Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/SfcCQNXsZY7zAH8sKWvI0KIUuJw.roa
File: SfcCQNXsZY7zAH8sKWvI0KIUuJw.roa (raw, json)
Hash identifier: t9GaocrDdyaHzh1+PR1lsei44KAlD4TznxCymomij7w=
Subject key identifier: 49:F7:02:40:D5:EC:65:8E:F3:00:7F:2C:29:6B:C8:D0:A2:14:B8:9C
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0980
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/SfcCQNXsZY7zAH8sKWvI0KIUuJw.roa
Signing time: Wed 29 Sep 2021 02:36:39 +0000
ROA not before: Wed 29 Sep 2021 02:36:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4783
IP address blocks: 2405:a00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2432 (0x980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 29 02:36:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=49F70240D5EC658EF3007F2C296BC8D0A214B89C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:eb:bc:8b:db:df:7e:d3:80:f3:35:af:5a:
75:ab:97:e5:7e:9f:9b:29:99:59:30:2c:b5:11:af:
1a:a1:34:09:25:85:57:f2:6a:8f:77:3c:63:95:fd:
ee:a8:e0:98:64:9f:ec:70:23:c4:7a:bd:00:24:09:
2d:68:33:8d:dc:c4:ee:48:0a:bf:37:2d:37:94:52:
20:4e:7a:73:7e:58:0a:26:b6:06:7b:d2:bf:dd:f6:
a3:dd:72:61:58:77:a4:dc:1c:17:b0:5a:aa:87:bd:
28:35:2b:43:5d:5b:e9:33:54:7a:2b:6e:16:3b:44:
ac:0a:16:e9:3e:03:e6:8e:42:9b:e9:34:84:e3:d4:
1f:93:05:3d:5d:4d:3e:05:b0:93:29:e9:e4:03:94:
5b:e2:e4:32:d9:71:c3:76:ca:63:6a:88:70:ee:53:
b8:ef:fc:58:dc:c6:99:fb:43:a0:9b:f1:17:00:b5:
4d:73:af:f2:c7:ab:f2:52:fa:7d:1a:a8:9a:80:0d:
48:95:57:8a:a3:d2:11:54:05:52:66:4a:fb:96:a1:
c0:b1:d2:95:7e:ef:e5:cd:7b:27:7e:8a:8d:73:e7:
63:f8:48:96:27:8e:0c:3c:bc:ab:b2:dc:06:76:e7:
5d:99:4e:6a:be:8f:b1:09:45:8d:5b:86:bb:cd:b2:
3e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F7:02:40:D5:EC:65:8E:F3:00:7F:2C:29:6B:C8:D0:A2:14:B8:9C
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/SfcCQNXsZY7zAH8sKWvI0KIUuJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a00::/32
Signature Algorithm: sha256WithRSAEncryption
4d:0d:97:f7:68:b5:39:39:d0:f1:e4:e7:6b:cf:62:64:29:ab:
14:d9:d9:07:1c:73:58:77:6e:a6:60:26:cf:55:18:9e:5f:48:
35:f4:74:9e:86:1f:3f:bb:34:fe:15:4a:b3:35:bf:ee:a3:34:
a4:3e:ff:c8:aa:cd:5e:cf:e6:27:46:e9:35:87:36:b8:2f:10:
99:42:fe:ab:2f:f5:fe:fc:7d:39:2d:c8:e6:19:a3:c6:09:57:
8d:5d:72:8e:22:60:2e:c3:28:ff:78:c0:4c:45:f5:fe:fa:25:
7d:45:bb:cd:c4:52:0b:0f:ad:f3:af:54:e3:2e:cc:7e:38:50:
1f:a0:89:a6:ac:e6:d2:09:40:0d:d9:bb:86:36:ba:60:5c:6f:
d2:4c:6a:6d:ce:f7:f0:a6:75:f8:f7:1d:2d:01:dc:ab:a4:55:
b1:fc:ef:40:5a:0e:c1:4a:61:f0:15:d4:6f:c9:c8:4e:82:4c:
76:b5:8f:c0:73:ee:ec:c6:6f:2e:7e:59:ba:3c:81:db:01:c2:
c0:4f:77:e9:d0:37:90:81:66:4f:ef:38:fd:9d:5c:8c:97:e1:
d4:10:16:ca:40:8d:23:89:f9:f9:e8:d4:0d:c4:b1:0f:fb:57:
b9:f5:1a:97:8e:5b:69:82:b1:87:91:7d:98:47:69:0e:ae:e4:
f7:0b:3e:e0
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC
Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yMTA5Mjkw
MjM2MzlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQ5RjcwMjQwRDVFQzY1
OEVGMzAwN0YyQzI5NkJDOEQwQTIxNEI4OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw2Ou8i9vfftOA8zWvWnWrl+V+n5spmVkwLLURrxqhNAklhVfy
ao93PGOV/e6o4Jhkn+xwI8R6vQAkCS1oM43cxO5ICr83LTeUUiBOenN+WAomtgZ7
0r/d9qPdcmFYd6TcHBewWqqHvSg1K0NdW+kzVHorbhY7RKwKFuk+A+aOQpvpNITj
1B+TBT1dTT4FsJMp6eQDlFvi5DLZccN2ymNqiHDuU7jv/Fjcxpn7Q6Cb8RcAtU1z
r/LHq/JS+n0aqJqADUiVV4qj0hFUBVJmSvuWocCx0pV+7+XNeyd+io1z52P4SJYn
jgw8vKuy3AZ2512ZTmq+j7EJRY1bhrvNsj5JAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUSfcCQNXsZY7zAH8sKWvI0KIUuJwwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9
nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU
L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL1NmY0NRTlhzWlk3ekFIOHNL
V3ZJMEtJVXVKdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
BQoAMA0GCSqGSIb3DQEBCwUAA4IBAQBNDZf3aLU5OdDx5Odrz2JkKasU2dkHHHNY
d26mYCbPVRieX0g19HSehh8/uzT+FUqzNb/uozSkPv/Iqs1ez+YnRuk1hza4LxCZ
Qv6rL/X+/H05LcjmGaPGCVeNXXKOImAuwyj/eMBMRfX++iV9RbvNxFILD63zr1Tj
Lsx+OFAfoImmrObSCUAN2buGNrpgXG/STGptzvfwpnX49x0tAdyrpFWx/O9AWg7B
SmHwFdRvychOgkx2tY/Ac+7sxm8uflm6PIHbAcLAT3fp0DeQgWZP7zj9nVyMl+HU
EBbKQI0jifn56NQNxLEP+1e59RqXjltpgrGHkX2YR2kOruT3Cz7g
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org