Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/1ObG8-hCC8NTwQYKKIKX466pd8Q.roa
File: 1ObG8-hCC8NTwQYKKIKX466pd8Q.roa (raw, json)
Hash identifier: EnVR+sf98JDsx/gLyRbTjxn9LYp+m/dVXQ30pdthUnc=
Subject key identifier: D4:E6:C6:F3:E8:42:0B:C3:53:C1:06:0A:28:82:97:E3:AE:A9:77:C4
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0A18
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/1ObG8-hCC8NTwQYKKIKX466pd8Q.roa
Signing time: Thu 15 Sep 2022 02:38:30 +0000
ROA not before: Thu 15 Sep 2022 02:38:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 2001:f18::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2584 (0xa18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Sep 15 02:38:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D4E6C6F3E8420BC353C1060A288297E3AEA977C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5c:61:fe:b8:ff:03:87:d2:1c:00:85:4e:2a:
d2:1c:73:a1:04:53:70:d1:62:e3:90:76:91:03:60:
b4:9d:b6:52:06:70:dc:cb:85:32:2a:e8:79:9d:50:
f2:4c:aa:ed:57:7a:0e:aa:38:57:58:cc:ae:d7:72:
35:0b:59:a3:ec:98:db:0e:8a:1e:2e:84:0e:da:8e:
4a:24:8a:ab:63:ed:f8:15:f7:38:87:76:39:48:f0:
17:40:8c:a6:77:60:96:89:f6:c9:68:c3:a0:d3:3e:
56:ae:80:c3:13:e6:90:31:b1:5d:36:92:33:9c:ac:
bc:db:e9:79:45:66:1f:ab:57:9e:34:66:b7:37:1a:
9e:0b:4f:2b:19:bf:4f:68:19:6a:05:f7:66:d4:ec:
ec:65:18:d4:06:8f:6f:19:25:79:a8:00:3e:62:05:
00:37:bc:0c:16:0b:2a:f1:7a:1d:d2:a0:f1:3e:9e:
f4:4a:0a:80:ef:40:ea:93:df:ec:2e:ba:e9:04:71:
a1:2f:fa:c5:fc:49:1a:db:a1:d0:fd:0a:71:b9:9b:
02:0e:a6:09:5a:25:eb:0f:74:b2:2a:eb:cc:39:17:
ba:64:32:c1:15:76:2d:97:e5:e7:02:a6:1d:72:e5:
0e:84:09:2e:ac:33:05:9d:1f:6d:59:49:1c:2c:e1:
fe:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E6:C6:F3:E8:42:0B:C3:53:C1:06:0A:28:82:97:E3:AE:A9:77:C4
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/1ObG8-hCC8NTwQYKKIKX466pd8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f18::/32
Signature Algorithm: sha256WithRSAEncryption
58:64:2c:80:31:9e:c1:aa:c1:58:ab:50:ee:cc:b9:74:bf:fb:
ba:7c:c7:c7:69:c1:8e:97:20:04:81:7c:b0:60:ef:83:55:7e:
8f:c7:5e:b1:d9:35:14:27:86:df:28:a1:26:94:b6:7c:e8:72:
71:0b:65:88:39:f3:cf:81:e8:89:c8:9c:ac:90:7b:08:23:ff:
a6:a1:a9:33:b3:14:3f:82:9c:67:99:37:0b:6e:20:9a:0c:21:
ec:0d:5f:d0:be:67:2a:8d:a4:07:25:9b:65:7f:f2:3c:cc:e7:
95:b7:4b:9a:7c:0f:7b:a9:de:ff:3e:63:33:92:a7:06:6e:1d:
0d:f0:fc:69:22:ca:38:6d:9d:8c:52:43:8f:a3:a9:da:56:02:
64:be:58:f6:ed:70:90:89:44:24:3a:ac:23:55:d8:b8:bf:da:
d1:d6:db:6f:3b:df:ce:b4:70:60:d5:a8:98:d5:f7:f3:d6:f0:
35:57:fc:e5:82:4f:76:42:3b:cc:21:b6:cc:56:7b:e9:fb:f3:
aa:0f:88:ec:d4:ae:29:1b:0c:25:a6:70:12:5d:b3:8c:61:10:
15:ed:9c:ac:83:a6:6f:56:28:3f:49:1c:59:c4:1f:d4:1f:c1:
e6:b6:cf:de:49:4d:01:92:d8:fa:cc:18:44:a7:41:cf:91:3a:
32:db:a6:d8
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICChgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ5
MkJFMEFDRjk4ODdCMUE4MTkyODc1Q0ZFNzMyMjM4REUzMjJBOTAeFw0yMjA5MTUw
MjM4MzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ0RTZDNkYzRTg0MjBC
QzM1M0MxMDYwQTI4ODI5N0UzQUVBOTc3QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCfXGH+uP8Dh9IcAIVOKtIcc6EEU3DRYuOQdpEDYLSdtlIGcNzL
hTIq6HmdUPJMqu1Xeg6qOFdYzK7XcjULWaPsmNsOih4uhA7ajkokiqtj7fgV9ziH
djlI8BdAjKZ3YJaJ9slow6DTPlaugMMT5pAxsV02kjOcrLzb6XlFZh+rV540Zrc3
Gp4LTysZv09oGWoF92bU7OxlGNQGj28ZJXmoAD5iBQA3vAwWCyrxeh3SoPE+nvRK
CoDvQOqT3+wuuukEcaEv+sX8SRrbodD9CnG5mwIOpglaJesPdLIq68w5F7pkMsEV
di2X5ecCph1y5Q6ECS6sMwWdH21ZSRws4f5LAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU1ObG8+hCC8NTwQYKKIKX466pd8QwHwYDVR0jBBgwFoAUHZK+Cs+Yh7GoGSh1
z+cyI43jIqkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RV
L0haSy1Dcy1ZaDdHb0dTaDF6LWN5STQzaklxay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSFpLLUNzLVloN0dvR1NoMXotY3lJNDNqSXFrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RVLzFPYkc4LWhDQzhOVHdRWUtL
SUtYNDY2cGQ4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAg
AQ8YMA0GCSqGSIb3DQEBCwUAA4IBAQBYZCyAMZ7BqsFYq1DuzLl0v/u6fMfHacGO
lyAEgXywYO+DVX6Px16x2TUUJ4bfKKEmlLZ86HJxC2WIOfPPgeiJyJyskHsII/+m
oakzsxQ/gpxnmTcLbiCaDCHsDV/QvmcqjaQHJZtlf/I8zOeVt0uafA97qd7/PmMz
kqcGbh0N8PxpIso4bZ2MUkOPo6naVgJkvlj27XCQiUQkOqwjVdi4v9rR1ttvO9/O
tHBg1aiY1ffz1vA1V/zlgk92QjvMIbbMVnvp+/OqD4js1K4pGwwlpnASXbOMYRAV
7Zysg6ZvVig/SRxZxB/UH8Hmts/eSU0Bktj6zBhEp0HPkToy26bY
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org