Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/iqkwK77_zuDvdntwwrgfEcgLG8M.roa
File: iqkwK77_zuDvdntwwrgfEcgLG8M.roa (raw, json)
Hash identifier: QoL3kHjB5WD3iZ492tJVHXKhvOocf1zO33qmtI8OXqg=
Subject key identifier: 8A:A9:30:2B:BE:FF:CE:E0:EF:76:7B:70:C2:B8:1F:11:C8:0B:1B:C3
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CA6
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/iqkwK77_zuDvdntwwrgfEcgLG8M.roa
Signing time: Mon 16 Nov 2020 06:48:57 +0000
ROA not before: Mon 16 Nov 2020 06:48:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:38::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3238 (0xca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:48:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8AA9302BBEFFCEE0EF767B70C2B81F11C80B1BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:73:f0:69:0c:e4:3f:2d:d3:04:24:3a:79:
bf:79:9f:53:e2:4f:2e:11:5a:84:11:6c:42:a4:26:
f4:25:83:e0:3d:d8:9e:45:23:0c:d4:e6:e9:b5:cf:
41:63:a0:07:4b:48:4f:a2:22:20:84:d3:95:dd:8f:
ec:ad:7e:ae:69:82:90:76:63:ec:e7:ae:6d:1c:9e:
8f:fb:c0:09:30:82:d8:28:fd:47:21:15:39:38:50:
53:25:69:f8:94:13:a4:70:54:3b:e0:41:1f:92:0b:
1b:aa:3c:31:34:4b:01:3b:43:e8:57:c3:77:8c:55:
23:4d:74:05:0e:f5:b9:84:80:25:a5:dd:44:5e:71:
5d:f6:c9:cc:fb:72:b1:15:a2:78:39:73:da:c3:81:
33:4c:8b:77:b3:a1:0c:6e:0c:68:8b:9b:93:13:d0:
6e:a8:85:f7:38:6c:99:ca:c2:ef:15:9e:00:00:12:
24:fe:3a:f8:f9:ea:38:21:29:27:ac:a6:49:dc:08:
82:69:6a:6a:55:37:23:17:68:f4:74:e9:75:d3:b3:
6d:9f:0e:a1:df:d0:e9:5a:48:a3:df:6b:47:c2:c7:
db:0d:b4:08:62:9e:55:65:81:94:8d:ec:50:0a:97:
2b:f1:b1:f2:b8:4e:e3:2c:ca:2b:97:cd:b9:58:9a:
cb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A9:30:2B:BE:FF:CE:E0:EF:76:7B:70:C2:B8:1F:11:C8:0B:1B:C3
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/iqkwK77_zuDvdntwwrgfEcgLG8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:38::/48
Signature Algorithm: sha256WithRSAEncryption
13:75:50:cb:68:31:68:ce:56:59:29:42:25:5b:5a:94:7a:71:
26:b8:d9:b3:c1:68:74:14:bf:79:4a:4b:47:53:9f:cd:32:fb:
c4:45:c7:7b:30:5a:80:38:36:1d:cc:86:4d:63:1c:a4:54:4f:
8b:40:dd:df:0b:d6:54:d7:e6:24:ab:26:16:3a:b8:a2:4c:a9:
74:bf:cd:e2:28:e0:a6:b3:2a:e4:e9:06:89:46:3b:92:a1:db:
42:37:a0:e2:4c:ab:c4:51:68:a8:11:7c:b0:5d:3d:3a:92:fd:
b8:f5:4e:4a:a4:73:ae:9f:65:be:27:50:25:c7:b7:5f:e9:6e:
e2:c9:83:10:82:f4:4d:56:20:48:7e:42:7a:56:11:94:72:39:
39:07:0e:c8:1c:e2:10:27:28:2b:44:29:08:ec:68:db:f3:7e:
8e:e6:82:80:70:2b:4c:88:4b:db:b0:4a:3f:b7:a4:3b:8c:da:
e8:8d:a6:5b:f2:02:c2:77:35:63:7e:3d:e9:ec:92:fa:c9:39:
88:07:1b:78:1f:fe:79:02:2b:e1:ae:f7:4b:53:d7:56:d6:4d:
9c:6d:88:36:9f:82:2d:2f:8f:55:5a:56:14:06:1a:84:ff:52:
29:1d:0d:13:9c:b6:79:fd:19:61:a1:7d:89:59:f3:21:d3:d4:
9e:c1:8a:a6
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjQ4NTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhBQTkzMDJCQkVGRkNF
RTBFRjc2N0I3MEMyQjgxRjExQzgwQjFCQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDc3XPwaQzkPy3TBCQ6eb95n1PiTy4RWoQRbEKkJvQlg+A92J5F
IwzU5um1z0FjoAdLSE+iIiCE05Xdj+ytfq5pgpB2Y+znrm0cno/7wAkwgtgo/Uch
FTk4UFMlafiUE6RwVDvgQR+SCxuqPDE0SwE7Q+hXw3eMVSNNdAUO9bmEgCWl3URe
cV32ycz7crEVong5c9rDgTNMi3ezoQxuDGiLm5MT0G6ohfc4bJnKwu8VngAAEiT+
Ovj56jghKSespkncCIJpampVNyMXaPR06XXTs22fDqHf0OlaSKPfa0fCx9sNtAhi
nlVlgZSN7FAKlyvxsfK4TuMsyiuXzblYmsvBAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUiqkwK77/zuDvdntwwrgfEcgLG8MwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9pcWt3Szc3X3p1RHZkbnR3d3Jn
ZkVjZ0xHOE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eAA4MA0GCSqGSIb3DQEBCwUAA4IBAQATdVDLaDFozlZZKUIlW1qUenEmuNmzwWh0
FL95SktHU5/NMvvERcd7MFqAODYdzIZNYxykVE+LQN3fC9ZU1+YkqyYWOriiTKl0
v83iKOCmsyrk6QaJRjuSodtCN6DiTKvEUWioEXywXT06kv249U5KpHOun2W+J1Al
x7df6W7iyYMQgvRNViBIfkJ6VhGUcjk5Bw7IHOIQJygrRCkI7Gjb836O5oKAcCtM
iEvbsEo/t6Q7jNrojaZb8gLCdzVjfj3p7JL6yTmIBxt4H/55AivhrvdLU9dW1k2c
bYg2n4ItL49VWlYUBhqE/1IpHQ0TnLZ5/RlhoX2JWfMh09SewYqm
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org