Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/DPZgGe2umchXKPuOkESJd9wRW10.roa
File: DPZgGe2umchXKPuOkESJd9wRW10.roa (raw, json)
Hash identifier: a4B/wx1Mu9XYI4cNVPVjyFMgWZAyB8EIah6vsDvuFl4=
Subject key identifier: 0C:F6:60:19:ED:AE:99:C8:57:28:FB:8E:90:44:89:77:DC:11:5B:5D
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 1B
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/DPZgGe2umchXKPuOkESJd9wRW10.roa
Signing time: Mon 27 Jul 2020 09:34:20 +0000
ROA not before: Mon 27 Jul 2020 09:34:20 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 131657
IP address blocks: 2406:48c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 27 09:34:20 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=0CF66019EDAE99C85728FB8E90448977DC115B5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:f9:60:12:c8:f5:44:bb:b0:8a:3e:97:5c:
d2:e1:31:85:c4:cf:9c:76:db:d1:b7:39:78:5f:f7:
f2:f3:44:9b:d4:1e:22:b8:3d:09:9e:c0:f1:24:13:
31:a2:16:d8:6c:73:df:e2:db:e5:27:3f:bf:2e:b0:
ac:65:a2:22:ce:f8:9d:4b:75:a7:49:d4:2f:c3:02:
f6:e6:38:51:37:9f:6e:40:27:ef:f0:2f:31:38:d5:
21:2b:ba:ed:27:e5:b2:fa:0a:96:4b:ce:e7:84:94:
74:0c:9a:58:55:d9:77:fb:2b:e1:66:8d:3e:50:eb:
aa:6f:29:8a:a3:16:de:97:ed:e8:85:a5:bd:a5:04:
a7:09:4c:58:50:92:3f:db:c3:52:e0:63:1b:e9:05:
49:b6:fb:bb:2c:db:80:c7:49:56:b1:5d:1b:bd:7d:
9b:e6:b5:ab:b8:de:e1:b0:81:26:8c:ba:03:18:07:
f7:6e:a4:0c:33:72:b7:54:70:14:23:bb:e8:c7:6e:
54:88:33:d3:3a:16:c0:09:12:d0:db:26:3e:0d:8e:
c8:d4:38:fe:a6:c7:0b:f2:37:7d:3c:78:e2:4e:87:
6e:e5:cc:74:cb:24:48:14:9f:25:a8:dd:91:0f:3f:
da:0c:98:ff:9f:e3:02:50:d6:e5:58:df:1f:10:12:
7f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F6:60:19:ED:AE:99:C8:57:28:FB:8E:90:44:89:77:DC:11:5B:5D
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/DPZgGe2umchXKPuOkESJd9wRW10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
b5:6b:ca:82:84:c7:67:0e:56:ae:e3:8a:e6:fd:df:9e:03:cb:
a4:fd:20:8f:10:8e:60:67:db:d9:77:35:97:30:5e:34:b1:9b:
d9:79:1e:5e:23:11:0a:eb:3f:66:6e:7b:b5:52:66:3e:8e:40:
82:81:79:68:a6:8b:91:ff:09:ce:1e:72:1f:38:4b:e2:9b:94:
5f:fc:ea:bf:b6:4b:75:a6:32:fc:ba:54:7b:0c:a6:73:60:a4:
5f:53:1c:b9:5b:84:55:a5:53:d6:8f:a0:d5:07:46:b0:21:a9:
5c:19:39:fc:68:25:5c:bd:82:c1:47:05:f6:6c:0b:fc:48:fd:
d5:96:40:e0:78:88:f8:51:1b:54:d5:f2:7e:b9:55:3d:dc:af:
44:50:b7:cf:84:5a:25:dd:91:01:52:cc:d1:04:a2:06:6e:e7:
0f:57:07:ee:eb:57:f2:30:84:ed:d7:ae:d0:f7:5e:97:9d:62:
eb:6b:71:5a:0f:4a:6b:24:ac:e6:11:46:a2:c0:ff:3b:bf:46:
65:6a:dc:13:1d:ea:ff:69:bb:f3:05:bf:7a:37:75:62:71:48:
aa:bb:00:3d:e9:68:42:56:47:ce:00:3d:4d:70:d3:a1:85:4e:
57:3b:95:98:33:60:41:bd:36:d6:2a:a5:30:1f:1b:44:55:33:
41:af:57:7a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNTdE
QjdCOTkxOTk3NTY5NzM2NkI3MDE0RjhDRkUyOEVGMzY0RTczMB4XDTIwMDcyNzA5
MzQyMFoXDTIxMDcyNDA4MDMyMlowMzExMC8GA1UEAxMoMENGNjYwMTlFREFFOTlD
ODU3MjhGQjhFOTA0NDg5NzdEQzExNUI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMp2+WASyPVEu7CKPpdc0uExhcTPnHbb0bc5eF/38vNEm9QeIrg9
CZ7A8SQTMaIW2Gxz3+Lb5Sc/vy6wrGWiIs74nUt1p0nUL8MC9uY4UTefbkAn7/Av
MTjVISu67SflsvoKlkvO54SUdAyaWFXZd/sr4WaNPlDrqm8piqMW3pft6IWlvaUE
pwlMWFCSP9vDUuBjG+kFSbb7uyzbgMdJVrFdG719m+a1q7je4bCBJoy6AxgH926k
DDNyt1RwFCO76MduVIgz0zoWwAkS0NsmPg2OyNQ4/qbHC/I3fTx44k6HbuXMdMsk
SBSfJajdkQ8/2gyY/5/jAlDW5VjfHxASf7kCAwEAAaOCAe8wggHrMB0GA1UdDgQW
BBQM9mAZ7a6ZyFco+46QRIl33BFbXTAfBgNVHSMEGDAWgBQlfbe5kZl1aXNmtwFP
jP4o7zZOczAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT05HREEv
SlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9KWDIzdVpHWmRXbHpacmNCVDR6LUtPODJUbk0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT05HREEvRFBaZ0dlMnVtY2hYS1B1T2tF
U0pkOXdSVzEwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQG
SMAwDQYJKoZIhvcNAQELBQADggEBALVryoKEx2cOVq7jiub9354Dy6T9II8QjmBn
29l3NZcwXjSxm9l5Hl4jEQrrP2Zue7VSZj6OQIKBeWimi5H/Cc4ech84S+KblF/8
6r+2S3WmMvy6VHsMpnNgpF9THLlbhFWlU9aPoNUHRrAhqVwZOfxoJVy9gsFHBfZs
C/xI/dWWQOB4iPhRG1TV8n65VT3cr0RQt8+EWiXdkQFSzNEEogZu5w9XB+7rV/Iw
hO3XrtD3XpedYutrcVoPSmskrOYRRqLA/zu/RmVq3BMd6v9pu/MFv3o3dWJxSKq7
AD3paEJWR84APU1w06GFTlc7lZgzYEG9NtYqpTAfG0RVM0GvV3o=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:41 2025 by rpki-client