Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CJqbDnjCJAvMfkLTCl6Bp0deTp4.roa
File: CJqbDnjCJAvMfkLTCl6Bp0deTp4.roa (raw, json)
Hash identifier: aDgD/Znr0L2XHyKc9MCCfoywK4BIb2PMYnYxtjIV6Qw=
Subject key identifier: 08:9A:9B:0E:78:C2:24:0B:CC:7E:42:D3:0A:5E:81:A7:47:5E:4E:9E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D9E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CJqbDnjCJAvMfkLTCl6Bp0deTp4.roa
Signing time: Tue 19 Oct 2021 10:39:33 +0000
ROA not before: Tue 19 Oct 2021 10:39:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 2407:4d00:ff00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7582 (0x1d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Oct 19 10:39:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=089A9B0E78C2240BCC7E42D30A5E81A7475E4E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d9:4f:9e:90:34:46:6d:05:ae:a3:bd:81:e2:
8a:00:c4:5f:5b:c4:26:e5:69:0b:bb:e9:ac:ee:6d:
04:f9:ba:36:f7:63:ec:8d:3d:d2:07:11:47:81:86:
e6:62:97:9f:89:70:5b:2f:4b:2c:16:38:b9:b6:23:
98:6e:e1:8e:35:86:23:2f:c3:fc:01:84:31:e6:d6:
78:ad:3f:db:d3:18:71:63:25:e7:7f:d3:1d:a7:f3:
0f:a5:bb:1b:1e:3c:7e:a5:71:15:e5:1a:85:41:79:
9d:42:2a:8f:a6:24:bd:3d:c6:c5:b8:9e:d9:16:ab:
a8:00:9d:d1:74:88:60:75:a3:1d:6c:4e:e2:82:df:
55:09:9e:9c:4d:c0:7c:ce:96:8f:3e:e4:ea:3a:24:
57:71:ff:2f:83:4c:a8:81:32:32:7e:c9:1f:5c:48:
79:ec:03:3f:1d:72:e8:91:0a:ce:e6:67:4a:ae:a4:
12:70:dc:d8:06:90:31:26:a8:8e:de:f3:70:d1:01:
98:73:e8:00:a8:e6:60:7b:66:b1:7f:39:04:77:fe:
fa:80:ec:c7:8c:da:f0:18:7f:c7:ba:02:b4:26:c1:
e8:f4:13:35:51:98:ea:4c:83:f8:a7:d7:3c:b5:01:
9b:e4:f2:47:cb:d8:09:7f:19:ec:67:91:21:e5:68:
6c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:9A:9B:0E:78:C2:24:0B:CC:7E:42:D3:0A:5E:81:A7:47:5E:4E:9E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CJqbDnjCJAvMfkLTCl6Bp0deTp4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff00::/44
Signature Algorithm: sha256WithRSAEncryption
8e:ac:f9:41:c4:0c:95:d5:1c:cb:cc:89:93:67:78:b6:fb:4d:
51:eb:20:10:5f:2c:0e:23:3c:54:f2:22:0b:48:3d:73:16:1c:
64:59:86:27:3d:4a:a7:56:79:03:8c:c3:6d:61:04:68:6e:93:
65:e4:0b:ab:bb:b3:64:62:cf:32:13:80:20:5f:6c:00:61:04:
0e:bf:c3:67:15:a6:9e:90:21:e2:c8:96:6a:b0:7a:e7:4a:3d:
2e:03:26:dd:39:1f:37:51:cd:dd:e4:74:95:cf:98:d1:6c:ed:
b5:a4:c9:0e:7c:73:86:10:51:7b:b1:38:2f:2d:2c:57:81:98:
12:87:7a:51:6f:8a:2a:20:70:4e:4f:f1:0f:d0:78:dc:15:fc:
fc:62:51:94:09:0e:e8:dd:81:20:0c:80:b0:76:91:c1:58:96:
aa:a1:e5:3b:ca:7f:a3:be:f3:0b:4c:35:ae:8c:15:2f:28:a0:
9e:c6:a2:9e:f5:a9:31:e9:6c:64:6d:88:b4:6a:4f:66:7b:61:
59:d3:08:9e:3e:d9:48:60:f5:49:d9:43:96:c4:d2:6c:a0:7b:
b4:58:02:d6:c4:2c:05:6f:2a:20:2a:a2:10:af:bb:e7:ce:72:
5e:f9:22:7a:60:76:46:b6:9c:4e:ab:5f:dd:67:9a:d0:62:fc:
84:6c:96:da
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICHZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTEwMTkx
MDM5MzNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDA4OUE5QjBFNzhDMjI0
MEJDQzdFNDJEMzBBNUU4MUE3NDc1RTRFOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC92U+ekDRGbQWuo72B4ooAxF9bxCblaQu76azubQT5ujb3Y+yN
PdIHEUeBhuZil5+JcFsvSywWOLm2I5hu4Y41hiMvw/wBhDHm1nitP9vTGHFjJed/
0x2n8w+luxsePH6lcRXlGoVBeZ1CKo+mJL09xsW4ntkWq6gAndF0iGB1ox1sTuKC
31UJnpxNwHzOlo8+5Oo6JFdx/y+DTKiBMjJ+yR9cSHnsAz8dcuiRCs7mZ0qupBJw
3NgGkDEmqI7e83DRAZhz6ACo5mB7ZrF/OQR3/vqA7MeM2vAYf8e6ArQmwej0EzVR
mOpMg/in1zy1AZvk8kfL2Al/GexnkSHlaGzHAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUCJqbDnjCJAvMfkLTCl6Bp0deTp4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NKcWJEbmpDSkF2TWZrTFRD
bDZCcDBkZVRwNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk
B00A/wAwDQYJKoZIhvcNAQELBQADggEBAI6s+UHEDJXVHMvMiZNneLb7TVHrIBBf
LA4jPFTyIgtIPXMWHGRZhic9SqdWeQOMw21hBGhuk2XkC6u7s2RizzITgCBfbABh
BA6/w2cVpp6QIeLIlmqweudKPS4DJt05HzdRzd3kdJXPmNFs7bWkyQ58c4YQUXux
OC8tLFeBmBKHelFviiogcE5P8Q/QeNwV/PxiUZQJDujdgSAMgLB2kcFYlqqh5TvK
f6O+8wtMNa6MFS8ooJ7Gop71qTHpbGRtiLRqT2Z7YVnTCJ4+2Uhg9UnZQ5bE0myg
e7RYAtbELAVvKiAqohCvu+fOcl75Inpgdka2nE6rX91nmtBi/IRslto=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org