Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/GnHF1WtOLVro-ulc--SEmXe1COI.roa
File: GnHF1WtOLVro-ulc--SEmXe1COI.roa (raw, json)
Hash identifier: Bqd90vaEMYSPybK4dBnNXSaqw/eDUiGyCnXfvnbTzJc=
Subject key identifier: 1A:71:C5:D5:6B:4E:2D:5A:E8:FA:E9:5C:FB:E4:84:99:77:B5:08:E2
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0A49
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/GnHF1WtOLVro-ulc--SEmXe1COI.roa
Signing time: Thu 15 Sep 2022 02:41:59 +0000
ROA not before: Thu 15 Sep 2022 02:41:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18411
IP address blocks: 61.56.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 15 02:41:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A71C5D56B4E2D5AE8FAE95CFBE4849977B508E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:74:95:11:2d:5b:e2:29:e3:bf:98:3c:a9:27:
dc:ee:92:d6:ab:56:07:8b:cc:77:64:6e:e9:ce:b6:
30:7a:45:7f:71:bc:51:f0:0a:af:45:73:8c:a6:59:
27:18:b5:6d:40:ac:64:36:28:60:0f:64:60:61:9b:
29:ad:f5:09:15:6a:6d:b0:4c:93:01:67:f7:23:bf:
44:dd:1b:2d:97:a5:d4:13:a4:6f:52:97:09:2a:d5:
fb:07:10:71:fd:05:60:79:30:34:8a:a8:9e:eb:83:
8e:7b:75:c8:41:cc:5b:8e:cc:87:a1:83:f0:70:7f:
f6:58:30:af:0e:35:39:dc:67:91:1d:e3:2d:09:80:
ad:a7:cc:28:2e:7c:7c:51:0d:a7:2f:bc:e6:8b:6d:
63:49:6b:57:87:b4:34:c2:cc:28:e0:89:9f:e6:2c:
84:84:fd:9c:12:ce:a6:c4:0e:fc:8e:9c:32:3e:23:
58:f1:ab:25:96:d6:2e:2a:39:a1:80:7f:99:d7:39:
3d:88:73:3b:f2:35:6c:92:6d:a8:40:12:84:c4:50:
ca:2b:16:fd:c4:8d:98:dd:8c:7a:74:21:49:cd:3e:
5c:1e:36:25:71:52:29:52:37:c6:c7:8a:67:8c:f4:
0d:31:d0:8f:a7:f5:c9:3b:66:07:7f:0d:ec:23:98:
76:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:71:C5:D5:6B:4E:2D:5A:E8:FA:E9:5C:FB:E4:84:99:77:B5:08:E2
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/GnHF1WtOLVro-ulc--SEmXe1COI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.16.0/20
Signature Algorithm: sha256WithRSAEncryption
06:4d:73:8e:a9:1d:4f:33:d6:5c:3b:fe:26:7d:22:f2:41:de:
50:af:c3:01:2a:d5:97:94:09:e0:12:d0:30:29:ec:d3:1c:59:
d2:24:d1:8e:8b:2d:de:b9:29:da:48:f0:2e:54:8b:f3:66:aa:
31:f9:2a:09:b1:a5:51:74:59:4e:2d:e3:73:ba:81:7a:e1:6e:
99:d8:e0:90:f8:af:f7:32:c3:06:b6:81:0f:11:ce:71:cd:66:
c0:1a:96:39:0f:58:0c:93:18:b9:5c:05:03:06:e1:d6:e9:41:
d4:e3:40:ab:1c:54:95:d2:6f:33:14:bd:07:15:02:99:46:2d:
0e:67:d7:f7:80:98:85:b1:c7:0b:bb:da:02:b3:8b:75:fd:82:
6f:27:e1:b0:ca:23:21:01:96:d0:2a:c2:07:35:83:c1:44:9f:
12:f2:aa:05:eb:08:ce:77:9b:d3:1f:a2:f4:11:bf:cb:28:74:
bd:9b:f8:01:d7:25:f1:41:cc:38:a6:e2:35:f5:a2:96:a1:e7:
dc:7c:92:1a:a2:5c:95:b8:5a:2d:99:3b:ca:f1:d5:0f:88:2a:
ed:db:c2:9c:c7:bb:e5:a6:5a:2f:5e:bf:70:c9:c4:30:66:82:
28:d8:b8:6c:0c:50:cb:5d:31:0d:4a:7c:a6:fc:0a:fa:c2:8e:
b2:6f:3c:ff
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD
NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yMjA5MTUw
MjQxNTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBNzFDNUQ1NkI0RTJE
NUFFOEZBRTk1Q0ZCRTQ4NDk5NzdCNTA4RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjdJURLVviKeO/mDypJ9zuktarVgeLzHdkbunOtjB6RX9xvFHw
Cq9Fc4ymWScYtW1ArGQ2KGAPZGBhmymt9QkVam2wTJMBZ/cjv0TdGy2XpdQTpG9S
lwkq1fsHEHH9BWB5MDSKqJ7rg457dchBzFuOzIehg/Bwf/ZYMK8ONTncZ5Ed4y0J
gK2nzCgufHxRDacvvOaLbWNJa1eHtDTCzCjgiZ/mLISE/ZwSzqbEDvyOnDI+I1jx
qyWW1i4qOaGAf5nXOT2IczvyNWySbahAEoTEUMorFv3EjZjdjHp0IUnNPlweNiVx
UilSN8bHimeM9A0x0I+n9ck7Zgd/DewjmHZLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUGnHF1WtOLVro+ulc++SEmXe1COIwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ
pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv
bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9HbkhGMVd0T0xWcm8tdWxjLS1T
RW1YZTFDT0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTgQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAGTXOOqR1PM9ZcO/4mfSLyQd5Qr8MBKtWXlAng
EtAwKezTHFnSJNGOiy3euSnaSPAuVIvzZqox+SoJsaVRdFlOLeNzuoF64W6Z2OCQ
+K/3MsMGtoEPEc5xzWbAGpY5D1gMkxi5XAUDBuHW6UHU40CrHFSV0m8zFL0HFQKZ
Ri0OZ9f3gJiFsccLu9oCs4t1/YJvJ+GwyiMhAZbQKsIHNYPBRJ8S8qoF6wjOd5vT
H6L0Eb/LKHS9m/gB1yXxQcw4puI19aKWoefcfJIaolyVuFotmTvK8dUPiCrt28Kc
x7vlplovXr9wycQwZoIo2LhsDFDLXTENSnym/Ar6wo6ybzz/
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:16 2025 by rpki-client