Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-YDuSXOzkJKfzfq6d5D6Q8CNxIk.roa
File: -YDuSXOzkJKfzfq6d5D6Q8CNxIk.roa (raw, json)
Hash identifier: Q9sfxqJ3WoOEUYtt187vCd5wtv23td9+8x2TWJxlatQ=
Subject key identifier: F9:80:EE:49:73:B3:90:92:9F:CD:FA:BA:77:90:FA:43:C0:8D:C4:89
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CC6
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-YDuSXOzkJKfzfq6d5D6Q8CNxIk.roa
Signing time: Mon 16 Nov 2020 06:51:48 +0000
ROA not before: Mon 16 Nov 2020 06:51:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:54::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3270 (0xcc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:51:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F980EE4973B390929FCDFABA7790FA43C08DC489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:98:bc:af:d7:a4:0f:f9:e3:f4:e6:5f:8b:3d:
ea:1b:6e:00:a9:24:ab:7a:c8:7e:fd:19:42:9f:8b:
e0:e9:18:d6:35:c2:f8:99:a1:5b:40:f8:e0:cf:62:
3a:e3:8e:cf:a4:ed:2a:09:04:99:81:21:f4:94:6c:
44:b6:8a:4b:30:75:2e:84:e1:af:25:e8:c8:98:75:
ce:e2:9a:03:e0:dd:78:f9:24:79:3c:9d:de:2c:61:
cc:e2:7f:d5:82:21:e1:20:89:d3:fb:0e:13:19:c4:
e7:67:aa:ba:94:73:45:6c:d1:e3:fe:78:9b:f9:81:
ac:12:6c:2d:18:eb:7f:6a:c0:82:7b:4a:f1:7a:85:
ff:85:8a:c8:4e:b4:37:02:17:1e:42:fd:67:b2:1a:
aa:a1:f7:c2:a7:77:63:7a:56:cc:3b:9b:49:6b:0b:
25:3b:74:2b:67:07:00:16:cd:41:44:b2:13:1e:a1:
cf:49:f1:e6:25:13:ae:08:db:dd:32:f5:ad:20:97:
48:ec:05:e7:ae:01:3f:58:f5:1b:6c:81:35:92:d2:
d2:2a:c3:1f:fb:a5:0b:c1:07:87:8f:06:53:df:5d:
e7:60:69:39:62:c8:0e:0f:aa:f9:d6:b9:05:54:7f:
e0:43:4c:3d:b9:5b:50:eb:6e:f2:e1:66:d5:d4:f3:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:80:EE:49:73:B3:90:92:9F:CD:FA:BA:77:90:FA:43:C0:8D:C4:89
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-YDuSXOzkJKfzfq6d5D6Q8CNxIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:54::/48
Signature Algorithm: sha256WithRSAEncryption
47:7c:92:51:b1:25:f4:bb:98:b6:df:54:8b:e3:95:d7:0b:de:
37:16:e4:0e:23:04:0a:59:21:f5:b8:a3:72:0d:70:84:25:95:
b3:05:c6:bc:6b:06:9b:6a:9e:fe:3c:83:c4:1c:e5:c3:0e:5a:
ba:88:bc:32:d5:12:9d:1b:fa:b3:8e:06:bf:9b:87:19:a9:09:
30:95:95:e3:41:33:0a:e3:61:ac:0d:47:f3:35:9b:b5:9c:c0:
d1:14:ba:94:71:0c:c2:af:fd:eb:5b:54:28:90:38:86:ee:b4:
08:c4:1f:7a:e7:5f:48:6d:e4:2f:c9:5d:4f:ae:3f:bb:a9:b3:
0d:31:3c:3a:96:f3:ad:ce:f6:62:f2:cc:20:3f:6d:3f:a5:ae:
91:8b:e4:e1:8e:62:c3:e2:a9:16:e7:e3:5a:c2:81:e0:c1:13:
31:2d:fd:59:6a:07:71:bc:c6:a9:04:b6:cf:2c:d1:8a:c1:a5:
e0:76:29:4f:57:f0:7c:b0:32:54:f0:e2:eb:fc:5e:34:35:c9:
b8:5e:72:ed:24:39:02:c4:68:9d:36:10:71:34:33:cf:ab:2b:
40:5c:d7:d7:f1:1a:e3:4d:20:a6:94:09:bf:55:6d:de:7e:6e:
42:f4:f5:46:29:fb:80:73:2e:75:e9:70:28:79:d3:c0:9f:08:
9f:b6:60:15
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjUxNDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY5ODBFRTQ5NzNCMzkw
OTI5RkNERkFCQTc3OTBGQTQzQzA4REM0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9mLyv16QP+eP05l+LPeobbgCpJKt6yH79GUKfi+DpGNY1wviZ
oVtA+ODPYjrjjs+k7SoJBJmBIfSUbES2ikswdS6E4a8l6MiYdc7imgPg3Xj5JHk8
nd4sYczif9WCIeEgidP7DhMZxOdnqrqUc0Vs0eP+eJv5gawSbC0Y639qwIJ7SvF6
hf+FishOtDcCFx5C/WeyGqqh98Knd2N6Vsw7m0lrCyU7dCtnBwAWzUFEshMeoc9J
8eYlE64I290y9a0gl0jsBeeuAT9Y9RtsgTWS0tIqwx/7pQvBB4ePBlPfXedgaTli
yA4PqvnWuQVUf+BDTD25W1DrbvLhZtXU8+xXAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU+YDuSXOzkJKfzfq6d5D6Q8CNxIkwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8tWUR1U1hPemtKS2Z6ZnE2ZDVE
NlE4Q054SWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eABUMA0GCSqGSIb3DQEBCwUAA4IBAQBHfJJRsSX0u5i231SL45XXC943FuQOIwQK
WSH1uKNyDXCEJZWzBca8awabap7+PIPEHOXDDlq6iLwy1RKdG/qzjga/m4cZqQkw
lZXjQTMK42GsDUfzNZu1nMDRFLqUcQzCr/3rW1QokDiG7rQIxB96519IbeQvyV1P
rj+7qbMNMTw6lvOtzvZi8swgP20/pa6Ri+ThjmLD4qkW5+NawoHgwRMxLf1Zagdx
vMapBLbPLNGKwaXgdilPV/B8sDJU8OLr/F40Ncm4XnLtJDkCxGidNhBxNDPPqytA
XNfX8RrjTSCmlAm/VW3efm5C9PVGKfuAcy516XAoedPAnwiftmAV
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org