Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa
File: ZQsHbK53NiIc00xTfP9uUIMaXak.roa (raw, json)
Hash identifier: TdmJmSXgh1/ptU9azGGH9IKivDoiNQTECMCS2bGu5r0=
Subject key identifier: 65:0B:07:6C:AE:77:36:22:1C:D3:4C:53:7C:FF:6E:50:83:1A:5D:A9
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0576
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa
Signing time: Fri 01 Sep 2023 08:59:50 +0000
ROA not before: Fri 01 Sep 2023 08:59:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131657
IP address blocks: 2406:48c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1398 (0x576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 1 08:59:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=650B076CAE7736221CD34C537CFF6E50831A5DA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:55:9e:36:38:6e:1f:32:b9:20:26:a0:79:4d:
eb:73:c5:06:09:24:1f:58:6b:ca:50:a6:85:a1:f4:
71:8a:34:75:05:cb:ce:db:ac:07:29:66:b9:bf:94:
f5:e0:e2:dd:a0:99:e1:ff:51:8c:11:b0:af:0e:a3:
69:68:7e:8c:f4:c8:ef:9a:d9:ab:60:1e:2b:69:db:
1a:45:ab:8a:43:e4:76:40:a3:f6:d1:7a:44:0f:18:
7b:97:2f:2f:8c:30:5e:a9:66:67:a6:e0:b5:4b:f1:
ab:eb:e1:42:35:c0:0f:be:9c:56:2b:fe:d5:51:fa:
c9:e6:ec:0b:97:95:5b:6b:3b:b6:4e:90:d8:a7:78:
25:bf:f9:9c:ca:01:72:87:45:60:24:f5:a6:4e:85:
9a:65:46:f4:cc:a7:43:6a:8e:df:db:78:36:14:6a:
c4:88:17:df:b3:be:51:5a:9b:b6:72:0b:45:b3:dd:
71:42:6c:79:f9:fb:23:ce:73:ea:c9:3b:d7:af:dc:
14:24:23:1a:a0:fe:1c:ff:0a:36:03:22:1c:ce:aa:
64:71:83:98:31:9d:80:62:5f:71:35:77:63:29:11:
59:8b:29:7b:ec:0e:2d:c4:88:a8:9d:f0:9a:28:26:
d0:ab:61:a5:6d:2b:bb:cb:ea:9c:2a:a6:68:d8:5d:
02:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0B:07:6C:AE:77:36:22:1C:D3:4C:53:7C:FF:6E:50:83:1A:5D:A9
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/48
Signature Algorithm: sha256WithRSAEncryption
26:82:5a:7e:c9:a0:87:9b:d1:d2:9b:68:00:cd:01:2d:12:25:
88:3a:fa:b2:df:d3:79:f1:58:a8:69:0d:aa:75:7d:19:60:bd:
95:f6:c7:82:09:d8:06:37:d5:a3:3f:bb:ef:93:99:e8:9f:91:
f0:98:4f:f1:69:f0:cc:00:20:92:4a:a9:9c:58:ab:38:73:fa:
cb:4f:8a:11:44:91:e3:64:be:06:88:0a:e2:49:36:0e:df:01:
73:c4:83:a5:82:a5:a9:9f:f9:1e:7a:be:2c:80:b1:a6:fa:30:
ad:34:6d:4e:0c:45:c5:04:da:6c:51:b2:a8:bc:0d:d4:ce:78:
cf:7a:24:45:4f:11:72:7c:3c:f0:13:8b:69:76:b9:b8:41:53:
ed:38:35:40:a5:7c:68:aa:f8:f4:e4:11:41:83:8c:36:4c:44:
6e:42:64:56:84:8a:fd:1d:78:7d:36:c7:d3:cb:dd:10:d1:56:
e7:28:39:11:b1:44:d5:28:87:84:a2:fa:2d:d8:eb:b3:56:62:
7a:ad:73:a1:b1:c4:8a:cf:d7:dd:74:7e:9b:b5:8c:04:9d:96:
85:ce:fa:0e:34:67:f1:c6:a9:9e:24:7b:cd:c5:bc:5e:9c:0d:
20:4c:57:03:b3:80:26:44:cd:ae:ee:08:b0:04:07:9b:30:d3:
62:3c:14:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:54 2025 by rpki-client