Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/CMyhH4hVJb1ZzbF0jME-YE2LUSI.roa
File: CMyhH4hVJb1ZzbF0jME-YE2LUSI.roa (raw, json)
Hash identifier: Nuhc0N5lWDe7KBBUtXr+vZ+nu4dfgb2+XclhdTuEI3s=
Subject key identifier: 08:CC:A1:1F:88:55:25:BD:59:CD:B1:74:8C:C1:3E:60:4D:8B:51:22
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 0808
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/CMyhH4hVJb1ZzbF0jME-YE2LUSI.roa
Signing time: Wed 09 Nov 2022 23:48:48 +0000
ROA not before: Wed 09 Nov 2022 23:48:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 141173
IP address blocks: 2405:a640:1173::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2056 (0x808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Nov 9 23:48:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=08CCA11F885525BD59CDB1748CC13E604D8B5122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4a:13:16:b5:ff:7e:af:38:dc:33:47:62:86:
35:ad:d2:da:3f:b9:f6:1a:d3:b7:0e:f8:db:90:da:
b4:a3:47:84:dd:09:15:dc:3b:71:07:20:70:27:c2:
34:8b:c9:13:44:e7:00:2e:e8:7f:58:0e:10:b8:57:
4f:14:86:89:00:7c:86:88:37:5d:48:5d:80:3e:7d:
32:66:05:a1:e8:1c:6f:d8:27:91:af:ac:c7:6a:16:
fc:40:01:57:c5:ec:b3:45:56:67:99:bc:97:e1:6e:
21:05:17:d8:49:ce:80:e4:08:97:44:4e:fe:93:1c:
2f:81:98:e8:e0:06:35:a3:ec:f0:a4:b7:a0:a6:13:
ff:0d:24:16:0d:43:46:81:ca:30:67:a7:67:b4:2d:
63:f3:7f:97:46:4f:cc:ae:46:5b:e7:25:b0:c2:56:
c1:35:36:d4:eb:32:55:77:91:4b:0a:5d:2a:f8:1a:
89:1e:bd:8f:64:ac:3e:ad:07:f2:ae:3e:0c:34:9c:
42:a2:f7:37:33:97:c7:3e:e3:64:61:fc:ee:bb:e2:
62:40:a3:da:2b:ef:f5:5d:e4:8d:55:f7:37:74:3f:
7e:20:9d:62:16:a1:9f:c1:be:50:22:d0:8f:92:75:
44:24:e8:25:00:ee:b4:15:03:e4:d0:aa:ab:fb:93:
c6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CC:A1:1F:88:55:25:BD:59:CD:B1:74:8C:C1:3E:60:4D:8B:51:22
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/CMyhH4hVJb1ZzbF0jME-YE2LUSI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:a640:1173::/48
Signature Algorithm: sha256WithRSAEncryption
7d:93:7c:9f:cf:7a:f4:83:92:45:59:13:7c:75:4d:49:93:85:
bf:96:f8:3b:54:3d:73:d8:ea:db:d8:14:a3:cd:4e:99:a3:bc:
cc:de:6b:6c:34:95:1c:0b:40:85:06:8a:49:57:63:19:19:78:
26:e1:c1:f6:3c:be:25:e1:0e:08:52:9e:b9:0d:b3:e2:21:eb:
70:af:06:40:35:f8:5b:a4:fe:a4:b3:7c:21:e7:49:6a:83:80:
1d:32:ac:df:32:da:c0:df:e5:4e:ff:7c:74:fb:51:93:89:20:
ba:c5:02:e9:aa:10:db:6a:91:88:4c:eb:5d:0d:bd:50:cb:fe:
6e:16:6b:9b:d7:b1:ea:19:bf:f1:3c:65:2e:eb:9c:c6:22:81:
08:a9:cb:26:5a:73:82:29:ea:ac:27:f4:f6:f5:65:8f:90:1d:
eb:e8:ba:b6:18:39:e6:7e:6f:17:e1:97:98:5d:7d:e4:c0:1a:
f0:09:da:2f:4e:7d:17:09:2c:f8:7c:d2:e2:8f:b0:f8:a1:71:
22:83:07:08:5e:36:24:b1:79:8c:1f:0f:33:b5:6c:f8:0f:b5:
56:c0:98:e6:0c:23:f1:7e:7f:b5:1d:ba:c1:4b:bc:5d:79:c2:
bc:74:73:3c:d6:4d:fd:58:7e:95:f8:42:fd:17:18:eb:cd:ae:
c8:f9:2e:50
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx
QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yMjExMDky
MzQ4NDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDA4Q0NBMTFGODg1NTI1
QkQ1OUNEQjE3NDhDQzEzRTYwNEQ4QjUxMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7ShMWtf9+rzjcM0dihjWt0to/ufYa07cO+NuQ2rSjR4TdCRXc
O3EHIHAnwjSLyRNE5wAu6H9YDhC4V08UhokAfIaIN11IXYA+fTJmBaHoHG/YJ5Gv
rMdqFvxAAVfF7LNFVmeZvJfhbiEFF9hJzoDkCJdETv6THC+BmOjgBjWj7PCkt6Cm
E/8NJBYNQ0aByjBnp2e0LWPzf5dGT8yuRlvnJbDCVsE1NtTrMlV3kUsKXSr4Goke
vY9krD6tB/KuPgw0nEKi9zczl8c+42Rh/O674mJAo9or7/Vd5I1V9zd0P34gnWIW
oZ/BvlAi0I+SdUQk6CUA7rQVA+TQqqv7k8YRAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUCMyhH4hVJb1ZzbF0jME+YE2LUSIwHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm
a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L
UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvQ015aEg0aFZKYjFaemJGMGpNRS1Z
RTJMVVNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR
czANBgkqhkiG9w0BAQsFAAOCAQEAfZN8n8969IOSRVkTfHVNSZOFv5b4O1Q9c9jq
29gUo81OmaO8zN5rbDSVHAtAhQaKSVdjGRl4JuHB9jy+JeEOCFKeuQ2z4iHrcK8G
QDX4W6T+pLN8IedJaoOAHTKs3zLawN/lTv98dPtRk4kgusUC6aoQ22qRiEzrXQ29
UMv+bhZrm9ex6hm/8TxlLuucxiKBCKnLJlpzginqrCf09vVlj5Ad6+i6thg55n5v
F+GXmF195MAa8AnaL059Fwks+HzS4o+w+KFxIoMHCF42JLF5jB8PM7Vs+A+1VsCY
5gwj8X5/tR26wUu8XXnCvHRzPNZN/Vh+lfhC/RcY682uyPkuUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org