Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/2wc2YEG2kIRhOO-WKJhIId3Uugo.roa
File: 2wc2YEG2kIRhOO-WKJhIId3Uugo.roa (raw, json)
Hash identifier: kWBcQFk5JUUdaw5sz7z075JHlalRRYJJ/WhuP0DSDOM=
Subject key identifier: DB:07:36:60:41:B6:90:84:61:38:EF:96:28:98:48:21:DD:D4:BA:0A
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 097B
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/2wc2YEG2kIRhOO-WKJhIId3Uugo.roa
Signing time: Wed 29 Sep 2021 02:50:32 +0000
ROA not before: Wed 29 Sep 2021 02:50:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 2403:9340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2427 (0x97b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB07366041B690846138EF9628984821DDD4BA0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8b:de:36:49:1a:50:8a:5c:c5:7e:a5:05:ba:
e1:bc:45:89:6a:3d:98:69:f9:a5:3f:b6:9d:0e:97:
89:36:f2:28:00:5b:12:e0:19:46:cf:14:13:f2:93:
58:88:3a:37:03:bc:9f:81:ca:3b:a5:6d:cd:97:ec:
87:28:cf:eb:43:a8:1b:06:78:48:c7:87:27:96:ec:
5d:c2:6d:b1:75:5e:c7:4d:cc:5e:1c:b7:8e:12:2c:
1b:52:81:7b:78:db:1b:25:cf:9c:da:1d:71:1a:fd:
cd:13:c4:4a:fc:e9:42:cc:62:f4:41:32:d6:95:d4:
05:36:a6:de:38:6c:0e:e6:76:4a:1c:ba:6e:89:c5:
b5:95:36:18:db:25:57:ac:df:da:30:fe:ad:92:5b:
d0:30:6c:cc:21:59:50:90:6e:f2:35:ff:ae:f4:10:
55:e4:8e:85:51:8b:5b:47:16:62:87:d5:e1:5f:fe:
96:8b:21:32:b5:43:09:36:ea:52:0d:66:fa:88:60:
c0:57:c7:a8:a6:ab:d7:5f:4f:cc:4a:a8:2c:ff:ab:
29:af:bd:e6:43:8b:50:93:a3:2a:05:a7:e3:df:6a:
79:48:2c:09:ea:da:a9:e7:3a:2c:16:b3:7a:5a:d8:
3a:1d:56:da:73:76:15:64:68:ad:36:0c:bc:1d:d7:
9a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:07:36:60:41:B6:90:84:61:38:EF:96:28:98:48:21:DD:D4:BA:0A
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/2wc2YEG2kIRhOO-WKJhIId3Uugo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9340::/48
Signature Algorithm: sha256WithRSAEncryption
29:fb:59:41:99:81:9f:ce:30:c2:db:1a:8f:bf:8f:7a:2d:ef:
c8:78:ac:e6:9e:f6:79:eb:fc:aa:6c:b9:75:08:c6:ba:e5:5d:
34:1e:d1:1c:43:26:6f:f8:e9:77:0b:88:ff:7e:04:fa:ae:36:
0d:9f:bc:a8:23:1c:3c:8d:c3:9b:4e:0d:97:b4:0d:30:ba:f9:
1c:60:25:ac:17:b6:00:a4:9c:e4:43:fd:4d:6e:6b:f0:bc:b1:
2e:8e:ff:d8:c7:78:26:3d:20:2f:ad:51:b9:00:1c:f2:fd:10:
10:1b:12:3f:2f:c7:ca:3b:51:53:c6:7b:12:55:a8:1d:9e:dc:
a2:3e:1e:01:f9:e1:40:a9:01:86:72:14:ac:64:3a:44:38:84:
8a:3f:a8:3a:11:39:7e:55:10:80:a5:ee:14:a7:dd:f5:7a:8b:
8e:c1:c2:86:51:5f:f5:51:8e:89:a5:e1:ef:08:d9:6c:8f:2e:
85:c0:35:60:fa:fb:5e:2a:4e:73:21:f7:cc:fc:6d:b8:ee:0b:
f2:0f:71:ed:e7:f7:2f:81:92:c5:fb:9c:d7:55:50:f4:4f:b1:
55:43:7b:59:83:c7:67:ca:7e:b4:c9:19:e6:87:53:da:17:5f:
75:e4:e8:8e:76:66:47:2a:46:2d:6d:31:74:aa:8b:e1:69:0b:
43:4a:e2:fc
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgICCXswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzg1
NzEzRTM1OUZDQjlDQUIxMkYyMERCM0ZGMTkwRkNBODFFMzIzRTAeFw0yMTA5Mjkw
MjUwMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERCMDczNjYwNDFCNjkw
ODQ2MTM4RUY5NjI4OTg0ODIxRERENEJBMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0i942SRpQilzFfqUFuuG8RYlqPZhp+aU/tp0Ol4k28igAWxLg
GUbPFBPyk1iIOjcDvJ+Byjulbc2X7Icoz+tDqBsGeEjHhyeW7F3CbbF1XsdNzF4c
t44SLBtSgXt42xslz5zaHXEa/c0TxEr86ULMYvRBMtaV1AU2pt44bA7mdkocum6J
xbWVNhjbJVes39ow/q2SW9AwbMwhWVCQbvI1/670EFXkjoVRi1tHFmKH1eFf/paL
ITK1Qwk26lINZvqIYMBXx6imq9dfT8xKqCz/qymvveZDi1CToyoFp+PfanlILAnq
2qnnOiwWs3pa2DodVtpzdhVkaK02DLwd15phAgMBAAGjggH1MIIB8TAdBgNVHQ4E
FgQU2wc2YEG2kIRhOO+WKJhIId3UugowHwYDVR0jBBgwFoAUOFcT41n8ucqxLyDb
P/GQ/KgeMj4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEhSQ09M
VEQvT0ZjVDQxbjh1Y3F4THlEYlBfR1FfS2dlTWo0LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9PRmNUNDFuOHVjcXhMeURiUF9HUV9LZ2VNajQuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISFJDT0xURC8yd2MyWUVHMmtJUmhP
Ty1XS0poSUlkM1V1Z28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ
AwcAJAOTQAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAp+1lBmYGfzjDC2xqPv496Le/I
eKzmnvZ56/yqbLl1CMa65V00HtEcQyZv+Ol3C4j/fgT6rjYNn7yoIxw8jcObTg2X
tA0wuvkcYCWsF7YApJzkQ/1NbmvwvLEujv/Yx3gmPSAvrVG5ABzy/RAQGxI/L8fK
O1FTxnsSVagdntyiPh4B+eFAqQGGchSsZDpEOISKP6g6ETl+VRCApe4Up931eouO
wcKGUV/1UY6JpeHvCNlsjy6FwDVg+vteKk5zIffM/G247gvyD3Ht5/cvgZLF+5zX
VVD0T7FVQ3tZg8dnyn60yRnmh1PaF1915OiOdmZHKkYtbTF0qovhaQtDSuL8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org