Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dBOtXQuS6z9Ro1qMTj3oSl-bo8c.roa
File: dBOtXQuS6z9Ro1qMTj3oSl-bo8c.roa (raw, json)
Hash identifier: OlftlOxWyo4Mh8YcdoqMrhBRTnZ2rE6eIO7SIDYd/xc=
Subject key identifier: 74:13:AD:5D:0B:92:EB:3F:51:A3:5A:8C:4E:3D:E8:4A:5F:9B:A3:C7
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0DCD
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dBOtXQuS6z9Ro1qMTj3oSl-bo8c.roa
Signing time: Mon 23 Nov 2020 07:23:31 +0000
ROA not before: Mon 23 Nov 2020 07:23:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:12::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3533 (0xdcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 23 07:23:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7413AD5D0B92EB3F51A35A8C4E3DE84A5F9BA3C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:6b:09:65:25:d7:f6:2c:87:ea:d7:d3:ff:
72:2d:c8:33:64:57:79:99:61:10:9b:a8:f0:67:ff:
62:df:0f:a9:b0:53:ec:4e:5f:ee:a3:98:55:5c:8d:
5f:96:bd:90:62:2b:18:00:31:a6:51:d8:0c:8c:96:
41:c7:59:03:e4:12:f5:fc:f9:b8:9b:44:1d:a6:09:
77:2e:0f:ce:69:14:9a:2e:e5:bb:5e:73:67:e7:1d:
8b:c9:6e:e8:23:1d:42:cc:d2:8a:8c:71:2f:e6:b2:
14:54:82:87:d8:57:27:0c:4a:45:f0:48:93:32:bf:
0d:5a:4b:82:b8:1e:3d:fa:10:98:3a:32:50:52:d4:
86:47:03:5a:31:12:88:45:81:15:6e:9e:a0:08:4d:
20:69:21:14:4c:48:8f:92:be:d6:f0:65:d8:8c:6a:
8f:fe:e3:89:ec:85:98:4a:d5:be:3c:cd:ce:4e:f7:
17:a7:c7:95:72:98:f2:b9:a8:fd:cf:08:05:d4:b2:
7d:ec:df:90:7d:ca:3c:5d:e0:4c:f3:4b:6e:4d:91:
bc:89:06:ec:d7:b3:c8:b3:a9:a6:d2:5d:52:d7:e9:
cb:89:c4:a6:c0:9c:ff:1e:d6:8f:71:7a:36:de:30:
69:37:32:fc:b8:a7:1c:2d:fd:e5:46:72:25:82:8d:
56:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:13:AD:5D:0B:92:EB:3F:51:A3:5A:8C:4E:3D:E8:4A:5F:9B:A3:C7
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dBOtXQuS6z9Ro1qMTj3oSl-bo8c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:12::/48
Signature Algorithm: sha256WithRSAEncryption
3f:55:d4:fe:9d:81:b0:fa:3b:8f:69:2f:ed:a2:0a:0d:05:c3:
49:12:07:fe:44:aa:e1:de:dc:6f:7f:8d:c7:5a:95:bf:2d:37:
3a:f2:bf:6d:dd:cb:59:c3:1e:e7:20:3f:fd:f4:64:1e:4e:a9:
58:f6:04:91:f1:72:37:78:97:ed:70:e2:d1:bf:9a:ec:58:ba:
09:ef:fd:a7:2c:53:fa:70:d4:86:9c:d6:18:29:33:14:36:cd:
97:3d:72:d2:d8:e1:dd:8b:fc:7e:40:2a:95:a6:42:a5:e8:e2:
59:3d:c6:7c:5c:14:7c:31:e1:e4:6e:79:44:2d:16:6e:ac:56:
eb:f5:0e:ba:c8:8a:a3:68:4b:e3:47:4d:21:5c:0f:23:cd:f3:
f7:45:62:b2:ce:01:b8:64:7e:47:6c:d7:b3:a9:16:50:43:17:
64:66:5a:93:63:bf:b6:e0:d5:63:93:9f:75:4c:ad:b7:df:73:
80:8d:f5:28:a2:e3:02:1c:19:87:5d:3f:ae:8f:8a:bc:9a:a5:
ac:dd:ba:ba:e9:ae:87:c7:6c:a3:d4:42:7a:02:0e:a4:a6:dd:
3d:3c:1e:30:a1:90:55:9f:d9:04:16:86:f6:22:90:fa:a4:bf:
80:54:08:86:ca:c5:79:1c:37:ef:43:81:6d:f1:24:73:0d:48:
a3:5a:7c:05
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMjMw
NzIzMzFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc0MTNBRDVEMEI5MkVC
M0Y1MUEzNUE4QzRFM0RFODRBNUY5QkEzQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMiGsJZSXX9iyH6tfT/3ItyDNkV3mZYRCbqPBn/2LfD6mwU+xO
X+6jmFVcjV+WvZBiKxgAMaZR2AyMlkHHWQPkEvX8+bibRB2mCXcuD85pFJou5bte
c2fnHYvJbugjHULM0oqMcS/mshRUgofYVycMSkXwSJMyvw1aS4K4Hj36EJg6MlBS
1IZHA1oxEohFgRVunqAITSBpIRRMSI+SvtbwZdiMao/+44nshZhK1b48zc5O9xen
x5VymPK5qP3PCAXUsn3s35B9yjxd4EzzS25NkbyJBuzXs8izqabSXVLX6cuJxKbA
nP8e1o9xejbeMGk3Mvy4pxwt/eVGciWCjVY/AgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUdBOtXQuS6z9Ro1qMTj3oSl+bo8cwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9kQk90WFF1UzZ6OVJvMXFNVGoz
b1NsLWJvOGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eAASMA0GCSqGSIb3DQEBCwUAA4IBAQA/VdT+nYGw+juPaS/togoNBcNJEgf+RKrh
3txvf43HWpW/LTc68r9t3ctZwx7nID/99GQeTqlY9gSR8XI3eJftcOLRv5rsWLoJ
7/2nLFP6cNSGnNYYKTMUNs2XPXLS2OHdi/x+QCqVpkKl6OJZPcZ8XBR8MeHkbnlE
LRZurFbr9Q66yIqjaEvjR00hXA8jzfP3RWKyzgG4ZH5HbNezqRZQQxdkZlqTY7+2
4NVjk591TK2333OAjfUoouMCHBmHXT+uj4q8mqWs3bq66a6Hx2yj1EJ6Ag6kpt09
PB4woZBVn9kEFob2IpD6pL+AVAiGysV5HDfvQ4Ft8SRzDUijWnwF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org