Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qB1oe1QPXoiTYOpGKA2LG2ibxOc.roa
File: qB1oe1QPXoiTYOpGKA2LG2ibxOc.roa (raw, json)
Hash identifier: P78zNU0HtHJYtDFD8b2aAcGjzaMnBxT8LQd1Eqgk4IY=
Subject key identifier: A8:1D:68:7B:54:0F:5E:88:93:60:EA:46:28:0D:8B:1B:68:9B:C4:E7
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0AB2
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qB1oe1QPXoiTYOpGKA2LG2ibxOc.roa
Signing time: Mon 03 Oct 2022 14:16:08 +0000
ROA not before: Mon 03 Oct 2022 14:16:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 2402:c340:cdef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2738 (0xab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Oct 3 14:16:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A81D687B540F5E889360EA46280D8B1B689BC4E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7b:e3:c9:a0:19:5b:8d:e8:0b:34:ba:61:1a:
17:f9:28:c4:cc:90:ab:2b:c7:df:16:d3:13:ec:16:
18:e0:84:d3:22:88:f4:eb:78:8d:d1:d0:6b:ce:f7:
48:5f:0f:35:81:d7:f5:39:35:2d:c6:8c:94:73:10:
de:e9:91:c0:36:5a:48:97:2d:79:83:43:48:80:e4:
ae:13:93:0f:71:d3:f2:c4:9c:16:c9:42:c9:83:59:
aa:eb:13:2e:62:3d:92:c7:cd:d9:1b:5d:fd:dc:b1:
4b:d3:da:10:3a:3a:84:ba:05:36:eb:bf:bb:77:8c:
23:8d:eb:bc:ca:70:62:45:67:f4:b6:f4:bd:6b:02:
de:f5:c3:22:c5:ba:9d:f1:62:a2:4d:98:b1:91:52:
4b:43:74:4c:b3:87:34:ad:29:5d:4a:37:0e:f7:3e:
45:42:c9:d2:0a:b9:7f:44:12:a6:78:54:92:73:7b:
84:f7:a2:6c:3f:d2:cd:12:1e:2c:fe:53:51:80:09:
10:45:55:e9:bf:53:6c:be:e7:d4:53:7b:b3:e8:5f:
e0:57:1e:d2:8a:57:ed:6f:35:4b:7b:cd:25:82:18:
58:dd:f7:0e:02:c9:7f:92:56:0c:60:48:ed:b4:7a:
b2:13:7e:ab:ce:0b:61:13:1c:10:70:9c:b4:85:59:
3d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1D:68:7B:54:0F:5E:88:93:60:EA:46:28:0D:8B:1B:68:9B:C4:E7
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qB1oe1QPXoiTYOpGKA2LG2ibxOc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:cdef::/48
Signature Algorithm: sha256WithRSAEncryption
47:0d:dc:c2:57:0c:36:55:20:5e:90:0f:6a:69:23:e8:2f:09:
3a:a2:e3:4f:0d:be:17:b6:ee:5c:10:8a:57:80:90:9e:d5:2a:
a7:34:19:e8:5a:1f:39:8e:f5:28:f4:a9:92:fe:8f:15:b9:9a:
f2:96:71:f7:db:d9:c3:de:a7:17:a6:f7:d6:5d:87:eb:0e:4a:
04:36:9e:f9:49:59:5f:47:f1:96:22:e2:44:42:ea:57:60:9e:
25:41:4e:35:c0:0d:63:2b:fd:b9:03:2e:c3:5d:f7:b8:a5:05:
c2:35:d2:c4:95:80:bc:24:ba:7e:82:50:d6:1d:90:bf:31:c8:
68:07:60:08:e7:8c:61:df:d1:9e:c1:d4:31:10:a7:65:a0:b0:
8f:ef:ce:aa:ae:fe:09:71:85:ad:60:04:d9:9b:6a:b9:02:ea:
29:2c:bb:e0:2e:35:12:b0:43:e2:83:63:01:9d:31:00:e4:1a:
e3:78:a7:cf:09:f4:83:af:e1:69:cc:2b:78:2c:af:12:e1:49:
fc:75:bb:24:5d:38:c5:88:63:ee:05:a2:be:0c:8d:ea:7b:7a:
e6:75:3a:4d:09:d5:51:9b:d6:ef:65:00:13:24:15:be:4e:8e:
70:67:ea:25:2d:29:98:45:ac:c2:a5:46:b2:b1:0d:04:42:f5:
03:b9:98:d7
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1
NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yMjEwMDMx
NDE2MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE4MUQ2ODdCNTQwRjVF
ODg5MzYwRUE0NjI4MEQ4QjFCNjg5QkM0RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqe+PJoBlbjegLNLphGhf5KMTMkKsrx98W0xPsFhjghNMiiPTr
eI3R0GvO90hfDzWB1/U5NS3GjJRzEN7pkcA2WkiXLXmDQ0iA5K4Tkw9x0/LEnBbJ
QsmDWarrEy5iPZLHzdkbXf3csUvT2hA6OoS6BTbrv7t3jCON67zKcGJFZ/S29L1r
At71wyLFup3xYqJNmLGRUktDdEyzhzStKV1KNw73PkVCydIKuX9EEqZ4VJJze4T3
omw/0s0SHiz+U1GACRBFVem/U2y+59RTe7PoX+BXHtKKV+1vNUt7zSWCGFjd9w4C
yX+SVgxgSO20erITfqvOC2ETHBBwnLSFWT2vAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUqB1oe1QPXoiTYOpGKA2LG2ibxOcwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB
76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI
RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL3FCMW9lMVFQWG9p
VFlPcEdLQTJMRzJpYnhPYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkAsNAze8wDQYJKoZIhvcNAQELBQADggEBAEcN3MJXDDZVIF6QD2ppI+gv
CTqi408Nvhe27lwQileAkJ7VKqc0GehaHzmO9Sj0qZL+jxW5mvKWcffb2cPepxem
99Zdh+sOSgQ2nvlJWV9H8ZYi4kRC6ldgniVBTjXADWMr/bkDLsNd97ilBcI10sSV
gLwkun6CUNYdkL8xyGgHYAjnjGHf0Z7B1DEQp2WgsI/vzqqu/glxha1gBNmbarkC
6iksu+AuNRKwQ+KDYwGdMQDkGuN4p88J9IOv4WnMK3gsrxLhSfx1uyRdOMWIY+4F
or4Mjep7euZ1Ok0J1VGb1u9lABMkFb5OjnBn6iUtKZhFrMKlRrKxDQRC9QO5mNc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org