Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qBamPw7qs0afp2GFXYW1u0yPLf0.roa
File: qBamPw7qs0afp2GFXYW1u0yPLf0.roa (raw, json)
Hash identifier: F+f+rBTYhQsWBZ5Drta/xV3k6ZOAo/EtKyGHhw3Wjtc=
Subject key identifier: A8:16:A6:3F:0E:EA:B3:46:9F:A7:61:85:5D:85:B5:BB:4C:8F:2D:FD
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0471
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qBamPw7qs0afp2GFXYW1u0yPLf0.roa
Signing time: Thu 15 Sep 2022 02:35:01 +0000
ROA not before: Thu 15 Sep 2022 02:35:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 15 02:35:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A816A63F0EEAB3469FA761855D85B5BB4C8F2DFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:37:d6:e4:df:c8:83:8d:fe:7c:e5:b2:79:21:
2a:76:9a:f6:91:b5:65:5c:40:2c:d6:af:9c:5f:9c:
85:1a:c5:55:ed:54:1a:9f:77:c2:fb:a3:bf:91:a0:
5b:34:fe:ce:17:0b:ea:49:97:4d:79:f2:28:e7:05:
aa:42:ce:0f:19:00:7d:da:b2:a1:93:dd:38:56:dd:
7e:aa:d4:7b:13:d7:43:65:2c:91:ee:a3:5a:a0:16:
6c:44:ec:e2:eb:36:fa:b8:e5:bf:b7:2a:e5:5c:67:
1e:70:ee:cd:15:32:2a:ef:8b:5f:03:9e:1e:61:3a:
ce:73:e8:c1:11:71:dc:75:bd:6b:36:49:98:e1:ad:
77:f5:9e:d2:52:49:79:ab:17:bd:f2:7e:5f:01:c6:
39:96:cc:94:61:14:3a:5c:cf:d2:6b:a6:22:10:f7:
16:98:4a:b9:b1:58:cb:de:6a:27:14:9d:cb:a7:76:
88:04:1f:28:97:7d:bb:8e:ae:87:cb:fa:40:70:97:
97:92:93:40:37:a1:b4:36:e1:60:b4:4b:6b:14:ba:
d0:2a:fc:5b:12:ed:07:fd:39:56:d9:f5:48:82:46:
34:70:00:27:cc:72:93:52:3e:b9:1f:d5:75:7e:d5:
06:bc:29:ef:c0:90:8b:9c:1d:c7:c4:14:40:16:ae:
78:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:16:A6:3F:0E:EA:B3:46:9F:A7:61:85:5D:85:B5:BB:4C:8F:2D:FD
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qBamPw7qs0afp2GFXYW1u0yPLf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:f5:ef:da:e7:a4:58:20:68:8a:09:a5:49:e8:b8:35:c1:95:
b6:52:9c:0e:96:5f:49:2f:6a:05:21:74:ae:7b:f7:5b:bc:dc:
dc:28:2b:ba:be:06:6f:b2:f9:42:0c:7c:90:04:2b:2c:89:66:
b5:9e:da:a1:85:86:53:a3:50:57:e6:76:5a:3a:47:39:27:cf:
27:09:47:6c:b7:a9:bb:e3:09:80:ba:44:eb:77:1b:57:1b:47:
0a:cd:fa:bf:28:76:db:bf:01:06:08:23:73:09:79:71:d4:87:
8b:33:e6:b2:75:3c:83:69:c1:75:75:bb:89:92:ab:da:e7:d8:
02:16:8f:f5:21:2f:9b:a2:5d:71:42:7e:e2:e4:1c:af:e1:b7:
a8:96:87:85:ac:a3:53:cf:1d:4d:dc:ee:4a:cf:1d:87:77:2b:
5a:cc:15:4b:48:e7:6d:f4:7f:86:e5:e5:f4:27:dd:61:63:ad:
4b:87:83:b0:bc:b7:d7:59:b1:fe:49:df:ca:ab:dd:75:e2:79:
5e:1c:93:7d:11:77:1f:80:f5:93:b8:37:bf:01:a3:61:f2:ce:
1b:f5:61:2b:95:c0:f0:d5:53:8d:ad:80:97:cd:d1:c3:1c:1f:
3e:b1:c0:ec:e4:a4:bc:5c:6d:5a:4f:8c:56:df:7b:38:ea:f2:
d2:fb:98:d5
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMjA5MTUw
MjM1MDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE4MTZBNjNGMEVFQUIz
NDY5RkE3NjE4NTVEODVCNUJCNEM4RjJERkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDON9bk38iDjf585bJ5ISp2mvaRtWVcQCzWr5xfnIUaxVXtVBqf
d8L7o7+RoFs0/s4XC+pJl0158ijnBapCzg8ZAH3asqGT3ThW3X6q1HsT10NlLJHu
o1qgFmxE7OLrNvq45b+3KuVcZx5w7s0VMirvi18Dnh5hOs5z6MERcdx1vWs2SZjh
rXf1ntJSSXmrF73yfl8BxjmWzJRhFDpcz9JrpiIQ9xaYSrmxWMveaicUncundogE
HyiXfbuOrofL+kBwl5eSk0A3obQ24WC0S2sUutAq/FsS7Qf9OVbZ9UiCRjRwACfM
cpNSPrkf1XV+1Qa8Ke/AkIucHcfEFEAWrniJAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUqBamPw7qs0afp2GFXYW1u0yPLf0wHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL3FCYW1QdzdxczBhZnAyR0ZY
WVcxdTB5UExmMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
AZXAMA0GCSqGSIb3DQEBCwUAA4IBAQAq9e/a56RYIGiKCaVJ6Lg1wZW2UpwOll9J
L2oFIXSue/dbvNzcKCu6vgZvsvlCDHyQBCssiWa1ntqhhYZTo1BX5nZaOkc5J88n
CUdst6m74wmAukTrdxtXG0cKzfq/KHbbvwEGCCNzCXlx1IeLM+aydTyDacF1dbuJ
kqva59gCFo/1IS+bol1xQn7i5Byv4beoloeFrKNTzx1N3O5Kzx2HdytazBVLSOdt
9H+G5eX0J91hY61Lh4OwvLfXWbH+Sd/Kq9114nleHJN9EXcfgPWTuDe/AaNh8s4b
9WErlcDw1VONrYCXzdHDHB8+scDs5KS8XG1aT4xW33s46vLS+5jV
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:32 2025 by rpki-client