Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/W9sHufpQuDaB5itFkhsr4OOlCrY.roa
File: W9sHufpQuDaB5itFkhsr4OOlCrY.roa (raw, json)
Hash identifier: Az7h1AULJ2NS0Qkbt49ZVwpBCvMHO5k9w6rkjcdXjtI=
Subject key identifier: 5B:DB:07:B9:FA:50:B8:36:81:E6:2B:45:92:1B:2B:E0:E3:A5:0A:B6
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0AA4
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/W9sHufpQuDaB5itFkhsr4OOlCrY.roa
Signing time: Thu 15 Sep 2022 02:44:11 +0000
ROA not before: Thu 15 Sep 2022 02:44:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2402:c340:cacb::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2724 (0xaa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 15 02:44:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5BDB07B9FA50B83681E62B45921B2BE0E3A50AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:44:90:12:93:48:58:be:89:93:1a:e5:c4:
18:6e:e7:fa:3c:e3:85:cd:b3:7f:93:e7:9a:fe:4f:
ca:39:29:33:5d:66:76:63:20:aa:e6:e5:6c:61:e3:
4b:99:0c:b4:9d:34:a1:e6:b4:01:8f:d6:a1:d3:13:
44:d9:94:f5:66:31:ae:1a:be:ef:59:c8:8e:97:18:
09:42:a1:57:e0:bf:f8:e0:34:9a:18:72:fd:ca:16:
1b:40:c5:65:49:f1:06:6e:8b:93:96:51:56:76:18:
a1:4d:38:38:36:29:e1:64:de:cf:19:16:a7:94:f7:
21:15:5c:f8:84:f3:ba:2e:41:09:e5:48:6c:bc:ad:
de:7a:ea:96:3c:4e:e1:3f:30:62:f9:3c:3d:bb:1e:
95:82:7e:36:c8:88:38:ab:18:48:8f:9c:fb:91:53:
52:5b:ac:e1:95:07:f9:c3:ca:65:93:d7:a1:af:88:
d1:d8:bb:f2:c6:bc:2b:d3:58:c9:df:f3:39:08:73:
70:6d:59:0f:58:07:06:85:e0:d1:b4:4b:6f:ea:ec:
a7:99:78:99:0d:41:a7:a4:87:75:e8:be:f8:b8:e8:
cd:12:df:e3:64:5a:39:b3:23:ab:04:fa:5f:68:28:
c0:b7:7d:96:08:11:82:cc:29:a6:87:27:ff:2c:82:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DB:07:B9:FA:50:B8:36:81:E6:2B:45:92:1B:2B:E0:E3:A5:0A:B6
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/W9sHufpQuDaB5itFkhsr4OOlCrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:cacb::/48
Signature Algorithm: sha256WithRSAEncryption
71:97:35:0d:ad:89:1d:54:0f:14:67:3b:0e:64:ef:d5:38:c1:
8a:44:e0:04:ab:3f:46:5d:a7:51:4b:19:ce:98:55:aa:bd:21:
69:54:31:42:db:43:3e:c9:7c:46:1c:df:1a:c5:01:46:a4:86:
39:62:2c:c0:78:20:91:94:d3:cf:37:89:67:40:f6:5d:a3:a4:
26:1c:3b:1c:12:10:cc:72:83:08:af:a3:c7:6f:83:f0:7d:cb:
a3:e2:97:62:e2:bd:6f:c9:c1:4e:a4:a1:ed:1b:c0:d2:45:95:
29:af:cf:2a:7e:80:0d:86:8a:83:67:d0:4d:46:48:36:a7:87:
8d:b1:33:15:bc:89:2a:72:ed:f3:bb:aa:d7:f0:d7:a4:fa:ae:
e8:63:57:5f:54:bc:bb:79:a6:59:2f:6b:72:76:a3:fa:a6:80:
3f:8a:6a:5c:97:d1:48:28:31:9f:3d:48:0d:f3:cf:c9:74:67:
23:d2:e3:de:57:5d:00:e2:b4:39:29:92:f1:10:0a:62:d3:3e:
0b:32:e7:17:c4:46:95:ec:7a:c0:8b:7a:63:41:ae:25:68:7a:
4f:d1:8d:d0:a6:ce:95:84:1d:10:d4:44:c0:f4:17:34:b8:da:
eb:93:a6:3f:b3:de:3f:3d:f4:49:57:06:a7:67:c1:88:ae:38:
4b:6a:b5:c2
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1
NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yMjA5MTUw
MjQ0MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVCREIwN0I5RkE1MEI4
MzY4MUU2MkI0NTkyMUIyQkUwRTNBNTBBQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwGUSQEpNIWL6JkxrlxBhu5/o844XNs3+T55r+T8o5KTNdZnZj
IKrm5Wxh40uZDLSdNKHmtAGP1qHTE0TZlPVmMa4avu9ZyI6XGAlCoVfgv/jgNJoY
cv3KFhtAxWVJ8QZui5OWUVZ2GKFNODg2KeFk3s8ZFqeU9yEVXPiE87ouQQnlSGy8
rd566pY8TuE/MGL5PD27HpWCfjbIiDirGEiPnPuRU1JbrOGVB/nDymWT16GviNHY
u/LGvCvTWMnf8zkIc3BtWQ9YBwaF4NG0S2/q7KeZeJkNQaekh3Xovvi46M0S3+Nk
WjmzI6sE+l9oKMC3fZYIEYLMKaaHJ/8sglurAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUW9sHufpQuDaB5itFkhsr4OOlCrYwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB
76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI
RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL1c5c0h1ZnBRdURh
QjVpdEZraHNyNE9PbENyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkAsNAysswDQYJKoZIhvcNAQELBQADggEBAHGXNQ2tiR1UDxRnOw5k79U4
wYpE4ASrP0Zdp1FLGc6YVaq9IWlUMULbQz7JfEYc3xrFAUakhjliLMB4IJGU0883
iWdA9l2jpCYcOxwSEMxygwivo8dvg/B9y6Pil2LivW/JwU6koe0bwNJFlSmvzyp+
gA2GioNn0E1GSDanh42xMxW8iSpy7fO7qtfw16T6ruhjV19UvLt5plkva3J2o/qm
gD+KalyX0UgoMZ89SA3zz8l0ZyPS495XXQDitDkpkvEQCmLTPgsy5xfERpXsesCL
emNBriVoek/RjdCmzpWEHRDURMD0FzS42uuTpj+z3j899ElXBqdnwYiuOEtqtcI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org