Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QKrU59ya2SuI7weStcLfwCLLMMs.roa
File: QKrU59ya2SuI7weStcLfwCLLMMs.roa (raw, json)
Hash identifier: qyGfMDvorwqui/9ljzYLZv6NIyJvstPr5d5hxb8LHgY=
Subject key identifier: 40:AA:D4:E7:DC:9A:D9:2B:88:EF:07:92:B5:C2:DF:C0:22:CB:30:CB
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 049A
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QKrU59ya2SuI7weStcLfwCLLMMs.roa
Signing time: Fri 18 Sep 2020 09:06:23 +0000
ROA not before: Fri 18 Sep 2020 09:06:23 +0000
ROA not after: Tue 02 Feb 2021 02:24:15 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1178 (0x49a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 18 09:06:23 2020 GMT
Not After : Feb 2 02:24:15 2021 GMT
Subject: CN=40AAD4E7DC9AD92B88EF0792B5C2DFC022CB30CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:63:20:bd:a8:ef:65:73:d5:5b:a1:96:4b:4e:
27:f8:44:b8:2e:e1:98:22:50:2d:fd:a4:d1:d0:4d:
31:4f:d9:ae:cd:77:99:15:a2:98:a5:99:96:77:a9:
98:9f:19:31:7e:42:a7:05:4b:64:e4:4e:2f:05:f0:
13:60:7b:32:8d:19:c9:e7:48:1a:06:93:c0:fb:1f:
40:5f:df:1e:36:28:73:6e:25:f8:be:d4:e3:9c:ee:
c4:21:98:f5:15:e9:ed:d6:cc:22:96:1b:70:f6:5a:
8e:90:d4:37:87:43:07:0c:15:9a:d8:44:a5:18:05:
a9:ef:26:7c:64:f4:72:c9:26:61:80:a7:02:5c:db:
4b:21:c3:6c:5a:f4:d5:2f:6f:11:c9:bb:0d:6b:ab:
81:bb:73:ee:61:8a:ba:c0:98:3e:8a:0b:25:a2:f6:
90:35:04:b8:2c:fd:c1:5e:06:71:66:b7:a8:96:90:
8e:c7:3d:66:aa:a6:a3:ea:bf:44:1b:2e:b2:09:97:
74:7f:5f:65:e2:33:3f:e1:5d:f8:17:b9:ac:2c:20:
28:fa:77:29:35:96:72:c8:f8:aa:cb:86:72:2a:3a:
e5:59:8b:46:bc:6b:78:0e:fb:18:5b:81:91:93:45:
b0:e4:71:3a:50:fc:33:da:52:32:16:ac:00:67:dd:
f0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AA:D4:E7:DC:9A:D9:2B:88:EF:07:92:B5:C2:DF:C0:22:CB:30:CB
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QKrU59ya2SuI7weStcLfwCLLMMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
cc:60:73:48:9d:44:b3:5c:18:35:7e:c3:31:dd:65:28:64:1a:
a5:54:fc:41:f5:d6:0b:77:b3:4e:70:61:22:22:0e:2d:4b:2f:
3d:7d:e2:e3:d2:ce:af:16:56:7d:69:22:d2:21:62:79:9c:02:
11:20:41:70:76:2c:6d:70:b5:03:fb:ce:79:1b:f0:58:46:1c:
a1:a7:10:38:26:88:fc:24:08:93:37:96:95:26:27:6d:55:d8:
d3:33:84:35:6c:bf:13:f5:ab:53:cb:9a:99:a5:06:9e:53:8b:
6d:ef:bd:f0:4f:89:99:01:cb:ae:32:84:1b:18:af:2d:9b:a4:
8e:5e:23:4c:99:59:87:99:42:22:8d:4c:de:07:19:e9:08:52:
f9:b4:3b:2c:01:bf:1a:8a:02:32:8b:6b:8e:57:61:5a:7b:bb:
ed:53:44:57:f8:71:93:23:e2:51:43:86:9a:cb:69:9a:98:b1:
69:78:b1:68:c3:c8:a3:e3:e1:7b:67:d7:92:20:a9:a8:f3:9b:
0d:8a:b2:19:78:0a:5d:65:5f:d8:10:0b:21:26:84:1b:c8:7e:
f1:e0:55:71:d4:14:28:19:e2:ec:36:fc:0f:10:78:79:4c:6c:
9d:18:c4:2c:53:f1:11:7c:1a:0e:c1:39:29:29:b0:7e:cb:5f:
36:56:e1:cb
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICBJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz
OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yMDA5MTgw
OTA2MjNaFw0yMTAyMDIwMjI0MTVaMDMxMTAvBgNVBAMTKDQwQUFENEU3REM5QUQ5
MkI4OEVGMDc5MkI1QzJERkMwMjJDQjMwQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrYyC9qO9lc9VboZZLTif4RLgu4ZgiUC39pNHQTTFP2a7Nd5kV
opilmZZ3qZifGTF+QqcFS2TkTi8F8BNgezKNGcnnSBoGk8D7H0Bf3x42KHNuJfi+
1OOc7sQhmPUV6e3WzCKWG3D2Wo6Q1DeHQwcMFZrYRKUYBanvJnxk9HLJJmGApwJc
20shw2xa9NUvbxHJuw1rq4G7c+5hirrAmD6KCyWi9pA1BLgs/cFeBnFmt6iWkI7H
PWaqpqPqv0QbLrIJl3R/X2XiMz/hXfgXuawsICj6dyk1lnLI+KrLhnIqOuVZi0a8
a3gO+xhbgZGTRbDkcTpQ/DPaUjIWrABn3fBbAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUQKrU59ya2SuI7weStcLfwCLLMMswHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh
CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ
Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC9RS3JVNTl5YTJTdUk3
d2VTdGNMZndDTExNTXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAW4wDANBgkqhkiG9w0BAQsFAAOCAQEAzGBzSJ1Es1wYNX7DMd1lKGQapVT8
QfXWC3ezTnBhIiIOLUsvPX3i49LOrxZWfWki0iFieZwCESBBcHYsbXC1A/vOeRvw
WEYcoacQOCaI/CQIkzeWlSYnbVXY0zOENWy/E/WrU8uamaUGnlOLbe+98E+JmQHL
rjKEGxivLZukjl4jTJlZh5lCIo1M3gcZ6QhS+bQ7LAG/GooCMotrjldhWnu77VNE
V/hxkyPiUUOGmstpmpixaXixaMPIo+Phe2fXkiCpqPObDYqyGXgKXWVf2BALISaE
G8h+8eBVcdQUKBni7Db8DxB4eUxsnRjELFPxEXwaDsE5KSmwfstfNlbhyw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org