Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mijSixDf-o1bdxD6WwD1_ntJKmY.roa
File: mijSixDf-o1bdxD6WwD1_ntJKmY.roa (raw, json)
Hash identifier: SyWbqAB4dDAJdzlmrz+RZTGkAl7pDD0/ngxdXxyzadg=
Subject key identifier: 9A:28:D2:8B:10:DF:FA:8D:5B:77:10:FA:5B:00:F5:FE:7B:49:2A:66
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0CC4
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mijSixDf-o1bdxD6WwD1_ntJKmY.roa
Signing time: Mon 16 Nov 2020 06:51:40 +0000
ROA not before: Mon 16 Nov 2020 06:51:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:53::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3268 (0xcc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:51:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A28D28B10DFFA8D5B7710FA5B00F5FE7B492A66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:73:cf:71:87:4c:1a:68:90:a6:3e:f8:d6:
fa:22:94:84:cf:20:1b:85:f2:fb:e6:01:bc:33:d3:
6c:82:b8:69:65:b5:b7:a7:d0:39:b8:78:1e:63:27:
88:b0:a2:9e:88:a9:5e:de:c3:d5:f8:b2:4f:7d:4e:
c5:4a:f1:ab:bb:85:d5:53:36:92:d8:bd:57:79:90:
c8:12:48:f1:87:b8:ad:04:5d:98:ba:ce:73:d2:43:
31:0b:ac:b1:38:df:37:0e:8d:60:69:60:2e:d4:0e:
48:78:4f:61:d6:fd:93:63:1c:df:e4:47:4a:dc:f4:
9b:16:22:2f:bc:12:13:45:ab:39:8e:e6:5a:af:e3:
e2:54:69:b6:8d:f9:af:b7:9f:a7:84:38:3b:a3:77:
0d:32:18:9f:23:21:41:44:4c:fa:b7:8e:11:83:bc:
8a:fd:22:b0:17:48:d4:95:1c:aa:0c:11:83:26:93:
c0:b1:e7:4d:f5:fb:18:fc:1c:01:33:0e:af:5f:9f:
8f:1b:4a:4d:39:9b:f4:c5:64:ca:d6:18:c1:3b:38:
28:8c:fa:e7:ba:3f:64:de:d1:08:4c:08:6f:3d:fa:
0a:11:f3:a8:fe:3a:8e:14:5f:32:2a:cd:ce:b8:ab:
43:1f:9f:88:bc:6e:ba:e2:55:03:d1:b6:2e:06:7a:
8e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:28:D2:8B:10:DF:FA:8D:5B:77:10:FA:5B:00:F5:FE:7B:49:2A:66
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/mijSixDf-o1bdxD6WwD1_ntJKmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:53::/48
Signature Algorithm: sha256WithRSAEncryption
97:7d:fb:a2:15:16:36:b6:2c:b8:bc:b4:28:27:32:1c:85:d7:
1d:a2:6f:8e:38:26:a3:f1:44:e8:a8:c0:43:d6:de:00:39:b6:
89:56:35:26:46:c8:c6:61:6e:8e:ac:2b:63:26:07:37:07:be:
f6:4a:90:81:10:d1:7e:a9:74:4b:2c:40:bf:9f:d1:ee:f3:a2:
be:f0:6f:a1:ca:be:27:19:7c:4d:41:d4:e9:55:45:34:14:cc:
be:79:54:0b:09:e6:70:c4:b6:78:04:e6:c1:d7:a4:b0:94:a0:
ca:34:c9:89:9d:56:7b:ab:b1:2a:59:ee:78:4e:4d:fd:ca:a0:
bc:10:33:e1:cc:88:72:29:77:c4:75:25:39:1d:1a:9d:36:11:
9b:2e:53:4b:d2:01:48:63:91:0f:93:5b:b3:bd:6d:a1:72:9c:
b5:72:7f:1d:ce:26:61:ee:54:b9:bb:0d:1a:bf:0d:0f:76:7c:
c5:61:9a:fb:2e:57:49:41:00:1f:8a:76:28:0b:ec:d6:cc:dc:
d6:a9:2c:99:ea:8d:31:f5:c9:29:23:46:ea:a1:80:a8:6c:e3:
cd:dc:9b:6f:82:d8:3d:bb:8c:5f:29:cc:dd:0a:21:72:35:9d:
d1:6a:30:cd:71:3f:7f:4c:46:1f:e1:66:c9:59:c9:60:71:d0:
98:57:f9:47
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjUxNDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlBMjhEMjhCMTBERkZB
OEQ1Qjc3MTBGQTVCMDBGNUZFN0I0OTJBNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsHXPPcYdMGmiQpj741voilITPIBuF8vvmAbwz02yCuGlltben
0Dm4eB5jJ4iwop6IqV7ew9X4sk99TsVK8au7hdVTNpLYvVd5kMgSSPGHuK0EXZi6
znPSQzELrLE43zcOjWBpYC7UDkh4T2HW/ZNjHN/kR0rc9JsWIi+8EhNFqzmO5lqv
4+JUabaN+a+3n6eEODujdw0yGJ8jIUFETPq3jhGDvIr9IrAXSNSVHKoMEYMmk8Cx
5031+xj8HAEzDq9fn48bSk05m/TFZMrWGME7OCiM+ue6P2Te0QhMCG89+goR86j+
Oo4UXzIqzc64q0Mfn4i8brriVQPRti4Geo7/AgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUmijSixDf+o1bdxD6WwD1/ntJKmYwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9taWpTaXhEZi1vMWJkeEQ2V3dE
MV9udEpLbVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eABTMA0GCSqGSIb3DQEBCwUAA4IBAQCXffuiFRY2tiy4vLQoJzIchdcdom+OOCaj
8UToqMBD1t4AObaJVjUmRsjGYW6OrCtjJgc3B772SpCBENF+qXRLLEC/n9Hu86K+
8G+hyr4nGXxNQdTpVUU0FMy+eVQLCeZwxLZ4BObB16SwlKDKNMmJnVZ7q7EqWe54
Tk39yqC8EDPhzIhyKXfEdSU5HRqdNhGbLlNL0gFIY5EPk1uzvW2hcpy1cn8dziZh
7lS5uw0avw0PdnzFYZr7LldJQQAfinYoC+zWzNzWqSyZ6o0x9ckpI0bqoYCobOPN
3Jtvgtg9u4xfKczdCiFyNZ3RajDNcT9/TEYf4WbJWclgcdCYV/lH
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org