Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/tXWq77fZRhfiduWpx4ccgJVM1sU.roa
File: tXWq77fZRhfiduWpx4ccgJVM1sU.roa (raw, json)
Hash identifier: 5yGbrPkxx4X2w4U74pgClyC3pQFEzvcUNw3g2zJp1QQ=
Subject key identifier: B5:75:AA:EF:B7:D9:46:17:E2:76:E5:A9:C7:87:1C:80:95:4C:D6:C5
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0C96
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/tXWq77fZRhfiduWpx4ccgJVM1sU.roa
Signing time: Mon 16 Nov 2020 06:46:00 +0000
ROA not before: Mon 16 Nov 2020 06:46:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18180
IP address blocks: 2404:178:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3222 (0xc96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Nov 16 06:46:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B575AAEFB7D94617E276E5A9C7871C80954CD6C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ef:b2:7d:88:88:13:ab:e7:07:c4:70:4d:82:
ac:bb:87:7a:fe:b2:05:b5:c4:da:55:a8:95:92:16:
62:f4:c4:85:80:91:15:0f:93:ea:2e:af:99:d6:13:
66:07:2b:c7:9d:7a:84:ee:c6:b2:0f:c3:12:f8:d0:
d7:ce:9f:10:c2:39:cf:f8:06:ff:d7:3c:8a:88:4d:
68:84:2d:19:1a:8d:02:24:ae:28:a3:a4:a1:64:5b:
78:fa:79:42:eb:15:b4:36:f3:4c:59:d9:dd:5b:10:
c1:75:32:ba:92:57:9b:f8:75:95:1b:44:ae:0f:ae:
98:de:fb:94:22:65:7c:51:5e:5a:b7:cd:11:b4:0a:
c7:45:76:c5:63:c2:89:5a:c9:96:cf:a6:ee:15:8c:
04:97:d8:18:60:ce:2a:34:34:d7:5b:8d:90:74:9d:
f6:82:66:7e:f8:46:8f:fc:85:b9:16:9b:07:e7:66:
2d:e1:3c:8b:f8:1b:42:56:2a:c3:7f:02:47:dd:e4:
b0:b1:67:30:56:98:bf:c5:9e:20:aa:fe:a9:07:73:
2d:b8:14:b0:45:87:36:13:de:7f:45:95:2e:de:e9:
a3:c4:4c:55:44:e3:3f:51:c7:c7:13:00:5e:1d:ac:
eb:67:a9:70:1b:40:da:ae:ee:cc:74:9b:f5:05:40:
f7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:75:AA:EF:B7:D9:46:17:E2:76:E5:A9:C7:87:1C:80:95:4C:D6:C5
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/tXWq77fZRhfiduWpx4ccgJVM1sU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:178:30::/48
Signature Algorithm: sha256WithRSAEncryption
a0:4d:16:c5:7b:03:b3:cf:51:32:f2:ed:64:6c:e0:0a:ba:b0:
74:60:6e:65:b2:ad:21:4d:e1:c9:a9:51:0e:83:85:74:ad:70:
63:5b:40:06:ed:58:d6:42:6c:de:b6:70:79:37:b0:15:e8:2c:
f1:0a:7f:09:8a:cd:e6:24:bf:7e:81:c9:43:ff:64:78:ee:45:
85:43:07:23:92:31:6e:26:05:86:7b:c8:56:08:c3:71:85:d5:
7b:fa:e0:57:ee:d0:6b:73:8c:bd:10:e3:3a:da:99:6f:e1:70:
8d:5a:1b:68:b6:d2:58:35:5c:96:59:08:01:3d:8e:63:9b:14:
a8:5e:de:81:18:06:62:69:6a:36:44:01:ed:f8:41:9e:e8:ee:
64:59:3a:b1:25:2a:73:ec:86:67:4f:5f:29:5b:d4:79:16:8a:
7f:e3:01:52:2d:db:d0:c0:96:08:64:fa:6b:c7:f0:d2:86:89:
0a:78:ae:5a:34:6d:54:4a:e9:59:d9:7e:f2:60:ea:da:db:fd:
7a:6a:84:37:e9:76:82:35:e8:61:38:7a:ff:92:51:69:5e:a8:
1d:ec:7d:43:84:c2:cf:5a:91:da:7e:45:0c:f1:d5:d8:da:cc:
85:c0:e1:d1:ed:f9:7f:d7:af:79:4b:9f:8d:d8:97:ba:7d:18:
59:27:1e:ea
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMDExMTYw
NjQ2MDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI1NzVBQUVGQjdEOTQ2
MTdFMjc2RTVBOUM3ODcxQzgwOTU0Q0Q2QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA77J9iIgTq+cHxHBNgqy7h3r+sgW1xNpVqJWSFmL0xIWAkRUP
k+our5nWE2YHK8edeoTuxrIPwxL40NfOnxDCOc/4Bv/XPIqITWiELRkajQIkriij
pKFkW3j6eULrFbQ280xZ2d1bEMF1MrqSV5v4dZUbRK4Prpje+5QiZXxRXlq3zRG0
CsdFdsVjwolayZbPpu4VjASX2Bhgzio0NNdbjZB0nfaCZn74Ro/8hbkWmwfnZi3h
PIv4G0JWKsN/Akfd5LCxZzBWmL/FniCq/qkHcy24FLBFhzYT3n9FlS7e6aPETFVE
4z9Rx8cTAF4drOtnqXAbQNqu7sx0m/UFQPcLAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUtXWq77fZRhfiduWpx4ccgJVM1sUwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy90WFdxNzdmWlJoZmlkdVdweDRj
Y2dKVk0xc1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQB
eAAwMA0GCSqGSIb3DQEBCwUAA4IBAQCgTRbFewOzz1Ey8u1kbOAKurB0YG5lsq0h
TeHJqVEOg4V0rXBjW0AG7VjWQmzetnB5N7AV6CzxCn8Jis3mJL9+gclD/2R47kWF
QwcjkjFuJgWGe8hWCMNxhdV7+uBX7tBrc4y9EOM62plv4XCNWhtottJYNVyWWQgB
PY5jmxSoXt6BGAZiaWo2RAHt+EGe6O5kWTqxJSpz7IZnT18pW9R5Fop/4wFSLdvQ
wJYIZPprx/DShokKeK5aNG1USulZ2X7yYOra2/16aoQ36XaCNehhOHr/klFpXqgd
7H1DhMLPWpHafkUM8dXY2syFwOHR7fl/1695S5+N2Je6fRhZJx7q
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org