Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/bQXLkRZ3gYFjzwHQleX6_wTzByo.roa
File: bQXLkRZ3gYFjzwHQleX6_wTzByo.roa (raw, json)
Hash identifier: NpRdB5zHwptG26W4Ko+hoZ8R6Z2r0ovHAhM2jeUc3CQ=
Subject key identifier: 6D:05:CB:91:16:77:81:81:63:CF:01:D0:95:E5:FA:FF:04:F3:07:2A
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DB9
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/bQXLkRZ3gYFjzwHQleX6_wTzByo.roa
Signing time: Mon 23 Nov 2020 07:21:52 +0000
ROA not before: Mon 23 Nov 2020 07:21:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3513 (0xdb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:21:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6D05CB911677818163CF01D095E5FAFF04F3072A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5e:b4:b0:96:af:bf:5d:38:d9:6a:65:91:a2:
05:40:f6:71:d7:77:d1:b6:48:ca:0d:cd:86:16:74:
25:ab:73:7c:df:ab:00:85:d1:c8:ba:70:e1:29:ce:
06:47:52:06:fc:16:db:ed:88:52:a9:45:f4:7b:62:
ca:92:7d:7c:4b:a3:06:0e:5a:db:8d:3d:72:8b:6c:
9a:c4:6b:2e:86:79:57:a5:21:e2:6e:4a:c3:be:02:
81:30:59:b9:2f:62:15:36:9c:db:b8:47:83:92:3b:
34:81:53:ee:e7:d5:ee:37:94:af:be:7a:3e:b3:b9:
1c:cf:3e:9e:0f:ae:02:c0:e0:17:b7:1f:01:c4:86:
15:72:65:eb:da:2f:be:13:11:23:5f:0c:e6:a2:94:
ac:da:ff:18:dc:df:2a:47:b8:30:23:38:4e:79:17:
21:74:97:e5:16:77:61:3a:41:ef:31:7a:58:07:1c:
6a:66:00:da:3d:38:93:26:33:7b:b6:0e:ff:a0:64:
9d:5e:96:3b:32:24:2f:15:0f:97:f0:b6:68:ad:75:
6b:7b:f5:cf:ff:3e:40:5a:e1:b7:f7:59:8f:7f:51:
c3:d7:0e:64:37:f8:8a:6c:8f:be:5d:a5:d0:5c:eb:
a2:73:13:4d:da:45:e9:18:76:15:3d:c4:32:57:45:
7f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:05:CB:91:16:77:81:81:63:CF:01:D0:95:E5:FA:FF:04:F3:07:2A
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/bQXLkRZ3gYFjzwHQleX6_wTzByo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:2::/48
Signature Algorithm: sha256WithRSAEncryption
5f:9d:fb:f4:4f:eb:bb:b1:ee:39:99:13:7b:e6:ff:b0:30:ac:
f4:72:17:18:ae:7b:aa:28:6a:7b:5e:f5:67:6e:e5:06:e6:67:
33:c5:43:f1:01:9a:97:bf:01:17:15:4a:24:37:2e:ad:f3:bd:
eb:20:dd:b7:3d:c7:1c:11:df:1f:18:3c:d9:8f:e0:48:28:b5:
20:ed:4f:f6:bc:75:bb:21:75:62:b5:59:2b:d4:f7:9b:88:ba:
3e:b5:03:bc:1a:15:09:fe:d8:80:b7:59:3a:e9:b5:92:ec:b7:
ef:57:04:9c:fd:48:ed:65:d0:94:ec:95:ce:f3:6f:e0:aa:37:
d8:1b:c3:38:8b:9d:c0:d4:5b:70:20:7b:85:2b:56:0c:4b:35:
7a:fb:47:7e:46:0e:b9:83:1d:03:49:de:4a:0c:ad:b5:b1:37:
cc:ce:b5:a7:83:d8:b3:c8:d2:fe:ba:81:95:e6:8e:74:f1:4b:
2e:1f:bf:ef:90:b3:2c:9d:cb:d5:86:a4:83:11:c5:bc:59:c7:
81:d7:16:fe:8c:07:52:5f:3d:5b:ec:da:9b:b7:cb:88:f3:4b:
cf:c5:bc:fa:9d:1e:3e:fc:46:cf:d7:7d:5c:9a:07:67:de:10:
58:49:dd:b3:6c:30:30:b9:80:14:7d:97:59:9d:2b:05:6a:e1:
64:74:b1:1d
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMjMw
NzIxNTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZEMDVDQjkxMTY3Nzgx
ODE2M0NGMDFEMDk1RTVGQUZGMDRGMzA3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPXrSwlq+/XTjZamWRogVA9nHXd9G2SMoNzYYWdCWrc3zfqwCF
0ci6cOEpzgZHUgb8FtvtiFKpRfR7YsqSfXxLowYOWtuNPXKLbJrEay6GeVelIeJu
SsO+AoEwWbkvYhU2nNu4R4OSOzSBU+7n1e43lK++ej6zuRzPPp4PrgLA4Be3HwHE
hhVyZevaL74TESNfDOailKza/xjc3ypHuDAjOE55FyF0l+UWd2E6Qe8xelgHHGpm
ANo9OJMmM3u2Dv+gZJ1eljsyJC8VD5fwtmitdWt79c//PkBa4bf3WY9/UcPXDmQ3
+Ipsj75dpdBc66JzE03aRekYdhU9xDJXRX8HAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUbQXLkRZ3gYFjzwHQleX6/wTzByowHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9iUVhMa1JaM2dZRmp6d0hRbGVY
Nl93VHpCeW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eAACMA0GCSqGSIb3DQEBCwUAA4IBAQBfnfv0T+u7se45mRN75v+wMKz0chcYrnuq
KGp7XvVnbuUG5mczxUPxAZqXvwEXFUokNy6t873rIN23PcccEd8fGDzZj+BIKLUg
7U/2vHW7IXVitVkr1PebiLo+tQO8GhUJ/tiAt1k66bWS7LfvVwSc/UjtZdCU7JXO
82/gqjfYG8M4i53A1FtwIHuFK1YMSzV6+0d+Rg65gx0DSd5KDK21sTfMzrWng9iz
yNL+uoGV5o508UsuH7/vkLMsncvVhqSDEcW8WceB1xb+jAdSXz1b7Nqbt8uI80vP
xbz6nR4+/EbP131cmgdn3hBYSd2zbDAwuYAUfZdZnSsFauFkdLEd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org