Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/xG6po2osfk-N8WocIb2brZv3SKc.roa
File: xG6po2osfk-N8WocIb2brZv3SKc.roa (raw, json)
Hash identifier: RRzaqWWbuuJwHl5RPgJ3pMw/owU0qwFst2IFm/UOeeg=
Subject key identifier: C4:6E:A9:A3:6A:2C:7E:4F:8D:F1:6A:1C:21:BD:9B:AD:9B:F7:48:A7
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/xG6po2osfk-N8WocIb2brZv3SKc.roa
Signing time: Thu 15 Sep 2022 02:38:07 +0000
ROA not before: Thu 15 Sep 2022 02:38:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131658
IP address blocks: 2404:aac0:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C46EA9A36A2C7E4F8DF16A1C21BD9BAD9BF748A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:48:d3:51:31:ea:ca:1f:ec:1b:82:b6:6c:e2:
06:8a:32:0d:ce:81:62:78:3a:21:b8:f4:f9:65:b3:
6a:15:8c:97:c5:c7:1e:6a:58:a9:59:2b:3c:08:66:
ba:f6:85:83:9a:0b:98:dc:8e:51:89:17:e0:8d:f1:
e5:ff:9a:10:e0:54:82:cb:85:24:99:a6:40:33:6b:
b6:3a:ab:44:63:6f:82:5f:7c:e6:e1:d5:ba:a4:5d:
63:fa:3f:34:e8:c2:d0:5a:e1:df:dc:d4:ce:1c:c0:
54:5a:fc:dd:a8:06:10:f2:28:64:40:f0:70:25:ac:
b7:28:fd:34:0c:cc:ee:ac:ab:19:33:73:81:db:56:
d1:87:7e:1a:cd:7c:df:da:c8:17:9f:c8:79:59:a2:
cd:e8:ea:58:bf:6a:f8:8d:a4:36:cd:54:fb:96:19:
19:ed:a5:13:94:d3:d6:f1:8e:cc:01:b2:11:00:d1:
48:a4:31:12:da:f3:3f:7f:bd:65:bf:44:96:ba:2d:
34:8c:da:b4:12:99:f0:6a:2c:96:c7:78:fa:ea:03:
96:8e:20:4b:60:cd:b0:df:54:d7:2a:2e:99:31:34:
40:63:e0:9c:7f:bd:97:b0:06:d4:f3:48:5e:cc:7a:
1c:dc:0e:13:9c:5a:3c:6d:01:66:c8:c8:5b:c0:f7:
f8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6E:A9:A3:6A:2C:7E:4F:8D:F1:6A:1C:21:BD:9B:AD:9B:F7:48:A7
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/xG6po2osfk-N8WocIb2brZv3SKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:aac0:10::/44
Signature Algorithm: sha256WithRSAEncryption
f7:ee:87:e9:bc:6c:ca:28:31:7b:6c:51:cd:8b:56:a0:b8:95:
49:63:26:f7:df:78:a6:d5:17:69:92:68:b2:3b:fa:5c:12:ff:
60:24:bd:f0:cc:f2:6d:51:51:0e:24:3e:27:93:82:7a:e5:3f:
5a:60:05:02:3a:41:eb:18:e7:5e:30:11:3c:9b:8f:8c:b9:93:
67:03:8a:f1:4b:98:eb:07:b1:32:bc:21:b9:f4:a1:02:72:49:
c2:1c:66:37:6d:00:70:d5:75:02:df:4c:0d:28:6a:38:7d:36:
fb:e0:16:8f:bc:36:2f:01:16:5a:62:32:10:bf:38:2a:ac:c0:
6f:bf:48:6e:d4:77:8e:a5:99:11:42:06:6c:05:c6:9e:ed:87:
93:f9:07:e8:58:33:c2:f8:5e:a3:fa:b6:84:6e:1c:d1:02:bc:
10:ef:8a:bf:27:0f:46:bf:5e:83:59:23:14:7e:ca:24:99:a0:
b5:9c:6d:66:c0:fd:68:9e:79:16:86:04:45:57:70:e8:7c:f9:
25:26:a3:7f:2e:e8:ad:a7:7c:10:72:bc:a0:c8:34:85:ec:23:
d5:14:b6:4b:22:89:2b:ce:19:27:23:f2:2e:b7:fc:a1:04:70:
f1:90:03:ba:de:b3:12:d2:fc:ed:d8:7c:26:11:10:11:0c:9e:
11:06:4d:1a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzE0
RkFDRkQ0NUMyQzAyNzY4RTgyNzJGNEZCODNGQjJFREFGNzQzOTAeFw0yMjA5MTUw
MjM4MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM0NkVBOUEzNkEyQzdF
NEY4REYxNkExQzIxQkQ5QkFEOUJGNzQ4QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClSNNRMerKH+wbgrZs4gaKMg3OgWJ4OiG49Plls2oVjJfFxx5q
WKlZKzwIZrr2hYOaC5jcjlGJF+CN8eX/mhDgVILLhSSZpkAza7Y6q0Rjb4JffObh
1bqkXWP6PzTowtBa4d/c1M4cwFRa/N2oBhDyKGRA8HAlrLco/TQMzO6sqxkzc4Hb
VtGHfhrNfN/ayBefyHlZos3o6li/aviNpDbNVPuWGRntpROU09bxjswBshEA0Uik
MRLa8z9/vWW/RJa6LTSM2rQSmfBqLJbHePrqA5aOIEtgzbDfVNcqLpkxNEBj4Jx/
vZewBtTzSF7MehzcDhOcWjxtAWbIyFvA9/iDAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUxG6po2osfk+N8WocIb2brZv3SKcwHwYDVR0jBBgwFoAUwU+s/UXCwCdo6Ccv
T7g/su2vdDkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3dV
LXNfVVhDd0NkbzZDY3ZUN2dfc3UydmREay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
d1Utc19VWEN3Q2RvNkNjdlQ3Z19zdTJ2ZERrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3hHNnBvMm9zZmstTjhXb2NJYjJiclp2
M1NLYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkBKrAABAw
DQYJKoZIhvcNAQELBQADggEBAPfuh+m8bMooMXtsUc2LVqC4lUljJvffeKbVF2mS
aLI7+lwS/2AkvfDM8m1RUQ4kPieTgnrlP1pgBQI6QesY514wETybj4y5k2cDivFL
mOsHsTK8Ibn0oQJyScIcZjdtAHDVdQLfTA0oajh9NvvgFo+8Ni8BFlpiMhC/OCqs
wG+/SG7Ud46lmRFCBmwFxp7th5P5B+hYM8L4XqP6toRuHNECvBDvir8nD0a/XoNZ
IxR+yiSZoLWcbWbA/WieeRaGBEVXcOh8+SUmo38u6K2nfBByvKDINIXsI9UUtksi
iSvOGScj8i63/KEEcPGQA7resxLS/O3YfCYREBEMnhEGTRo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org