Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mQsnqx_v8YlIFMjGsnETOYNoVQw.roa
File: mQsnqx_v8YlIFMjGsnETOYNoVQw.roa (raw, json)
Hash identifier: 2wm9N0V8BWsf6h3JhM1DIreF58eLnzHyd13zDEB953s=
Subject key identifier: 99:0B:27:AB:1F:EF:F1:89:48:14:C8:C6:B2:71:13:39:83:68:55:0C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C72
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mQsnqx_v8YlIFMjGsnETOYNoVQw.roa
Signing time: Wed 29 Sep 2021 02:51:17 +0000
ROA not before: Wed 29 Sep 2021 02:51:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 2001:b000:59c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3186 (0xc72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=990B27AB1FEFF1894814C8C6B27113398368550C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4c:87:54:a6:6d:d7:a5:1c:3a:bc:85:84:e6:
70:30:3a:f8:4a:41:66:7c:a6:96:d0:59:aa:cb:36:
96:e5:2f:c3:f9:1d:78:4b:41:99:96:1f:56:6b:53:
7a:3f:29:b2:6e:2a:80:8b:94:06:c7:0c:7b:84:91:
6a:e2:83:68:3a:94:f6:88:6a:ce:50:bf:b3:48:f7:
2c:02:eb:c3:f7:bc:4f:c3:c2:fd:f6:ad:a6:79:10:
0e:39:38:f7:d7:07:2a:4c:a9:70:e4:9e:22:01:b4:
4c:8f:4d:b5:9d:26:c7:3e:31:e5:87:f4:ff:da:cc:
21:88:41:b1:78:2c:a2:08:39:56:27:3a:33:5c:1e:
73:df:9e:21:46:00:8f:88:e6:7b:56:f8:ee:0e:64:
d0:82:29:de:1c:4a:c0:cd:3f:f1:fe:47:f3:c3:1a:
61:59:04:9e:4b:31:e8:3b:84:28:eb:d6:d8:b3:b4:
b0:8a:45:a6:e3:e2:c8:ce:8b:7c:12:f5:4b:57:6e:
85:41:b7:4b:66:fa:9e:8d:94:e5:a5:9a:f2:db:79:
31:aa:64:00:79:0e:d1:5d:4b:4b:11:dd:0d:94:d5:
2a:dc:d2:1b:81:f5:09:21:be:31:11:e5:27:f5:d7:
60:db:a3:3e:13:15:f7:f0:1d:c4:bb:aa:fd:08:c5:
bd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0B:27:AB:1F:EF:F1:89:48:14:C8:C6:B2:71:13:39:83:68:55:0C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mQsnqx_v8YlIFMjGsnETOYNoVQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:59c::/48
Signature Algorithm: sha256WithRSAEncryption
b6:98:3b:ab:c5:6e:9f:c4:e7:95:bb:a8:93:e6:97:ee:2d:e9:
18:3f:a2:1a:c0:1a:78:27:ea:12:53:a3:e8:a6:5a:86:e3:c0:
98:5b:d0:4f:db:f1:4d:60:e4:f0:56:d5:83:62:31:a5:ec:dd:
ff:2d:c2:38:95:36:26:0a:37:9a:78:42:45:97:80:8a:47:b4:
d8:f5:e5:56:e1:01:ea:b3:34:45:65:e5:9f:20:2a:e4:9d:b3:
4c:3a:96:93:22:e5:d6:49:b2:6e:09:40:1c:90:75:39:17:30:
20:9b:8b:0c:8f:93:83:f2:52:07:0a:c6:8a:07:df:2d:de:9a:
cc:9b:f0:5a:7e:cd:5e:51:8c:3f:14:21:d4:0f:5e:28:d6:a2:
b4:ab:cd:8d:8e:aa:a1:c5:d4:fc:91:93:a0:13:76:8c:cd:ee:
20:55:fc:31:4a:25:29:c2:91:3b:d8:74:17:5e:7f:07:83:1d:
f4:4a:64:7c:6c:a8:16:7d:6b:1e:df:66:89:f0:74:d6:8d:92:
db:e3:07:0b:e3:55:d4:a3:e6:7b:35:38:80:cd:9b:db:38:41:
79:3f:e2:cf:e0:49:ce:d2:78:d7:dc:e6:2c:ad:4e:05:37:23:
c7:7c:7d:23:a5:2d:2f:e7:b9:19:ec:4a:70:ca:87:c8:15:bb:
16:23:b6:dd
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDk5MEIyN0FCMUZFRkYx
ODk0ODE0QzhDNkIyNzExMzM5ODM2ODU1MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLTIdUpm3XpRw6vIWE5nAwOvhKQWZ8ppbQWarLNpblL8P5HXhL
QZmWH1ZrU3o/KbJuKoCLlAbHDHuEkWrig2g6lPaIas5Qv7NI9ywC68P3vE/Dwv32
raZ5EA45OPfXBypMqXDkniIBtEyPTbWdJsc+MeWH9P/azCGIQbF4LKIIOVYnOjNc
HnPfniFGAI+I5ntW+O4OZNCCKd4cSsDNP/H+R/PDGmFZBJ5LMeg7hCjr1tiztLCK
Rabj4sjOi3wS9UtXboVBt0tm+p6NlOWlmvLbeTGqZAB5DtFdS0sR3Q2U1Src0huB
9QkhvjER5Sf112Dboz4TFffwHcS7qv0Ixb0jAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUmQsnqx/v8YlIFMjGsnETOYNoVQwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tUXNucXhfdjhZbElGTWpHc25F
VE9ZTm9WUXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWcMA0GCSqGSIb3DQEBCwUAA4IBAQC2mDurxW6fxOeVu6iT5pfuLekYP6IawBp4
J+oSU6PoplqG48CYW9BP2/FNYOTwVtWDYjGl7N3/LcI4lTYmCjeaeEJFl4CKR7TY
9eVW4QHqszRFZeWfICrknbNMOpaTIuXWSbJuCUAckHU5FzAgm4sMj5OD8lIHCsaK
B98t3prMm/Bafs1eUYw/FCHUD14o1qK0q82NjqqhxdT8kZOgE3aMze4gVfwxSiUp
wpE72HQXXn8Hgx30SmR8bKgWfWse32aJ8HTWjZLb4wcL41XUo+Z7NTiAzZvbOEF5
P+LP4EnO0njX3OYsrU4FNyPHfH0jpS0v57kZ7EpwyofIFbsWI7bd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org