Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/cBXOtmghQCCvnMOojp_acYy9PfM.roa
File: cBXOtmghQCCvnMOojp_acYy9PfM.roa (raw, json)
Hash identifier: aJlA2OxoRoa1MrCXifXuG3Q/EAXalqRLx5T8PHlq/sE=
Subject key identifier: 70:15:CE:B6:68:21:40:20:AF:9C:C3:A8:8E:9F:DA:71:8C:BD:3D:F3
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 096A
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/cBXOtmghQCCvnMOojp_acYy9PfM.roa
Signing time: Wed 29 Sep 2021 02:53:12 +0000
ROA not before: Wed 29 Sep 2021 02:53:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 2403:7f40:ff00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2410 (0x96a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Sep 29 02:53:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7015CEB668214020AF9CC3A88E9FDA718CBD3DF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a1:31:ec:3c:20:ba:3d:d4:38:06:cf:27:9d:
f3:64:dc:e4:63:96:4b:21:ed:3b:2e:5a:98:68:20:
6a:94:26:87:ad:2d:6e:08:42:1e:33:4b:6d:4a:46:
4f:72:ce:1b:2d:ba:86:55:2d:db:8c:d6:d0:82:20:
7c:24:1f:ee:82:19:c4:fb:76:aa:a3:bb:6f:8b:90:
29:d2:99:08:45:24:66:83:5b:86:da:a1:49:c9:32:
c5:ed:12:c8:07:5f:01:ad:f0:6c:be:a6:64:a3:65:
ea:1f:61:62:d3:cb:cd:e0:f9:c2:11:fa:31:48:d7:
d9:a0:6f:da:7a:ef:4e:05:d2:05:02:1c:31:b6:e8:
41:89:bb:fe:bb:d0:35:cf:23:51:79:97:30:03:34:
02:c1:d7:0c:69:ba:06:9d:2a:ad:a9:7e:af:4b:84:
c2:76:f6:7b:c8:7e:90:7f:fc:0d:d4:98:0f:77:35:
84:11:7b:45:ab:b1:da:14:0f:7f:aa:0e:59:77:e5:
f0:76:23:e6:df:41:79:a8:6e:30:8f:4e:2a:bb:de:
ee:f1:13:c1:5e:a4:cf:fa:59:08:95:45:cd:45:b3:
9a:79:ac:36:1b:91:9f:6b:76:19:99:34:7d:0a:e2:
df:98:e6:b7:ea:72:93:e9:de:d4:ce:e7:84:2a:3e:
db:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:15:CE:B6:68:21:40:20:AF:9C:C3:A8:8E:9F:DA:71:8C:BD:3D:F3
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/cBXOtmghQCCvnMOojp_acYy9PfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:7f40:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
10:28:7a:17:1c:43:70:52:cf:41:47:ce:65:5d:29:b3:8e:25:
2d:a9:4d:39:97:7f:e4:2a:ca:d4:b9:58:87:af:18:98:ed:85:
09:b2:c2:c5:8f:c8:43:2e:94:e2:c5:6c:92:37:93:c0:c6:f1:
eb:01:d0:29:93:a9:86:f4:31:3f:36:d0:92:29:88:52:f7:66:
b4:ee:7b:ef:c2:fc:db:29:c4:ac:c0:f3:3e:9f:1f:c1:25:35:
0d:02:c8:8a:54:80:b9:35:f8:61:c6:a9:14:e8:53:59:0d:e2:
9b:b5:fe:90:53:af:94:ce:6e:bf:ac:0d:72:73:ef:1e:48:70:
bf:01:cf:c5:7c:49:05:ad:8b:48:f7:d8:f5:f4:cd:66:cb:64:
7b:db:9e:76:ae:af:2e:71:53:5f:33:01:29:d7:91:73:24:e6:
6c:08:e0:8a:9f:14:0f:db:c2:c2:2e:23:39:f6:79:d3:a6:24:
47:76:74:31:68:e6:73:a2:81:41:d0:c0:a6:83:ab:2e:dc:f6:
e8:fa:27:33:c5:2b:b0:46:56:63:f9:4b:54:aa:b3:01:66:f3:
0a:60:8b:6d:74:5a:c3:4e:79:cc:2e:f8:77:8e:ba:4a:86:e2:
b7:5e:c3:ad:1a:07:78:25:0b:cc:67:30:b9:a3:57:b9:f2:48:
06:6c:7e:7c
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCWowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3
MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yMTA5Mjkw
MjUzMTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcwMTVDRUI2NjgyMTQw
MjBBRjlDQzNBODhFOUZEQTcxOENCRDNERjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/oTHsPCC6PdQ4Bs8nnfNk3ORjlksh7TsuWphoIGqUJoetLW4I
Qh4zS21KRk9yzhstuoZVLduM1tCCIHwkH+6CGcT7dqqju2+LkCnSmQhFJGaDW4ba
oUnJMsXtEsgHXwGt8Gy+pmSjZeofYWLTy83g+cIR+jFI19mgb9p6704F0gUCHDG2
6EGJu/670DXPI1F5lzADNALB1wxpugadKq2pfq9LhMJ29nvIfpB//A3UmA93NYQR
e0WrsdoUD3+qDll35fB2I+bfQXmobjCPTiq73u7xE8FepM/6WQiVRc1Fs5p5rDYb
kZ9rdhmZNH0K4t+Y5rfqcpPp3tTO54QqPtvnAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUcBXOtmghQCCvnMOojp/acYy9PfMwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa
JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY
SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL2NCWE90bWdoUUNDdm5NT29qcF9hY1l5
OVBmTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA39A/wAw
DQYJKoZIhvcNAQELBQADggEBABAoehccQ3BSz0FHzmVdKbOOJS2pTTmXf+QqytS5
WIevGJjthQmywsWPyEMulOLFbJI3k8DG8esB0CmTqYb0MT820JIpiFL3ZrTue+/C
/NspxKzA8z6fH8ElNQ0CyIpUgLk1+GHGqRToU1kN4pu1/pBTr5TObr+sDXJz7x5I
cL8Bz8V8SQWti0j32PX0zWbLZHvbnnaury5xU18zASnXkXMk5mwI4IqfFA/bwsIu
Izn2edOmJEd2dDFo5nOigUHQwKaDqy7c9uj6JzPFK7BGVmP5S1SqswFm8wpgi210
WsNOecwu+HeOukqG4rdew60aB3glC8xnMLmjV7nySAZsfnw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org