Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/KUQ2RylSs6jW9kPANLwslf1PrUs.roa
File: KUQ2RylSs6jW9kPANLwslf1PrUs.roa (raw, json)
Hash identifier: fY1qUeZWw6fiCSf+xxgee4mWif5e+QPYhoriTgByxSs=
Subject key identifier: 29:44:36:47:29:52:B3:A8:D6:F6:43:C0:34:BC:2C:95:FD:4F:AD:4B
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 0299
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/KUQ2RylSs6jW9kPANLwslf1PrUs.roa
Signing time: Thu 15 Sep 2022 02:38:03 +0000
ROA not before: Thu 15 Sep 2022 02:38:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18178
IP address blocks: 2406:9740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665 (0x299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Sep 15 02:38:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=294436472952B3A8D6F643C034BC2C95FD4FAD4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:10:b0:14:e8:4b:78:37:21:9c:0e:80:14:
1a:c8:5b:39:76:77:5f:79:60:7d:6f:43:cb:7e:eb:
d0:bf:1d:93:91:8b:73:39:a9:8d:8a:e8:a8:8e:f4:
6c:ae:df:4e:44:5b:0f:5a:c3:d9:c9:54:3d:0d:3b:
1d:b1:11:06:99:f9:8b:0f:c5:f3:26:02:d6:3f:7f:
47:24:6d:b0:73:8c:d6:4e:50:ed:a6:d4:b0:33:e3:
0e:d2:f7:0b:f0:5a:99:56:7b:7a:b9:54:21:17:50:
67:60:d2:aa:1c:7f:af:bc:16:07:a7:cf:a8:cc:8c:
c4:fe:87:12:58:f9:b5:c9:a1:a5:42:1f:e6:b4:f0:
8d:c1:84:bf:b2:fd:70:6c:b2:bf:d0:d2:f5:40:f6:
4b:a7:08:79:b4:af:71:e7:1a:6b:dd:f6:c4:d3:31:
72:d8:f7:3c:5c:f5:cd:f2:3a:52:f4:21:2f:20:fc:
a7:67:1d:ac:4d:38:a1:f5:04:af:7a:f3:9b:58:4a:
07:64:69:2c:0b:87:c0:b8:88:89:9f:d1:f0:4e:83:
ae:4f:be:34:df:6f:91:0e:39:70:35:87:f3:3b:be:
db:ce:82:0c:46:3f:e6:c1:77:23:a8:5f:07:47:36:
16:fb:9a:7c:4e:ce:6d:df:90:7c:ef:96:c9:d0:0d:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:44:36:47:29:52:B3:A8:D6:F6:43:C0:34:BC:2C:95:FD:4F:AD:4B
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/KUQ2RylSs6jW9kPANLwslf1PrUs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:9740::/32
Signature Algorithm: sha256WithRSAEncryption
15:a9:43:a8:0d:64:9a:0c:1d:2e:ca:68:14:e4:1b:ff:ea:5e:
c9:b5:10:c3:77:30:01:33:d1:6b:87:d5:87:d3:08:2f:72:0b:
93:b8:5a:ac:e0:a2:3b:e1:c0:51:2c:b5:16:2a:62:1a:73:8e:
05:46:6c:55:35:81:26:c9:4d:56:65:3d:04:3a:25:49:77:0d:
62:5e:7b:b8:04:ee:42:85:e6:c7:91:47:4e:b1:75:3b:e8:b4:
e0:f3:6a:6a:5b:78:db:50:b9:ed:4f:8e:74:df:d6:f3:83:89:
8a:79:11:0a:0f:a2:35:46:d7:b3:05:41:b2:ee:c4:18:c3:5b:
54:28:e8:ef:86:d1:94:96:f0:13:1c:61:36:fa:55:af:49:7b:
4e:44:fe:1d:07:77:fd:30:d2:42:bd:68:cf:cb:be:f0:a9:9a:
f6:e0:6c:8e:73:81:42:ed:66:b9:4a:3a:ee:45:ab:a3:0c:74:
20:b6:38:d1:46:71:d0:4b:cc:e6:90:6c:45:2a:c5:48:d4:a9:
c4:39:24:e0:14:49:4e:9b:98:81:27:04:67:62:b5:13:19:10:
4b:f8:49:7f:1f:fb:e3:06:83:08:c9:63:a0:12:6f:4b:2f:30:
e0:c6:14:2a:eb:be:8a:8b:0a:16:93:ff:a4:7a:08:10:d9:5c:
20:20:d4:77
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICApkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC
QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yMjA5MTUw
MjM4MDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI5NDQzNjQ3Mjk1MkIz
QThENkY2NDNDMDM0QkMyQzk1RkQ0RkFENEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzBBCwFOhLeDchnA6AFBrIWzl2d195YH1vQ8t+69C/HZORi3M5
qY2K6KiO9Gyu305EWw9aw9nJVD0NOx2xEQaZ+YsPxfMmAtY/f0ckbbBzjNZOUO2m
1LAz4w7S9wvwWplWe3q5VCEXUGdg0qocf6+8Fgenz6jMjMT+hxJY+bXJoaVCH+a0
8I3BhL+y/XBssr/Q0vVA9kunCHm0r3HnGmvd9sTTMXLY9zxc9c3yOlL0IS8g/Kdn
HaxNOKH1BK9685tYSgdkaSwLh8C4iImf0fBOg65PvjTfb5EOOXA1h/M7vtvOggxG
P+bBdyOoXwdHNhb7mnxOzm3fkHzvlsnQDRwnAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUKUQ2RylSs6jW9kPANLwslf1PrUswHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ
uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3
dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL0tVUTJSeWxTczZqVzlrUEFOTHdzbGYx
UHJVcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBpdAMA0G
CSqGSIb3DQEBCwUAA4IBAQAVqUOoDWSaDB0uymgU5Bv/6l7JtRDDdzABM9Frh9WH
0wgvcguTuFqs4KI74cBRLLUWKmIac44FRmxVNYEmyU1WZT0EOiVJdw1iXnu4BO5C
hebHkUdOsXU76LTg82pqW3jbULntT45039bzg4mKeREKD6I1RtezBUGy7sQYw1tU
KOjvhtGUlvATHGE2+lWvSXtORP4dB3f9MNJCvWjPy77wqZr24GyOc4FC7Wa5Sjru
RaujDHQgtjjRRnHQS8zmkGxFKsVI1KnEOSTgFElOm5iBJwRnYrUTGRBL+El/H/vj
BoMIyWOgEm9LLzDgxhQq676KiwoWk/+keggQ2VwgINR3
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org