Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-jACfkTn-Wsi9MgPlY8O8hqognQ.roa
File: -jACfkTn-Wsi9MgPlY8O8hqognQ.roa (raw, json)
Hash identifier: 6KFLoAvvoTYHJ+AS1zdPUWon3JVlrxJ8JDn+yo49ors=
Subject key identifier: FA:30:02:7E:44:E7:F9:6B:22:F4:C8:0F:95:8F:0E:F2:1A:A8:82:74
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CA8
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-jACfkTn-Wsi9MgPlY8O8hqognQ.roa
Signing time: Mon 16 Nov 2020 06:49:07 +0000
ROA not before: Mon 16 Nov 2020 06:49:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:39::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3240 (0xca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:49:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA30027E44E7F96B22F4C80F958F0EF21AA88274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f6:dc:79:f6:f1:5e:4c:a0:ed:bb:84:7c:ac:
b0:e3:b9:aa:4f:9b:d9:82:69:63:fb:9c:18:d3:a8:
a3:5f:7e:3e:4b:75:9e:66:c9:10:97:cd:54:36:8d:
cb:b6:d0:d3:82:12:4d:d5:f4:b5:d0:80:5d:d1:05:
31:20:39:2a:ef:e7:f8:1c:8c:70:02:4c:15:8f:48:
88:26:28:45:c3:6c:db:9a:d2:ad:10:7b:de:97:22:
31:b2:77:0c:8b:f9:2d:36:97:3a:5a:cc:01:19:dc:
68:ed:cb:a2:4b:48:e4:fa:66:7b:f7:95:ce:3f:25:
79:21:62:ef:25:0c:95:7f:4a:23:b3:e3:a5:14:71:
4e:3a:69:69:80:a8:e5:0c:d4:85:3e:fc:a9:ba:b9:
95:81:e4:56:12:2a:88:e8:55:e7:88:17:d5:72:70:
ee:91:64:5f:5e:28:2f:25:1c:71:21:af:64:3d:35:
51:13:83:30:37:56:f5:56:ec:30:cd:4a:70:ba:9b:
be:24:16:76:2f:33:51:c7:7e:8a:a5:f4:7f:bb:79:
43:ca:07:75:f7:81:0a:74:c2:88:e6:15:14:dc:fd:
c2:49:07:fe:f8:da:ea:bc:be:a2:14:44:1b:0e:ec:
8d:39:92:43:6b:c1:eb:12:5d:a5:69:52:d8:56:46:
97:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:30:02:7E:44:E7:F9:6B:22:F4:C8:0F:95:8F:0E:F2:1A:A8:82:74
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/-jACfkTn-Wsi9MgPlY8O8hqognQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:39::/48
Signature Algorithm: sha256WithRSAEncryption
67:0d:0f:45:b3:a2:9f:e4:33:cb:e2:cb:20:97:36:52:3e:28:
cf:d3:5d:a0:1d:45:6f:a5:b4:15:4a:cf:ae:c3:e5:72:7f:9d:
c1:02:26:a3:61:d3:5a:cf:65:f1:a0:b8:93:88:73:41:d2:4c:
bd:c4:21:b4:24:5e:a8:7e:95:d8:e3:5f:b6:2e:d6:b3:df:10:
23:6b:8a:3b:03:e5:ba:da:da:2f:02:cb:b1:24:24:90:4f:b2:
b6:03:85:88:73:bf:5c:10:e1:7d:70:49:ed:7f:a4:e1:cd:3b:
1f:a9:e2:cf:26:82:14:12:0f:1b:a4:a7:9f:b1:9e:52:6f:3b:
ff:26:62:a2:ef:fc:b6:b0:78:b8:ef:20:08:fd:56:bb:f4:9d:
5d:11:0c:13:84:1c:b5:04:a3:5a:cf:43:a0:17:e8:1d:5b:92:
be:de:aa:b4:e8:72:39:87:af:08:cc:5a:55:de:a2:74:6c:fe:
97:f9:d1:94:dd:a6:23:20:ca:11:87:9f:9b:bb:d2:3e:e1:cd:
a3:fe:3b:27:64:e3:94:18:a5:73:86:90:8f:50:8f:47:be:88:
c6:dc:fb:28:9c:3a:8f:28:49:a8:3a:8b:b0:5d:38:c3:8c:d1:
be:a9:ea:c8:7d:5c:58:ee:ed:38:a9:0a:9b:ab:09:ac:2d:3e:
d4:d2:af:30
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjQ5MDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZBMzAwMjdFNDRFN0Y5
NkIyMkY0QzgwRjk1OEYwRUYyMUFBODgyNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDp9tx59vFeTKDtu4R8rLDjuapPm9mCaWP7nBjTqKNffj5LdZ5m
yRCXzVQ2jcu20NOCEk3V9LXQgF3RBTEgOSrv5/gcjHACTBWPSIgmKEXDbNua0q0Q
e96XIjGydwyL+S02lzpazAEZ3Gjty6JLSOT6Znv3lc4/JXkhYu8lDJV/SiOz46UU
cU46aWmAqOUM1IU+/Km6uZWB5FYSKojoVeeIF9VycO6RZF9eKC8lHHEhr2Q9NVET
gzA3VvVW7DDNSnC6m74kFnYvM1HHfoql9H+7eUPKB3X3gQp0wojmFRTc/cJJB/74
2uq8vqIURBsO7I05kkNrwesSXaVpUthWRpfhAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU+jACfkTn+Wsi9MgPlY8O8hqognQwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8takFDZmtUbi1Xc2k5TWdQbFk4
TzhocW9nblEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eAA5MA0GCSqGSIb3DQEBCwUAA4IBAQBnDQ9Fs6Kf5DPL4ssglzZSPijP012gHUVv
pbQVSs+uw+Vyf53BAiajYdNaz2XxoLiTiHNB0ky9xCG0JF6ofpXY41+2Ltaz3xAj
a4o7A+W62tovAsuxJCSQT7K2A4WIc79cEOF9cEntf6ThzTsfqeLPJoIUEg8bpKef
sZ5Sbzv/JmKi7/y2sHi47yAI/Va79J1dEQwThBy1BKNaz0OgF+gdW5K+3qq06HI5
h68IzFpV3qJ0bP6X+dGU3aYjIMoRh5+bu9I+4c2j/jsnZOOUGKVzhpCPUI9HvojG
3PsonDqPKEmoOouwXTjDjNG+qerIfVxY7u04qQqbqwmsLT7U0q8w
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org