Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/qj_aPqEZDbJCI9_zo9Pewnv98ck.roa
File: qj_aPqEZDbJCI9_zo9Pewnv98ck.roa (raw, json)
Hash identifier: 02G1fG2cNl6J3MkuzpQnRy7MjkTGDr81myl6RAgnAWY=
Subject key identifier: AA:3F:DA:3E:A1:19:0D:B2:42:23:DF:F3:A3:D3:DE:C2:7B:FD:F1:C9
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 037D
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/qj_aPqEZDbJCI9_zo9Pewnv98ck.roa
Signing time: Wed 29 Sep 2021 02:53:59 +0000
ROA not before: Wed 29 Sep 2021 02:53:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 2406:48c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AA3FDA3EA1190DB24223DFF3A3D3DEC27BFDF1C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e4:8a:8d:a2:6a:dc:c3:51:db:38:e8:ea:60:
b0:27:11:61:ce:b3:f3:bb:f8:bf:57:ac:ea:8b:a9:
b4:81:02:16:62:57:d9:63:cc:14:95:03:85:72:bf:
4b:5a:8c:0c:82:88:e3:ce:d9:2d:59:3b:cf:ba:94:
fb:22:17:b4:55:c2:e7:ac:dc:72:b3:79:86:c8:ca:
16:08:47:e0:df:80:4d:08:d4:0d:67:93:13:40:bb:
5c:b5:44:db:0c:94:58:1e:b9:4f:dd:13:b3:4f:fd:
8b:2b:0a:4a:80:f7:69:db:b6:90:1c:80:40:b0:75:
33:1c:3d:d7:18:7f:bb:78:48:af:10:ac:cf:5b:bb:
67:7b:16:a2:21:1f:5d:fc:b2:7e:db:2c:af:78:26:
bd:26:f5:e2:bd:e1:4c:0e:11:f6:61:4a:a2:5f:d1:
0d:1f:23:48:03:41:2c:aa:7c:5f:5b:4a:25:b3:6b:
6a:2c:54:98:37:93:68:9f:26:6d:6a:91:ed:f7:b8:
a2:80:c6:20:6f:6e:12:8d:73:12:a0:4f:14:78:e0:
3f:92:3b:f1:af:70:22:7a:2a:01:59:77:fd:ad:04:
0f:23:83:ae:27:c7:42:2b:a7:80:47:4b:be:e0:2f:
38:fd:69:da:ea:78:4c:a6:6e:6e:c9:95:bc:bd:67:
f0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3F:DA:3E:A1:19:0D:B2:42:23:DF:F3:A3:D3:DE:C2:7B:FD:F1:C9
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/qj_aPqEZDbJCI9_zo9Pewnv98ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:22:dc:e7:2c:23:cf:74:c4:c8:ce:3b:c3:68:ca:f6:69:dc:
5c:58:34:31:dd:9b:ab:b8:13:a8:e6:21:6f:c1:8f:86:a9:00:
9b:95:ba:52:89:41:11:56:3f:3c:e1:3f:22:86:3f:5a:11:8e:
c6:67:8e:70:40:9b:ff:e4:b0:c9:07:1d:cb:e8:e7:8e:a8:f4:
28:70:aa:e9:44:a4:30:c5:22:25:15:09:8d:c8:ea:ac:58:5a:
91:db:4b:fc:fd:32:85:de:e8:1f:dd:54:a4:41:6e:a4:94:6d:
ab:9b:1e:49:68:99:a5:d8:36:f3:fc:1c:35:5c:96:8b:a6:4a:
47:b0:06:c0:68:6b:ad:04:1f:9b:da:c0:e4:98:a0:1f:c0:50:
df:92:84:fb:a2:58:85:9c:77:b5:29:36:18:23:41:ad:ad:da:
b2:5f:e2:19:36:2c:0d:6b:12:63:28:ff:7a:67:13:d3:71:1b:
f7:5b:81:d6:40:08:37:b7:2c:30:51:fb:42:21:4f:e8:30:10:
9f:fd:d1:3e:ed:57:32:39:2a:17:b0:43:8d:c9:14:c5:49:a4:
82:d0:e0:aa:2a:0b:32:cf:9c:78:62:b2:f0:aa:1e:12:37:7f:
cb:1d:c0:fd:ff:6e:bd:75:a6:3f:6e:05:dd:c7:cc:26:d6:8d:
e4:a3:de:7b
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICA30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTA5Mjkw
MjUzNTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFBM0ZEQTNFQTExOTBE
QjI0MjIzREZGM0EzRDNERUMyN0JGREYxQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCp5IqNomrcw1HbOOjqYLAnEWHOs/O7+L9XrOqLqbSBAhZiV9lj
zBSVA4Vyv0tajAyCiOPO2S1ZO8+6lPsiF7RVwues3HKzeYbIyhYIR+DfgE0I1A1n
kxNAu1y1RNsMlFgeuU/dE7NP/YsrCkqA92nbtpAcgECwdTMcPdcYf7t4SK8QrM9b
u2d7FqIhH138sn7bLK94Jr0m9eK94UwOEfZhSqJf0Q0fI0gDQSyqfF9bSiWza2os
VJg3k2ifJm1qke33uKKAxiBvbhKNcxKgTxR44D+SO/GvcCJ6KgFZd/2tBA8jg64n
x0Irp4BHS77gLzj9adrqeEymbm7Jlby9Z/AjAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUqj/aPqEZDbJCI9/zo9Pewnv98ckwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3FqX2FQcUVaRGJKQ0k5X3pv
OVBld252OThjay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
BkjAMA0GCSqGSIb3DQEBCwUAA4IBAQBeItznLCPPdMTIzjvDaMr2adxcWDQx3Zur
uBOo5iFvwY+GqQCblbpSiUERVj884T8ihj9aEY7GZ45wQJv/5LDJBx3L6OeOqPQo
cKrpRKQwxSIlFQmNyOqsWFqR20v8/TKF3ugf3VSkQW6klG2rmx5JaJml2Dbz/Bw1
XJaLpkpHsAbAaGutBB+b2sDkmKAfwFDfkoT7oliFnHe1KTYYI0GtrdqyX+IZNiwN
axJjKP96ZxPTcRv3W4HWQAg3tywwUftCIU/oMBCf/dE+7VcyOSoXsEONyRTFSaSC
0OCqKgsyz5x4YrLwqh4SN3/LHcD9/269daY/bgXdx8wm1o3ko957
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org