Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IfJiVdb8lCyzuQNp4_w5j2dwouU.roa
File: IfJiVdb8lCyzuQNp4_w5j2dwouU.roa (raw, json)
Hash identifier: 3wauHTiSExETiR1/VPdrInV+eRZpxXcF8uwvgJHd8xg=
Subject key identifier: 21:F2:62:55:D6:FC:94:2C:B3:B9:03:69:E3:FC:39:8F:67:70:A2:E5
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A4C
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IfJiVdb8lCyzuQNp4_w5j2dwouU.roa
Signing time: Wed 29 Sep 2021 02:52:52 +0000
ROA not before: Wed 29 Sep 2021 02:52:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 2405:8700:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2636 (0xa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21F26255D6FC942CB3B90369E3FC398F6770A2E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4a:c6:04:d2:71:fd:22:77:57:cf:41:a9:12:
f6:04:9e:57:8a:8f:ad:97:c5:bb:a2:1e:a9:29:c3:
bd:bf:b7:e2:3a:a6:62:1b:f9:40:32:59:24:7b:a4:
54:95:b1:f9:c0:14:3d:e1:f9:24:f1:c6:44:08:53:
d9:ce:9a:6d:af:ca:e7:a4:44:fa:40:c9:d3:4c:44:
fd:65:ec:b1:63:41:17:62:48:75:dc:cd:5f:1b:e7:
eb:8e:e5:83:c8:17:bb:53:2a:94:53:61:7b:f2:25:
72:d4:8d:a0:3b:bf:a8:f8:fa:1f:b5:6e:07:44:4b:
dc:9f:78:7d:a9:52:f2:84:8e:e7:1d:ab:55:57:a7:
cf:55:e3:8c:2b:8c:59:7f:ea:ed:8d:33:de:e3:4a:
06:c3:a4:0d:70:8e:8b:7c:1b:4d:83:48:92:a9:0a:
a8:d9:41:9a:fc:02:b0:24:60:ff:33:af:d2:3f:60:
7c:37:96:5a:13:b8:21:4e:2c:dc:d0:04:94:03:19:
63:b9:ff:e5:b2:c6:54:6f:53:57:49:6c:69:58:be:
e5:31:26:ce:78:8f:45:4f:ab:2a:8b:21:b9:94:43:
d1:cc:65:6e:93:c1:3f:1a:13:b7:3a:64:7c:9b:8d:
b0:ec:13:d3:d2:f7:87:8d:23:08:50:a6:f0:56:39:
4c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F2:62:55:D6:FC:94:2C:B3:B9:03:69:E3:FC:39:8F:67:70:A2:E5
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IfJiVdb8lCyzuQNp4_w5j2dwouU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:8700:3000::/48
Signature Algorithm: sha256WithRSAEncryption
58:7b:62:4b:80:47:cc:3e:b0:81:01:03:62:66:a2:00:21:d7:
22:ef:0b:33:ba:46:6b:64:08:2e:ef:d4:85:f4:06:f6:2e:50:
07:a9:d7:6a:54:0f:11:77:7f:78:cd:b4:be:6e:be:cd:4b:72:
fd:55:48:95:ea:88:e4:f7:1d:79:4c:ef:eb:5c:db:a7:e8:00:
99:a4:bf:d9:0d:5f:70:61:18:02:26:f1:07:51:14:fb:01:cd:
30:c3:22:93:56:bd:3e:74:02:3b:25:bd:98:52:9d:12:b6:28:
48:1e:a6:eb:c8:d3:3c:8f:c0:35:b4:f4:5d:63:70:f8:40:31:
1e:60:2e:8c:da:28:7b:38:67:9a:f1:f0:49:36:68:8e:3e:2e:
36:aa:79:f4:9c:d5:45:c2:2a:6c:f4:d1:d4:03:c5:c0:2c:9d:
f3:7c:56:9c:f9:b8:5e:72:96:d4:78:51:28:da:cc:c1:cd:db:
dc:86:e6:89:fa:c4:fa:10:ad:63:fe:36:11:92:61:b0:65:29:
51:c7:8b:54:01:a6:90:81:c9:b9:0c:a1:09:05:bb:87:ed:92:
af:e4:25:6e:d1:ec:1d:87:a9:86:04:8b:ab:80:26:9e:18:f8:
45:f8:80:8e:16:86:eb:8c:8b:cd:01:57:71:b7:84:4b:3f:04:
ec:49:43:68
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMTA5Mjkw
MjUyNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDIxRjI2MjU1RDZGQzk0
MkNCM0I5MDM2OUUzRkMzOThGNjc3MEEyRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbSsYE0nH9IndXz0GpEvYEnleKj62XxbuiHqkpw72/t+I6pmIb
+UAyWSR7pFSVsfnAFD3h+STxxkQIU9nOmm2vyuekRPpAydNMRP1l7LFjQRdiSHXc
zV8b5+uO5YPIF7tTKpRTYXvyJXLUjaA7v6j4+h+1bgdES9yfeH2pUvKEjucdq1VX
p89V44wrjFl/6u2NM97jSgbDpA1wjot8G02DSJKpCqjZQZr8ArAkYP8zr9I/YHw3
lloTuCFOLNzQBJQDGWO5/+WyxlRvU1dJbGlYvuUxJs54j0VPqyqLIbmUQ9HMZW6T
wT8aE7c6ZHybjbDsE9PS94eNIwhQpvBWOUypAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUIfJiVdb8lCyzuQNp4/w5j2dwouUwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0lmSmlWZGI4bEN5
enVRTnA0X3c1ajJkd291VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAFh7YkuAR8w+sIEBA2JmogAh
1yLvCzO6RmtkCC7v1IX0BvYuUAep12pUDxF3f3jNtL5uvs1Lcv1VSJXqiOT3HXlM
7+tc26foAJmkv9kNX3BhGAIm8QdRFPsBzTDDIpNWvT50AjslvZhSnRK2KEgepuvI
0zyPwDW09F1jcPhAMR5gLozaKHs4Z5rx8Ek2aI4+LjaqefSc1UXCKmz00dQDxcAs
nfN8Vpz5uF5yltR4USjazMHN29yG5on6xPoQrWP+NhGSYbBlKVHHi1QBppCBybkM
oQkFu4ftkq/kJW7R7B2HqYYEi6uAJp4Y+EX4gI4WhuuMi80BV3G3hEs/BOxJQ2g=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org