:00:3a:37:eb:9f:52:7c:
0d:c9:69:cc:46:41:f8:74:2b:78:b8:1c:36:a1:fd:35:3d:fa:
cc:09:2f:cd:68:62:06:f7:0f:43:13:9e:90:6d:05:a2:48:0c:
6c:8d:ef:92:36:60:a5:a2:a6:d2:c8:5b:16:fd:01:17:24:fb:
2f:a0:da:3b:55:0d:35:7e:d0:01:6a:f6:e5:b7:47:ee:d0:51:
2b:bd:8c:3a:09:fb:02:fe:cb:53:4f:a8:04:32:97:40:de:b9:
64:61:9e:2d:a6:85:f3:ca:ae:a5:9d:45:a2:1f:d2:f5:29:4c:
1b:85:e0:10:b5:89:f9:76:43:98:26:e1:ba:5a:6e:f3:a8:d5:
f0:3c:52:59:07:63:8f:08:7c:f8:48:df:a1:36:28:36:4e:f9:
20:d1:4f:6f:e1:69:81:4b:67:ea:d1:da:e3:0a:b9:1c:59:29:
88:7c:31:8e:0c:1f:47:4c:1a:f3:ed:d0:1d:1f:12:e2:1d:da:
c5:3d:6d:cb:0d:a7:67:3a:73:36:a5:9e:77:7e:05:19:c7:6d:
21:2b:be:c9:d1:f5:36:07:dd:d3:c2:25:9d:0b:7f:a0:55:91:
b9:aa:57:9e:6b:4b:f8:45:7a:ff:7c:a7:0e:57:a0:4f:22:0d:
56:a6:fb:25
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzE0
RkFDRkQ0NUMyQzAyNzY4RTgyNzJGNEZCODNGQjJFREFGNzQzOTAeFw0yMjA5MTUw
MjM4MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdFM0Y4NUU2MEVCMzEw
ODIwMjgyMkNGRkQ3N0UwMkM2NjJGNEE2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClQgZfZztYK3S9a85304duLGL9SSO82JI2GZH4yP/ITlGLz21b
sfJieur/IV90fugkA8RwUkCc+IxH3noMN2lzRGgOPVtwKFy0IYXhMdvoTtVSmAQ8
tZDArJCX8BU72i+dgt+OT6nInyM0YhKjRUpdC/oSPxtc623pAKde+L8FJLNZ/FCK
d8sSbPr7ONKEEDZCFFQd4jxC1Xqm5r8a2Cm2i2SSpV3GZLeYNO47SgGHM7D0SG7n
N++tr5ZJvZK8im45/l103YGgeE0tiAJT5/UHywnbpLPa5WheFJ28tYCQxvCT4XtH
uTxOEAbFSarnkhOI9WgjKYjcq8k4AYLgw+GFAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUfj+F5g6zEIICgiz/134CxmL0pm4wHwYDVR0jBBgwFoAUwU+s/UXCwCdo6Ccv
T7g/su2vdDkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3dV
LXNfVVhDd0NkbzZDY3ZUN2dfc3UydmREay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
d1Utc19VWEN3Q2RvNkNjdlQ3Z19zdTJ2ZERrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL2ZqLUY1ZzZ6RUlJQ2dpel8xMzRDeG1M
MHBtNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBKrAAAAw
DQYJKoZIhvcNAQELBQADggEBABd3M6F8DA0vjS/HADo3659SfA3JacxGQfh0K3i4
HDah/TU9+swJL81oYgb3D0MTnpBtBaJIDGyN75I2YKWiptLIWxb9ARck+y+g2jtV
DTV+0AFq9uW3R+7QUSu9jDoJ+wL+y1NPqAQyl0DeuWRhni2mhfPKrqWdRaIf0vUp
TBuF4BC1ifl2Q5gm4bpabvOo1fA8UlkHY48IfPhI36E2KDZO+SDRT2/haYFLZ+rR
2uMKuRxZKYh8MY4MH0dMGvPt0B0fEuId2sU9bcsNp2c6czalnnd+BRnHbSErvsnR
9TYH3dPCJZ0Lf6BVkbmqV55rS/hFev98pw5XoE8iDVam+yU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org