Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/hb8R0Lrx2UBoVB4RwOfj0NsQ8nc.roa
File: hb8R0Lrx2UBoVB4RwOfj0NsQ8nc.roa (raw, json)
Hash identifier: UcaJU9GnhFkciCk9WJWv01r2ujUK4rx9KUVsqy6h83g=
Subject key identifier: 85:BF:11:D0:BA:F1:D9:40:68:54:1E:11:C0:E7:E3:D0:DB:10:F2:77
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 75
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/hb8R0Lrx2UBoVB4RwOfj0NsQ8nc.roa
Signing time: Tue 11 Aug 2020 13:49:37 +0000
ROA not before: Tue 11 Aug 2020 13:49:37 +0000
ROA not after: Thu 22 Jul 2021 06:22:26 +0000
asID: 134522
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117 (0x75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Aug 11 13:49:37 2020 GMT
Not After : Jul 22 06:22:26 2021 GMT
Subject: CN=85BF11D0BAF1D94068541E11C0E7E3D0DB10F277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b0:90:bd:ab:21:e1:2c:07:09:33:3d:2a:71:
11:bb:ea:23:28:7e:b1:74:3d:71:a6:8c:ff:20:e8:
71:40:b1:ea:1f:ae:d2:21:16:1f:3a:ce:b7:c2:84:
ba:8c:db:22:8b:1e:d6:32:60:ff:40:99:58:f0:05:
fd:e0:3f:f6:18:4f:ab:29:e8:54:00:35:2e:41:de:
99:c7:7f:2f:b0:7e:a8:5e:71:b6:6c:6e:fb:df:5f:
66:46:77:00:a2:c9:dd:76:4b:a9:33:bb:86:21:b2:
29:e0:a4:3a:6c:dc:68:ca:26:a2:33:aa:33:14:9b:
a2:44:d8:a3:a2:8f:6d:23:cd:8f:fe:ad:3b:e6:d0:
b2:5e:78:72:be:68:9a:37:ce:e1:44:a1:65:f7:47:
d6:1c:cf:a0:d6:38:a1:98:c0:25:b1:38:79:85:0a:
1d:bf:7c:c8:f0:bb:75:11:ba:6c:e9:e2:af:49:51:
8e:0f:42:e6:03:44:83:a1:e4:d2:06:ae:1d:a5:de:
15:56:01:95:83:68:ff:e0:0d:55:0a:cc:2c:8c:58:
f6:89:54:3e:48:0f:41:fa:40:d3:e8:e7:08:2f:86:
d0:b0:af:20:27:47:0c:da:8c:f5:e8:34:91:fa:a2:
e9:fb:46:a1:c3:89:0e:1f:ce:7a:cf:04:c9:d7:e7:
c5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BF:11:D0:BA:F1:D9:40:68:54:1E:11:C0:E7:E3:D0:DB:10:F2:77
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/hb8R0Lrx2UBoVB4RwOfj0NsQ8nc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
da:53:c2:99:b5:c5:9c:53:ab:9c:33:5b:25:4b:63:1b:3d:2f:
cd:30:c5:2c:34:23:c5:44:c9:54:ba:36:41:06:8d:89:f1:e7:
b2:6f:d9:b5:1c:56:fc:1e:48:7d:39:d8:f7:dc:4a:03:e8:d8:
ea:36:b6:1c:a5:ef:8f:8e:dd:a0:d9:fb:cc:79:3d:38:bc:74:
2d:4f:1b:32:88:d3:e8:6c:f9:18:15:42:6f:4b:2b:0f:15:e2:
52:5f:66:f8:43:f6:cd:7c:40:a5:3d:e1:a1:a9:0f:42:96:1d:
f0:b9:80:3a:15:9d:74:68:b6:fe:f5:2d:40:7d:c0:73:75:61:
ce:3c:1b:09:e4:ff:bd:37:e0:a7:35:10:46:fa:af:2f:34:0e:
2d:4c:4b:13:70:2d:c6:f1:2e:22:0b:1a:95:12:89:d9:7d:45:
46:47:1b:c2:b2:ce:0e:40:50:c2:3b:31:70:be:4c:c0:59:e8:
15:21:2c:50:dd:21:ab:8c:1d:a5:81:4f:64:ce:93:f3:0c:43:
9c:2d:a3:54:fd:c5:e5:5d:ae:60:10:b4:8d:ed:4d:76:dc:09:
bb:c6:89:80:9e:ab:f8:99:08:21:96:f6:a9:9e:65:4e:e0:fe:
f0:ee:b8:32:6c:7a:30:b9:51:ff:4e:db:53:a1:26:d0:15:3a:
bd:a1:cb:bb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgIBdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQkVE
MjhGRkNDMDQwRTM2MDMyQzQyNjE1NDk1NTYyQkNDNkVGNDVDMB4XDTIwMDgxMTEz
NDkzN1oXDTIxMDcyMjA2MjIyNlowMzExMC8GA1UEAxMoODVCRjExRDBCQUYxRDk0
MDY4NTQxRTExQzBFN0UzRDBEQjEwRjI3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANSwkL2rIeEsBwkzPSpxEbvqIyh+sXQ9caaM/yDocUCx6h+u0iEW
HzrOt8KEuozbIose1jJg/0CZWPAF/eA/9hhPqynoVAA1LkHemcd/L7B+qF5xtmxu
+99fZkZ3AKLJ3XZLqTO7hiGyKeCkOmzcaMomojOqMxSbokTYo6KPbSPNj/6tO+bQ
sl54cr5omjfO4UShZfdH1hzPoNY4oZjAJbE4eYUKHb98yPC7dRG6bOnir0lRjg9C
5gNEg6Hk0gauHaXeFVYBlYNo/+ANVQrMLIxY9olUPkgPQfpA0+jnCC+G0LCvICdH
DNqM9eg0kfqi6ftGocOJDh/Oes8EydfnxYkCAwEAAaOCAe8wggHrMB0GA1UdDgQW
BBSFvxHQuvHZQGhUHhHA5+PQ2xDydzAfBgNVHSMEGDAWgBSr7Sj/zAQONgMsQmFU
lVYrzG70XDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT1NUSU4v
cS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9xLTBvXzh3RURqWURMRUpoVkpWV0s4eHU5RncuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT1NUSU4vaGI4UjBMcngyVUJvVkI0UndP
ZmowTnNROG5jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB
lcAwDQYJKoZIhvcNAQELBQADggEBANpTwpm1xZxTq5wzWyVLYxs9L80wxSw0I8VE
yVS6NkEGjYnx57Jv2bUcVvweSH052PfcSgPo2Oo2thyl74+O3aDZ+8x5PTi8dC1P
GzKI0+hs+RgVQm9LKw8V4lJfZvhD9s18QKU94aGpD0KWHfC5gDoVnXRotv71LUB9
wHN1Yc48Gwnk/7034Kc1EEb6ry80Di1MSxNwLcbxLiILGpUSidl9RUZHG8Kyzg5A
UMI7MXC+TMBZ6BUhLFDdIauMHaWBT2TOk/MMQ5wto1T9xeVdrmAQtI3tTXbcCbvG
iYCeq/iZCCGW9qmeZU7g/vDuuDJsejC5Uf9O21OhJtAVOr2hy7s=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org