Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rKNWW-UwbWAKp2C0S_IVuEng73c.roa
File: rKNWW-UwbWAKp2C0S_IVuEng73c.roa (raw, json)
Hash identifier: x5/BgetecCYyhnImvvKdnz3wAc1eKPbDEf8A8cs4FL0=
Subject key identifier: AC:A3:56:5B:E5:30:6D:60:0A:A7:60:B4:4B:F2:15:B8:49:E0:EF:77
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0471
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rKNWW-UwbWAKp2C0S_IVuEng73c.roa
Signing time: Thu 15 Sep 2022 02:35:02 +0000
ROA not before: Thu 15 Sep 2022 02:35:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 206729
IP address blocks: 2401:95c0:f001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 15 02:35:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ACA3565BE5306D600AA760B44BF215B849E0EF77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c6:a3:b6:4e:7f:d0:0a:e7:60:bc:85:d1:46:
ce:98:22:b7:44:26:d1:59:0e:64:69:14:ef:31:41:
ff:10:b8:73:22:0a:54:32:eb:45:6f:90:e2:f9:83:
20:97:7e:74:d3:6c:6c:35:fe:5e:67:52:f5:eb:8e:
38:04:64:de:1b:22:fc:b2:37:a6:d4:ed:d4:ff:c2:
98:46:fc:c0:cb:b8:c3:99:08:72:0d:9f:49:f5:1a:
8f:9f:a7:6c:fa:a5:42:13:16:81:42:73:9e:e7:08:
fc:8b:ca:14:ef:83:f0:6b:2f:52:6d:4c:00:6f:10:
ae:97:0a:da:98:d0:f0:22:3e:a9:26:22:f6:88:6a:
be:ac:e6:63:8e:33:6a:b9:9c:9f:df:93:15:26:df:
2d:e7:47:1d:e6:48:6c:62:a8:de:d8:e9:9f:57:f3:
3d:a9:b7:83:89:03:8e:16:37:de:dd:7f:bc:54:e9:
33:2c:cb:b0:b4:1d:5c:47:b1:5a:53:7f:9c:82:32:
a8:41:a3:bd:11:39:e0:79:45:0a:2f:5e:4d:7b:52:
d6:fd:cf:03:37:34:64:1b:85:bb:4f:14:9e:c8:c1:
a1:0b:1f:3b:33:85:c9:9e:79:e0:c6:c8:0c:d2:f3:
dd:4c:5e:3f:e1:d3:0f:49:02:2c:2c:cd:e6:ca:21:
78:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A3:56:5B:E5:30:6D:60:0A:A7:60:B4:4B:F2:15:B8:49:E0:EF:77
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rKNWW-UwbWAKp2C0S_IVuEng73c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:f001::/48
Signature Algorithm: sha256WithRSAEncryption
84:af:b2:70:b9:9a:98:cb:f4:eb:72:f7:18:4d:e7:e8:6d:3d:
50:49:39:9c:84:c7:bc:01:f0:96:d8:af:95:89:d5:cf:dc:1c:
1e:81:c6:71:5c:51:29:1f:8b:03:3f:66:aa:92:2a:ee:8e:3e:
5b:af:2e:f7:92:e1:ee:c4:1d:99:86:7b:7e:79:81:8f:68:c2:
54:f0:93:ec:47:28:17:80:b7:05:37:12:75:42:54:d7:14:6d:
96:d4:1c:ee:8b:c3:df:6d:58:7d:d0:01:71:90:98:16:69:01:
dd:ed:b0:45:08:c9:a8:72:46:3f:70:5d:89:c0:79:28:e4:1d:
ff:58:46:cd:02:8f:f0:6c:c4:27:bc:d7:95:ef:50:27:04:b6:
dc:0e:e3:ae:87:db:2f:a2:26:dc:6f:d4:f9:93:47:4b:76:75:
3f:51:11:26:d7:15:6e:9c:86:dc:02:16:b5:e7:ae:a9:0c:31:
0f:8a:c5:6c:76:6d:33:5f:f2:e8:07:76:80:8c:1b:5b:11:77:
35:b5:9a:9e:68:db:2a:cf:6a:64:e3:8c:5e:c9:ac:87:30:3e:
a5:55:90:b4:09:93:4b:5e:28:54:61:e6:5f:39:f4:f3:6f:80:
24:d9:67:53:75:86:31:a8:58:b7:e4:a8:ec:ad:dd:fe:d5:41:
15:4e:a9:b3
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMjA5MTUw
MjM1MDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFDQTM1NjVCRTUzMDZE
NjAwQUE3NjBCNDRCRjIxNUI4NDlFMEVGNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKxqO2Tn/QCudgvIXRRs6YIrdEJtFZDmRpFO8xQf8QuHMiClQy
60VvkOL5gyCXfnTTbGw1/l5nUvXrjjgEZN4bIvyyN6bU7dT/wphG/MDLuMOZCHIN
n0n1Go+fp2z6pUITFoFCc57nCPyLyhTvg/BrL1JtTABvEK6XCtqY0PAiPqkmIvaI
ar6s5mOOM2q5nJ/fkxUm3y3nRx3mSGxiqN7Y6Z9X8z2pt4OJA44WN97df7xU6TMs
y7C0HVxHsVpTf5yCMqhBo70ROeB5RQovXk17Utb9zwM3NGQbhbtPFJ7IwaELHzsz
hcmeeeDGyAzS891MXj/h0w9JAiwszebKIXirAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUrKNWW+UwbWAKp2C0S/IVuEng73cwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL3JLTldXLVV3YldBS3AyQzBT
X0lWdUVuZzczYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
AZXA8AEwDQYJKoZIhvcNAQELBQADggEBAISvsnC5mpjL9Oty9xhN5+htPVBJOZyE
x7wB8JbYr5WJ1c/cHB6BxnFcUSkfiwM/ZqqSKu6OPluvLveS4e7EHZmGe355gY9o
wlTwk+xHKBeAtwU3EnVCVNcUbZbUHO6Lw99tWH3QAXGQmBZpAd3tsEUIyahyRj9w
XYnAeSjkHf9YRs0Cj/BsxCe815XvUCcEttwO466H2y+iJtxv1PmTR0t2dT9RESbX
FW6chtwCFrXnrqkMMQ+KxWx2bTNf8ugHdoCMG1sRdzW1mp5o2yrPamTjjF7JrIcw
PqVVkLQJk0teKFRh5l859PNvgCTZZ1N1hjGoWLfkqOyt3f7VQRVOqbM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org