Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/4RkdxhiDhXU_PFQQ8xCbWSQYMoE.roa
File: 4RkdxhiDhXU_PFQQ8xCbWSQYMoE.roa (raw, json)
Hash identifier: oBZCabZkUjpuDYcA/72ztHFKKQoSCJvq+pzn8MeO2Mk=
Subject key identifier: E1:19:1D:C6:18:83:85:75:3F:3C:54:10:F3:10:9B:59:24:18:32:81
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 037A
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/4RkdxhiDhXU_PFQQ8xCbWSQYMoE.roa
Signing time: Wed 29 Sep 2021 02:53:58 +0000
ROA not before: Wed 29 Sep 2021 02:53:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 2406:48c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890 (0x37a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E1191DC6188385753F3C5410F3109B5924183281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:14:eb:b1:95:70:50:2b:37:db:3b:77:4f:69:
c1:dd:59:ba:5b:8b:bf:df:55:02:1f:52:42:af:68:
f9:5f:ed:f1:62:ec:99:12:75:cb:5c:90:05:f4:71:
67:48:de:71:a3:e0:f3:0d:e3:4b:a4:e4:32:54:1e:
4c:0d:c8:d9:fb:45:02:90:2a:02:2c:dd:47:4d:15:
0c:74:b3:6e:3a:a4:ed:ca:86:d3:a0:d3:eb:03:5a:
e2:8c:f6:37:68:62:16:38:9a:01:34:20:59:7e:54:
ba:94:e9:87:7d:37:f5:c0:16:55:2f:a2:da:57:79:
15:7e:40:c3:84:bd:36:9a:07:cc:bd:4b:51:60:14:
ae:36:c3:3c:14:b6:9b:04:92:58:a9:1d:4d:00:a2:
b0:78:bc:8a:9f:e6:b6:33:57:96:c3:3b:12:42:9d:
f8:80:00:ce:73:37:ce:29:27:e8:1f:e0:3c:b6:33:
f1:d3:a8:fe:78:72:cb:44:74:3d:90:50:74:e3:90:
a5:2a:a9:d1:a4:ae:bb:53:a0:da:61:38:13:eb:17:
72:cc:5d:08:a3:ed:6a:e2:03:41:60:6f:00:ea:c2:
6c:5e:70:9d:24:07:6e:a1:52:ff:98:70:9b:ec:80:
eb:99:5b:90:81:3a:9b:2c:35:0d:d6:92:7f:44:6d:
d8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:19:1D:C6:18:83:85:75:3F:3C:54:10:F3:10:9B:59:24:18:32:81
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/4RkdxhiDhXU_PFQQ8xCbWSQYMoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
02:04:af:1f:e9:d8:d0:3b:58:78:c7:de:fc:20:d0:21:d5:bc:
51:20:81:f2:8d:b5:a9:71:cd:9d:33:08:af:4a:7b:f8:e3:40:
83:f8:fe:61:7d:3d:66:d5:70:fd:b7:0f:c0:f7:2b:f1:49:5c:
08:be:69:bb:ba:f8:b7:7b:a5:30:b8:b9:6f:3b:7d:36:21:43:
55:c4:20:aa:5f:4e:89:62:8b:20:14:5f:20:f9:9d:34:d7:6c:
31:93:c8:1e:39:be:31:a0:07:6a:15:3e:c1:17:99:26:41:f3:
6e:2d:a7:e0:56:79:e4:29:98:f8:06:2e:84:f0:dc:01:18:09:
2b:43:e2:35:e4:16:56:46:7a:51:18:cf:04:93:1a:bc:ee:2a:
cc:e4:75:6b:77:61:1c:c8:98:cf:0f:ae:7b:a8:70:a9:e2:a2:
e8:86:21:99:a5:4b:69:1b:cf:ca:d8:99:8a:36:1e:96:ec:bf:
53:4f:96:6d:c5:6a:a6:c6:41:21:13:3c:bb:11:12:1c:a6:06:
dd:1e:47:e9:a2:c0:cf:fc:1e:a0:f2:e4:ef:15:5b:ec:26:2c:
f6:e1:b5:e8:55:f9:e7:28:f4:f0:b1:fc:70:7f:1d:e1:17:96:
54:a3:92:a1:48:cb:c4:35:71:51:3c:98:d4:38:c5:d2:6c:60:
13:75:c4:ed
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICA3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTA5Mjkw
MjUzNThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUxMTkxREM2MTg4Mzg1
NzUzRjNDNTQxMEYzMTA5QjU5MjQxODMyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwFOuxlXBQKzfbO3dPacHdWbpbi7/fVQIfUkKvaPlf7fFi7JkS
dctckAX0cWdI3nGj4PMN40uk5DJUHkwNyNn7RQKQKgIs3UdNFQx0s246pO3KhtOg
0+sDWuKM9jdoYhY4mgE0IFl+VLqU6Yd9N/XAFlUvotpXeRV+QMOEvTaaB8y9S1Fg
FK42wzwUtpsEklipHU0AorB4vIqf5rYzV5bDOxJCnfiAAM5zN84pJ+gf4Dy2M/HT
qP54cstEdD2QUHTjkKUqqdGkrrtToNphOBPrF3LMXQij7WriA0FgbwDqwmxecJ0k
B26hUv+YcJvsgOuZW5CBOpssNQ3Wkn9EbdjdAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU4RkdxhiDhXU/PFQQ8xCbWSQYMoEwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzRSa2R4aGlEaFhVX1BGUVE4
eENiV1NRWU1vRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
BkjAMA0GCSqGSIb3DQEBCwUAA4IBAQACBK8f6djQO1h4x978INAh1bxRIIHyjbWp
cc2dMwivSnv440CD+P5hfT1m1XD9tw/A9yvxSVwIvmm7uvi3e6UwuLlvO302IUNV
xCCqX06JYosgFF8g+Z0012wxk8geOb4xoAdqFT7BF5kmQfNuLafgVnnkKZj4Bi6E
8NwBGAkrQ+I15BZWRnpRGM8Ekxq87irM5HVrd2EcyJjPD657qHCp4qLohiGZpUtp
G8/K2JmKNh6W7L9TT5ZtxWqmxkEhEzy7ERIcpgbdHkfposDP/B6g8uTvFVvsJiz2
4bXoVfnnKPTwsfxwfx3hF5ZUo5KhSMvENXFRPJjUOMXSbGATdcTt
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org