Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/WZ-XFJjBBZXnVW_m9nY77N6kSOk.roa
File: WZ-XFJjBBZXnVW_m9nY77N6kSOk.roa (raw, json)
Hash identifier: UTEoLIE9eJV68UL876TOC86L/ArJl1dfNm/3xKbhBqs=
Subject key identifier: 59:9F:97:14:98:C1:05:95:E7:55:6F:E6:F6:76:3B:EC:DE:A4:48:E9
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 0299
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/WZ-XFJjBBZXnVW_m9nY77N6kSOk.roa
Signing time: Thu 15 Sep 2022 02:38:04 +0000
ROA not before: Thu 15 Sep 2022 02:38:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131642
IP address blocks: 2406:9740::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665 (0x299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Sep 15 02:38:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=599F971498C10595E7556FE6F6763BECDEA448E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f7:2f:20:a8:56:df:93:23:9b:05:1a:28:36:
30:69:34:40:b6:ec:5a:53:ec:6f:3f:cd:02:15:61:
5a:48:df:70:92:52:56:04:f0:fb:1b:43:43:f5:36:
fd:79:12:33:2b:a8:9f:74:6d:01:9a:67:1c:52:54:
95:9a:79:21:04:48:2e:48:ff:86:1c:cf:95:75:6b:
50:11:74:5e:49:bc:90:e4:1b:bd:fd:2e:81:9d:30:
ef:47:c1:17:23:c4:2e:fd:76:b8:be:66:6c:53:5a:
5b:bc:6b:30:16:94:9a:4e:5a:df:98:64:e8:0f:d1:
ca:45:04:15:16:b3:26:df:01:fb:9d:ca:4a:d0:2a:
09:07:17:37:4a:66:71:e5:44:93:19:6d:e4:7b:ae:
b1:18:86:95:bf:58:06:8c:c3:70:43:fb:c1:c3:06:
ca:c0:27:5f:d3:8b:94:16:cc:0a:d8:ba:17:35:3e:
1e:55:85:15:de:1d:20:e8:e3:10:ee:81:f7:05:87:
a6:15:96:74:1d:31:32:a2:c8:4c:29:a0:b9:2c:77:
0a:97:64:9d:db:66:8c:6d:44:97:fa:74:f8:93:fd:
65:e9:61:9b:91:33:30:a4:f5:d0:ed:a3:cd:79:33:
08:39:e5:b0:bb:bc:32:31:0d:db:2d:96:ab:95:d9:
00:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9F:97:14:98:C1:05:95:E7:55:6F:E6:F6:76:3B:EC:DE:A4:48:E9
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/WZ-XFJjBBZXnVW_m9nY77N6kSOk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:9740::/32
Signature Algorithm: sha256WithRSAEncryption
bb:86:d3:03:ce:79:c7:d0:6f:24:71:63:00:39:0e:bb:d8:19:
f6:66:7b:a3:7e:d1:e5:4e:4f:30:fb:5d:00:7d:2a:1e:05:09:
d7:49:36:4e:9b:cf:8f:08:8c:b5:c4:b7:e8:1b:1d:a8:df:6b:
8b:01:28:76:8b:29:01:bd:2a:c9:8b:98:60:0f:41:88:b9:9d:
24:e3:98:d9:e4:64:10:2c:be:60:53:e8:9d:f7:fe:06:58:dc:
c2:6d:c7:78:dc:51:63:1a:67:b2:d7:d3:1b:19:cf:a1:35:87:
ae:4b:6f:a1:0c:e3:79:4e:03:26:7c:d6:fe:1d:8e:c0:4f:ce:
f9:68:ca:a1:88:4b:b8:ee:2c:34:19:7f:1a:50:cf:7e:40:b1:
0e:56:a3:7e:b7:64:ab:3c:00:79:9b:37:ec:5f:98:da:e4:56:
fb:4c:40:89:47:f8:5d:88:18:02:21:d7:a1:28:76:8a:ea:fc:
4b:a3:d0:b2:86:a5:47:53:35:9e:59:1d:2c:13:42:2c:3e:8f:
1d:94:9f:fa:1f:35:07:ab:26:c0:08:b3:b4:9e:a3:6e:ec:9d:
83:a4:76:d7:69:c0:a6:69:d4:b8:64:96:18:be:80:0e:1e:11:
4e:cd:b8:dd:64:ff:90:b5:e0:21:48:da:76:55:31:7c:c6:ee:
fc:9a:dd:27
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICApkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC
QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yMjA5MTUw
MjM4MDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDU5OUY5NzE0OThDMTA1
OTVFNzU1NkZFNkY2NzYzQkVDREVBNDQ4RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA9y8gqFbfkyObBRooNjBpNEC27FpT7G8/zQIVYVpI33CSUlYE
8PsbQ0P1Nv15EjMrqJ90bQGaZxxSVJWaeSEESC5I/4Ycz5V1a1ARdF5JvJDkG739
LoGdMO9HwRcjxC79dri+ZmxTWlu8azAWlJpOWt+YZOgP0cpFBBUWsybfAfudykrQ
KgkHFzdKZnHlRJMZbeR7rrEYhpW/WAaMw3BD+8HDBsrAJ1/Ti5QWzArYuhc1Ph5V
hRXeHSDo4xDugfcFh6YVlnQdMTKiyEwpoLksdwqXZJ3bZoxtRJf6dPiT/WXpYZuR
MzCk9dDto815Mwg55bC7vDIxDdstlquV2QAHAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUWZ+XFJjBBZXnVW/m9nY77N6kSOkwHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ
uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3
dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL1daLVhGSmpCQlpYblZXX205blk3N042
a1NPay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBpdAMA0G
CSqGSIb3DQEBCwUAA4IBAQC7htMDznnH0G8kcWMAOQ672Bn2ZnujftHlTk8w+10A
fSoeBQnXSTZOm8+PCIy1xLfoGx2o32uLASh2iykBvSrJi5hgD0GIuZ0k45jZ5GQQ
LL5gU+id9/4GWNzCbcd43FFjGmey19MbGc+hNYeuS2+hDON5TgMmfNb+HY7AT875
aMqhiEu47iw0GX8aUM9+QLEOVqN+t2SrPAB5mzfsX5ja5Fb7TECJR/hdiBgCIdeh
KHaK6vxLo9CyhqVHUzWeWR0sE0IsPo8dlJ/6HzUHqybACLO0nqNu7J2DpHbXacCm
adS4ZJYYvoAOHhFOzbjdZP+QteAhSNp2VTF8xu78mt0n
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org