Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/fKE1qUSe27l2mOJu1qsHYvacyLg.roa
File: fKE1qUSe27l2mOJu1qsHYvacyLg.roa (raw, json)
Hash identifier: MJ18je4KMOCV3580Qbbs5Fl6pGv2h5LYLzfXOmVKR7s=
Subject key identifier: 7C:A1:35:A9:44:9E:DB:B9:76:98:E2:6E:D6:AB:07:62:F6:9C:C8:B8
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0B00
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/fKE1qUSe27l2mOJu1qsHYvacyLg.roa
Signing time: Fri 01 Sep 2023 09:40:23 +0000
ROA not before: Fri 01 Sep 2023 09:40:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131633
IP address blocks: 2403:86c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2816 (0xb00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Sep 1 09:40:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7CA135A9449EDBB97698E26ED6AB0762F69CC8B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c0:ae:d6:b4:85:7a:7a:81:84:41:d5:cf:b3:
bd:5a:63:ee:32:bb:90:51:0b:e7:da:a2:3e:45:19:
c0:b4:12:d2:fa:83:f0:95:69:39:9a:41:af:4d:4c:
29:74:d6:f6:68:70:c0:28:c4:04:f4:c7:19:47:06:
53:38:3c:65:f8:46:10:27:6b:d8:58:d9:49:d5:9a:
b8:30:71:e3:71:82:db:2c:73:fb:f7:88:74:6a:0e:
c7:ad:f0:02:f4:f5:b9:65:a8:c6:f3:54:29:5b:bd:
07:57:e5:0e:0b:78:e5:17:fc:e8:72:c4:aa:9d:7a:
c9:f2:9a:02:10:f7:ef:a3:e7:57:f5:bf:05:dd:5a:
74:dc:f8:da:50:8e:d4:fd:aa:42:d7:43:df:25:76:
3f:5b:28:65:00:46:29:a5:77:13:ac:07:43:cd:fe:
3a:7e:4e:b2:9b:4d:55:21:f8:3e:78:af:ee:3e:22:
bc:12:a5:16:03:16:42:e2:a4:35:70:43:12:a9:64:
68:e2:e8:a9:06:d8:0f:4f:f5:75:8f:a2:65:36:3f:
60:d7:f2:a0:31:ef:55:a3:ff:59:f7:e4:07:c6:7f:
3f:9b:dc:52:ce:4b:3d:45:08:9a:d4:b5:d4:bd:b5:
9a:ed:72:c6:ee:4a:57:3b:d4:5f:07:cb:c3:83:a6:
d9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A1:35:A9:44:9E:DB:B9:76:98:E2:6E:D6:AB:07:62:F6:9C:C8:B8
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/fKE1qUSe27l2mOJu1qsHYvacyLg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:86c0::/32
Signature Algorithm: sha256WithRSAEncryption
57:df:2b:98:59:e9:db:b3:4c:4e:e2:04:f1:c3:66:77:84:35:
52:0e:a8:85:68:45:7d:de:ed:d5:62:8b:c9:4b:95:ce:7b:df:
0c:17:19:5f:21:b8:72:49:50:c8:4c:73:e6:89:66:c6:9b:59:
85:6f:5f:11:f7:f0:9c:bf:a6:7b:27:96:25:2d:c5:9a:b0:49:
19:28:cd:8f:3d:05:9f:6f:b2:68:4c:7e:38:15:6d:87:e4:f1:
b9:2f:c9:f1:70:af:6a:fa:21:d0:a5:91:bc:bd:98:cf:47:a3:
ea:7c:10:a6:fc:e3:d9:10:4a:77:3e:1a:0c:69:ed:7c:3e:b9:
8d:f3:4d:39:a0:9f:72:61:d6:a1:83:a3:b7:c8:f0:36:8c:38:
a6:e0:78:f5:b6:5f:fe:6d:9d:a5:03:c3:16:b2:8f:58:b6:8e:
c8:fc:78:15:fc:7a:c6:17:3d:23:01:fa:a4:ff:b2:99:8e:db:
7b:71:b2:c4:a9:8d:ae:7a:ba:97:da:2e:0c:ec:ea:e6:da:2c:
14:21:8a:eb:c9:fb:0d:11:b4:37:e8:ab:ec:d4:1c:c8:ad:de:
89:ae:1a:05:13:d4:56:33:60:6b:5d:c7:dd:2e:22:54:5a:c9:
fb:11:61:7f:3a:e6:a4:da:bc:e0:9a:ac:99:8e:6d:34:5d:1e:
70:40:3b:87
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz
RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yMzA5MDEw
OTQwMjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdDQTEzNUE5NDQ5RURC
Qjk3Njk4RTI2RUQ2QUIwNzYyRjY5Q0M4QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVwK7WtIV6eoGEQdXPs71aY+4yu5BRC+faoj5FGcC0EtL6g/CV
aTmaQa9NTCl01vZocMAoxAT0xxlHBlM4PGX4RhAna9hY2UnVmrgwceNxgtssc/v3
iHRqDset8AL09bllqMbzVClbvQdX5Q4LeOUX/OhyxKqdesnymgIQ9++j51f1vwXd
WnTc+NpQjtT9qkLXQ98ldj9bKGUARimldxOsB0PN/jp+TrKbTVUh+D54r+4+IrwS
pRYDFkLipDVwQxKpZGji6KkG2A9P9XWPomU2P2DX8qAx71Wj/1n35AfGfz+b3FLO
Sz1FCJrUtdS9tZrtcsbuSlc71F8Hy8ODptkFAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUfKE1qUSe27l2mOJu1qsHYvacyLgwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt
+2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB
SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvZktFMXFVU2Uy
N2wybU9KdTFxc0hZdmFjeUxnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC
AAIwBwMFACQDhsAwDQYJKoZIhvcNAQELBQADggEBAFffK5hZ6duzTE7iBPHDZneE
NVIOqIVoRX3e7dVii8lLlc573wwXGV8huHJJUMhMc+aJZsabWYVvXxH38Jy/pnsn
liUtxZqwSRkozY89BZ9vsmhMfjgVbYfk8bkvyfFwr2r6IdClkby9mM9Ho+p8EKb8
49kQSnc+Ggxp7Xw+uY3zTTmgn3Jh1qGDo7fI8DaMOKbgePW2X/5tnaUDwxayj1i2
jsj8eBX8esYXPSMB+qT/spmO23txssSpja56upfaLgzs6ubaLBQhiuvJ+w0RtDfo
q+zUHMit3omuGgUT1FYzYGtdx90uIlRayfsRYX865qTavOCarJmObTRdHnBAO4c=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:21 2025 by rpki-client