Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/pqzgPTNWgNPjCVLQmYpy1pkywks.roa
File: pqzgPTNWgNPjCVLQmYpy1pkywks.roa (raw, json)
Hash identifier: j40sNixJBmqPT20QkO9koP/Go5bAGSgLK4ACBarlkoc=
Subject key identifier: A6:AC:E0:3D:33:56:80:D3:E3:09:52:D0:99:8A:72:D6:99:32:C2:4B
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0C00
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/pqzgPTNWgNPjCVLQmYpy1pkywks.roa
Signing time: Wed 03 Feb 2021 12:11:37 +0000
ROA not before: Wed 03 Feb 2021 12:11:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38047
IP address blocks: 2404:4fc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3072 (0xc00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Feb 3 12:11:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A6ACE03D335680D3E30952D0998A72D69932C24B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:7d:94:9a:5b:b5:11:fb:32:ea:ef:1f:e9:
31:cf:29:09:46:f1:a8:a4:d3:7d:0d:c0:57:56:a5:
64:fa:f0:66:24:f4:c6:78:53:67:df:57:ea:bf:e6:
ea:bf:50:6d:a5:39:77:d5:61:15:eb:4e:87:ca:7f:
19:7d:06:f0:0e:1b:34:60:92:56:8b:c3:2c:90:d1:
7c:93:1b:85:7a:2c:81:97:e7:72:c5:d8:77:02:c5:
ea:cb:41:10:38:c1:92:ca:3b:73:a7:8a:88:ca:c8:
17:88:c2:f3:c5:e6:94:d0:67:9c:03:47:43:55:5c:
b3:04:32:61:52:18:e5:6a:e2:b5:35:fe:3c:01:90:
9e:ce:7c:28:3e:db:5f:ca:21:92:3f:e5:a9:45:6b:
51:2a:c4:2f:d1:14:a7:88:28:78:57:b9:b0:14:2b:
17:03:47:70:c8:03:17:23:40:70:9a:11:33:70:04:
f6:86:64:68:12:d7:71:18:fa:ec:0b:91:b6:5b:74:
d1:80:7b:37:f2:a5:23:d3:b0:26:2e:69:35:74:69:
40:5a:29:03:b7:10:ff:9c:f2:33:77:26:dc:2f:ba:
4c:bc:a6:7f:76:a6:3c:63:93:82:20:8e:3e:8a:88:
45:96:1e:07:42:f1:40:2e:13:b4:0f:b1:d8:e0:6a:
c4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AC:E0:3D:33:56:80:D3:E3:09:52:D0:99:8A:72:D6:99:32:C2:4B
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/pqzgPTNWgNPjCVLQmYpy1pkywks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
59:46:9b:a9:67:00:9b:ed:8e:bb:88:30:3d:3d:4a:34:71:2e:
2c:49:e6:60:3d:08:6a:72:55:b0:2b:90:5d:e8:cc:57:0c:36:
b6:2c:b7:ec:0e:d0:af:91:d6:28:f9:62:b7:1a:69:9b:ca:ae:
5d:ec:8f:0b:26:98:1c:73:a8:fb:35:b6:8a:ad:d4:64:e2:d9:
30:0e:23:69:eb:f8:49:6d:09:b8:48:1e:cb:39:51:56:21:64:
36:2f:f2:e7:e1:49:42:f8:2b:90:90:60:76:c6:5f:c9:c7:c6:
10:ea:86:23:3e:d0:b3:b4:6b:9c:dc:79:36:f7:b2:c4:1b:33:
f9:ad:7a:2f:9f:4e:f8:de:97:2d:28:7e:7c:e9:22:ba:90:41:
2c:c7:ba:20:c0:ad:ff:c2:31:c3:38:31:1b:ca:9e:da:5d:80:
76:60:4a:10:fa:67:0a:42:40:45:33:ee:91:2a:02:b5:37:4c:
3e:33:59:e4:35:c5:6f:9e:fa:f6:6b:5e:2b:9b:d8:a4:f6:a5:
47:78:91:14:44:51:5d:2d:40:0d:cb:7e:87:3f:71:43:c8:c1:
a4:43:63:55:9c:45:a7:dd:5e:a8:a2:38:e5:64:95:90:90:b1:
77:6a:66:16:0b:45:7f:c4:17:1c:d1:8d:ba:3b:50:c2:da:03:
49:e9:17:97
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODRG
ODUwQzA2NTFCNjk5RTE5MERDOUQ5N0NEMURFMzI2QzE2NEVDNTAeFw0yMTAyMDMx
MjExMzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE2QUNFMDNEMzM1Njgw
RDNFMzA5NTJEMDk5OEE3MkQ2OTkzMkMyNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3UX2Umlu1Efsy6u8f6THPKQlG8aik030NwFdWpWT68GYk9MZ4
U2ffV+q/5uq/UG2lOXfVYRXrTofKfxl9BvAOGzRgklaLwyyQ0XyTG4V6LIGX53LF
2HcCxerLQRA4wZLKO3OniojKyBeIwvPF5pTQZ5wDR0NVXLMEMmFSGOVq4rU1/jwB
kJ7OfCg+21/KIZI/5alFa1EqxC/RFKeIKHhXubAUKxcDR3DIAxcjQHCaETNwBPaG
ZGgS13EY+uwLkbZbdNGAezfypSPTsCYuaTV0aUBaKQO3EP+c8jN3Jtwvuky8pn92
pjxjk4Igjj6KiEWWHgdC8UAuE7QPsdjgasTTAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUpqzgPTNWgNPjCVLQmYpy1pkywkswHwYDVR0jBBgwFoAUhPhQwGUbaZ4ZDcnZ
fNHeMmwWTsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOWVVO
L2hQaFF3R1ViYVo0WkRjblpmTkhlTW13V1RzVS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvaFBoUXdHVWJhWjRaRGNuWmZOSGVNbXdXVHNVLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOWVVOL3BxemdQVE5XZ05QakNWTFFt
WXB5MXBreXdrcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
BE/AMA0GCSqGSIb3DQEBCwUAA4IBAQBZRpupZwCb7Y67iDA9PUo0cS4sSeZgPQhq
clWwK5Bd6MxXDDa2LLfsDtCvkdYo+WK3Gmmbyq5d7I8LJpgcc6j7NbaKrdRk4tkw
DiNp6/hJbQm4SB7LOVFWIWQ2L/Ln4UlC+CuQkGB2xl/Jx8YQ6oYjPtCztGuc3Hk2
97LEGzP5rXovn0743pctKH586SK6kEEsx7ogwK3/wjHDODEbyp7aXYB2YEoQ+mcK
QkBFM+6RKgK1N0w+M1nkNcVvnvr2a14rm9ik9qVHeJEURFFdLUANy36HP3FDyMGk
Q2NVnEWn3V6oojjlZJWQkLF3amYWC0V/xBcc0Y26O1DC2gNJ6ReX
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org