Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HujMIwWAEsbkBsX67kwRfNxHgAA.roa
File: HujMIwWAEsbkBsX67kwRfNxHgAA.roa (raw, json)
Hash identifier: Tp4MXvGS0WRxh8WVR1YPmtT8SsbEXnzrL2HWrk8qDOs=
Subject key identifier: 1E:E8:CC:23:05:80:12:C6:E4:06:C5:FA:EE:4C:11:7C:DC:47:80:00
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CB0
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HujMIwWAEsbkBsX67kwRfNxHgAA.roa
Signing time: Mon 16 Nov 2020 06:49:49 +0000
ROA not before: Mon 16 Nov 2020 06:49:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:43::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3248 (0xcb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:49:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1EE8CC23058012C6E406C5FAEE4C117CDC478000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:80:cb:22:7c:66:db:56:bf:2b:d9:61:48:
a6:ea:b3:18:f1:a9:24:a5:de:62:6e:4b:66:5f:77:
2d:89:ea:51:db:1c:7f:10:f5:24:d8:d2:9e:dd:ee:
3d:da:5e:a7:68:e0:ad:68:28:31:cc:f0:86:13:0c:
c4:31:7d:c1:50:37:ff:a6:b1:5b:9f:13:10:88:97:
28:0a:a0:a7:06:28:31:4a:99:60:52:fd:62:90:58:
bf:29:ca:53:bf:fb:13:ea:13:5f:a4:f8:17:59:cb:
28:e2:74:e4:0e:92:44:8f:23:f9:3e:37:ef:36:4f:
7d:bb:ba:90:aa:57:96:ad:f1:7f:52:3e:df:6a:bb:
29:62:c5:ec:91:0b:0b:b4:de:01:d5:eb:a5:27:93:
f6:0a:40:7f:f2:e8:81:4a:61:73:35:fc:29:2d:12:
50:94:58:0e:ba:14:dd:71:24:6f:6a:fa:8a:2f:06:
b3:24:7c:d4:c9:87:86:47:f1:3a:4d:75:36:34:c5:
d5:ea:4d:9d:32:76:6e:86:e1:d0:8d:35:ff:d0:63:
23:46:8a:65:ce:1b:d8:4b:0c:b0:53:06:f1:c6:b1:
66:d9:ca:12:a4:06:21:dd:3b:04:f2:ae:83:9c:b7:
46:b6:b2:21:1b:5d:52:ea:6a:44:65:7c:46:46:8e:
c3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:CC:23:05:80:12:C6:E4:06:C5:FA:EE:4C:11:7C:DC:47:80:00
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/HujMIwWAEsbkBsX67kwRfNxHgAA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:43::/48
Signature Algorithm: sha256WithRSAEncryption
b6:c9:28:a4:7f:a3:14:aa:9a:69:c4:eb:d3:b9:78:dc:79:30:
6a:32:1c:f3:15:ec:52:f1:92:30:fa:17:07:05:62:55:40:d7:
4e:84:5e:f1:ec:a0:b2:c6:dd:2f:16:69:15:56:11:d1:42:3e:
e2:06:36:7c:b4:c1:e1:ae:d8:1f:ed:a1:e1:d2:ca:f0:30:f0:
23:32:be:d2:40:f8:a3:4d:13:83:88:f0:f3:27:b2:f9:43:a6:
b4:79:4c:09:98:c3:aa:ff:07:42:d0:f8:2f:94:c3:78:ae:cd:
8f:9e:ae:69:d1:cc:29:bc:29:df:e5:27:87:6b:ae:75:e9:bf:
9f:5f:c9:7e:2c:35:e0:c7:63:39:13:e8:64:bb:1d:e6:fa:ae:
e6:84:a9:de:28:a0:e9:0d:58:ad:aa:03:86:b7:ed:57:e2:e2:
e7:43:fa:4c:24:ff:c5:b9:b4:b1:82:25:4e:1a:e1:62:1f:82:
97:ae:c3:fc:9a:76:46:c8:03:d1:40:61:32:be:a5:43:4c:0f:
9a:35:24:39:78:30:60:d9:66:23:af:ee:6b:b7:7e:89:25:32:
a0:98:ea:3e:43:a7:30:3e:87:22:e8:f7:88:48:19:4a:9e:06:
0b:cd:4c:21:09:cf:a8:13:6d:38:46:1e:67:57:46:35:bc:71:
81:50:28:c7
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjQ5NDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFFRThDQzIzMDU4MDEy
QzZFNDA2QzVGQUVFNEMxMTdDREM0NzgwMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC81YDLInxm21a/K9lhSKbqsxjxqSSl3mJuS2Zfdy2J6lHbHH8Q
9STY0p7d7j3aXqdo4K1oKDHM8IYTDMQxfcFQN/+msVufExCIlygKoKcGKDFKmWBS
/WKQWL8pylO/+xPqE1+k+BdZyyjidOQOkkSPI/k+N+82T327upCqV5at8X9SPt9q
uylixeyRCwu03gHV66Unk/YKQH/y6IFKYXM1/CktElCUWA66FN1xJG9q+oovBrMk
fNTJh4ZH8TpNdTY0xdXqTZ0ydm6G4dCNNf/QYyNGimXOG9hLDLBTBvHGsWbZyhKk
BiHdOwTyroOct0a2siEbXVLqakRlfEZGjsOjAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUHujMIwWAEsbkBsX67kwRfNxHgAAwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9IdWpNSXdXQUVzYmtCc1g2N2t3
UmZOeEhnQUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eABDMA0GCSqGSIb3DQEBCwUAA4IBAQC2ySikf6MUqpppxOvTuXjceTBqMhzzFexS
8ZIw+hcHBWJVQNdOhF7x7KCyxt0vFmkVVhHRQj7iBjZ8tMHhrtgf7aHh0srwMPAj
Mr7SQPijTRODiPDzJ7L5Q6a0eUwJmMOq/wdC0PgvlMN4rs2Pnq5p0cwpvCnf5SeH
a6516b+fX8l+LDXgx2M5E+hkux3m+q7mhKneKKDpDVitqgOGt+1X4uLnQ/pMJP/F
ubSxgiVOGuFiH4KXrsP8mnZGyAPRQGEyvqVDTA+aNSQ5eDBg2WYjr+5rt36JJTKg
mOo+Q6cwPoci6PeISBlKngYLzUwhCc+oE204Rh5nV0Y1vHGBUCjH
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org