Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pmrh8YLPOV2S30Dn3onr42Q8X1Q.roa
File: pmrh8YLPOV2S30Dn3onr42Q8X1Q.roa (raw, json)
Hash identifier: upVy/nLVVsLk7tWDFmza6AkX5TgB8985iTGfmL3duLs=
Subject key identifier: A6:6A:E1:F1:82:CF:39:5D:92:DF:40:E7:DE:89:EB:E3:64:3C:5F:54
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0792
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pmrh8YLPOV2S30Dn3onr42Q8X1Q.roa
Signing time: Tue 29 Sep 2020 10:06:05 +0000
ROA not before: Tue 29 Sep 2020 10:06:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A66AE1F182CF395D92DF40E7DE89EBE3643C5F54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:c9:33:e0:6a:03:3b:03:70:4b:32:38:d4:
f1:76:5a:1a:1f:b5:5d:cf:68:99:ba:a0:22:9f:39:
e0:49:a6:1d:e5:a7:a7:73:1e:10:72:aa:88:2f:07:
ff:08:ea:b9:41:f6:ba:67:56:b1:e5:b9:69:05:25:
6d:06:0e:1d:98:be:42:23:fd:fe:da:d8:42:2b:0a:
e2:49:ac:a9:52:ba:29:30:b5:99:39:ed:90:bf:18:
3f:ad:e6:9c:98:47:87:cc:65:a0:93:d8:c9:16:e0:
16:c2:77:ce:1f:24:e0:a3:14:2f:f2:50:18:44:98:
b8:16:bf:8c:8a:9b:f1:c4:60:d0:d7:9b:82:94:15:
57:5d:fd:9b:9e:7e:46:5e:55:fd:b3:25:c0:40:aa:
30:06:88:54:f9:95:10:a0:4a:82:55:85:40:47:e7:
c3:b9:71:1b:29:96:30:77:6c:b7:3c:9a:26:58:39:
13:ec:e4:8a:00:e5:98:80:e6:cf:64:c4:35:32:93:
d3:14:16:c3:e5:6f:37:3b:8a:6a:f3:58:c0:ae:4a:
d4:94:d8:ad:c8:98:d0:f5:2a:17:df:f3:c6:32:46:
94:87:fa:67:3f:38:4f:1e:7c:cb:16:0d:9a:a7:28:
d6:45:dd:c2:12:c1:7e:e0:47:e1:2d:8f:31:38:67:
75:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6A:E1:F1:82:CF:39:5D:92:DF:40:E7:DE:89:EB:E3:64:3C:5F:54
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pmrh8YLPOV2S30Dn3onr42Q8X1Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
a2:7b:7c:8f:0c:9c:04:70:09:43:fe:5b:7e:5b:2f:3d:e8:2e:
77:f2:1a:46:f3:5d:d6:0c:fd:fe:1c:8c:77:40:fa:b8:9f:17:
4b:1e:8c:32:6c:7a:ed:43:f1:5e:dd:e7:a2:71:3a:8a:5e:36:
a9:11:56:44:c1:4b:ef:a8:77:3e:82:4f:b3:ba:ae:80:03:8f:
f7:06:e1:d4:1b:fb:3f:d6:51:e5:7a:9a:37:88:13:3c:ec:e1:
4b:67:05:2f:6a:12:92:21:f6:e0:33:b5:68:5d:7a:99:10:29:
55:f1:35:3a:d4:5f:da:a3:78:db:1a:ce:46:d4:eb:75:36:42:
ff:bf:3a:fb:c9:be:11:55:28:63:59:fd:1e:35:5d:ed:7e:4c:
db:e1:68:04:41:5a:62:49:47:26:72:19:0d:ae:4f:72:84:e2:
bd:ab:c6:af:c6:f2:0c:c8:15:3b:56:f4:8b:d3:c7:70:2a:64:
99:5c:8d:49:ee:f0:a0:72:33:c8:95:4e:f7:51:eb:da:8d:48:
c1:10:89:45:5c:3d:93:93:d0:a3:8a:f1:d2:60:2d:71:a3:5e:
46:a1:c8:c5:e7:80:00:d8:eb:60:3a:3a:1f:b1:01:2c:2e:e7:
cb:98:49:e5:24:1b:44:e4:e9:7a:a2:a3:af:51:4e:13:04:2b:
06:c5:60:d2
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICB5IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMDA5Mjkx
MDA2MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE2NkFFMUYxODJDRjM5
NUQ5MkRGNDBFN0RFODlFQkUzNjQzQzVGNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9UMkz4GoDOwNwSzI41PF2WhoftV3PaJm6oCKfOeBJph3lp6dz
HhByqogvB/8I6rlB9rpnVrHluWkFJW0GDh2YvkIj/f7a2EIrCuJJrKlSuikwtZk5
7ZC/GD+t5pyYR4fMZaCT2MkW4BbCd84fJOCjFC/yUBhEmLgWv4yKm/HEYNDXm4KU
FVdd/ZuefkZeVf2zJcBAqjAGiFT5lRCgSoJVhUBH58O5cRspljB3bLc8miZYORPs
5IoA5ZiA5s9kxDUyk9MUFsPlbzc7imrzWMCuStSU2K3ImND1Khff88YyRpSH+mc/
OE8efMsWDZqnKNZF3cISwX7gR+EtjzE4Z3VLAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUpmrh8YLPOV2S30Dn3onr42Q8X1QwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9wbXJoOFlMUE9WMlMzMERuM29u
cjQyUThYMVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAIl
gDANBgkqhkiG9w0BAQsFAAOCAQEAont8jwycBHAJQ/5bflsvPegud/IaRvNd1gz9
/hyMd0D6uJ8XSx6MMmx67UPxXt3nonE6il42qRFWRMFL76h3PoJPs7qugAOP9wbh
1Bv7P9ZR5XqaN4gTPOzhS2cFL2oSkiH24DO1aF16mRApVfE1OtRf2qN42xrORtTr
dTZC/786+8m+EVUoY1n9HjVd7X5M2+FoBEFaYklHJnIZDa5PcoTivavGr8byDMgV
O1b0i9PHcCpkmVyNSe7woHIzyJVO91Hr2o1IwRCJRVw9k5PQo4rx0mAtcaNeRqHI
xeeAANjrYDo6H7EBLC7ny5hJ5SQbROTpeqKjr1FOEwQrBsVg0g==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:11 2025 by rpki-client