Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/WyFLm8mQvJJKSC0RSOhSs3Jqt7I.roa
File: WyFLm8mQvJJKSC0RSOhSs3Jqt7I.roa (raw, json)
Hash identifier: EHK7m/e4/i2CN4LGGBC4lfYBLnFNS3RO9V7dp6FRH1s=
Subject key identifier: 5B:21:4B:9B:C9:90:BC:92:4A:48:2D:11:48:E8:52:B3:72:6A:B7:B2
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0991
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/WyFLm8mQvJJKSC0RSOhSs3Jqt7I.roa
Signing time: Wed 29 Sep 2021 02:38:08 +0000
ROA not before: Wed 29 Sep 2021 02:38:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 61.60.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2449 (0x991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 02:38:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5B214B9BC990BC924A482D1148E852B3726AB7B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a9:3f:16:6c:ca:35:d6:20:39:98:c0:29:d1:
13:b3:ff:fd:4f:7c:57:44:b7:7e:1b:b2:91:cc:a9:
16:3e:8b:ba:10:bb:c7:57:a3:77:f6:cd:bf:24:92:
80:68:b5:03:e4:56:dc:ae:02:55:1e:fd:43:83:29:
0c:65:f9:2c:b8:a7:59:3e:49:e2:e6:01:8d:a2:03:
b1:ef:1a:22:4a:21:63:0d:2a:83:a7:14:e8:ca:d1:
2d:53:42:be:b1:1b:25:46:e5:ba:6c:42:83:db:1d:
86:56:ae:8e:19:18:51:54:fb:c6:46:a5:86:72:a2:
a8:cc:2b:02:9b:45:d0:53:af:a7:ee:7b:80:52:1f:
a3:f1:a7:0e:be:8e:e9:c1:7d:f6:37:b7:cc:b6:73:
09:96:60:4e:69:0a:fa:2d:ec:f1:96:43:71:40:a7:
4b:5f:2b:61:f6:dd:0f:32:a5:81:ba:bb:07:38:c8:
ab:72:60:49:41:44:2a:3f:e0:12:e7:8f:bc:b3:c1:
bd:8c:81:03:d8:b2:89:26:4c:8f:4a:d4:fa:b6:7b:
30:6d:15:27:1a:92:8c:51:ba:83:95:88:2d:63:1a:
10:70:1f:bd:cd:fe:9b:6c:a2:5c:87:c2:95:e8:85:
ad:81:77:90:2b:9d:2d:9b:d0:89:cf:21:50:8f:cc:
0b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:21:4B:9B:C9:90:BC:92:4A:48:2D:11:48:E8:52:B3:72:6A:B7:B2
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/WyFLm8mQvJJKSC0RSOhSs3Jqt7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.0.0/17
Signature Algorithm: sha256WithRSAEncryption
42:a6:55:05:a6:13:b7:56:3e:b0:7b:43:2a:5a:52:a1:4c:9d:
d9:74:69:58:d5:4b:00:91:29:6d:c3:00:81:af:ac:e4:31:5f:
08:4e:4d:54:29:f3:ed:dc:88:c8:e0:11:4e:d3:cc:55:07:4f:
2b:16:5b:4b:9f:39:e6:f4:71:81:69:33:28:88:1d:fa:70:53:
13:da:02:68:16:a8:3d:e3:2e:86:22:6e:8d:c6:a9:97:09:71:
b1:c0:5a:1f:f5:ee:b6:d7:ad:53:44:a1:e3:32:88:1f:72:41:
31:47:51:e7:18:77:76:1c:77:c5:e9:08:6f:a0:23:99:6f:9a:
16:f2:6e:0d:78:2d:b3:3e:99:e2:a5:54:1d:53:88:1d:8d:b2:
92:72:99:95:7b:fb:40:8a:d5:ec:70:92:48:43:79:c0:92:34:
0f:66:7f:8b:dc:e1:fd:e0:04:54:30:14:eb:3d:10:e9:15:6f:
18:4b:c3:d1:99:d7:9e:e2:53:47:1e:2b:c4:61:39:68:ee:6a:
18:3f:b4:4e:00:ae:91:d6:fa:fa:03:4a:9a:25:51:14:3c:6c:
f4:f9:6a:58:a0:b9:80:fc:08:e8:97:88:85:72:95:a3:57:ef:
e6:d5:77:4d:c4:5f:fc:28:f2:2d:ec:07:a5:ab:7b:c1:61:f4:
6b:25:87:5d
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMTA5Mjkw
MjM4MDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDVCMjE0QjlCQzk5MEJD
OTI0QTQ4MkQxMTQ4RTg1MkIzNzI2QUI3QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGqT8WbMo11iA5mMAp0ROz//1PfFdEt34bspHMqRY+i7oQu8dX
o3f2zb8kkoBotQPkVtyuAlUe/UODKQxl+Sy4p1k+SeLmAY2iA7HvGiJKIWMNKoOn
FOjK0S1TQr6xGyVG5bpsQoPbHYZWro4ZGFFU+8ZGpYZyoqjMKwKbRdBTr6fue4BS
H6Pxpw6+junBffY3t8y2cwmWYE5pCvot7PGWQ3FAp0tfK2H23Q8ypYG6uwc4yKty
YElBRCo/4BLnj7yzwb2MgQPYsokmTI9K1Pq2ezBtFScakoxRuoOViC1jGhBwH73N
/ptsolyHwpXoha2Bd5ArnS2b0InPIVCPzAuhAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUWyFLm8mQvJJKSC0RSOhSs3Jqt7IwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1d5RkxtOG1RdkpKS1NDMFJTT2hTczNK
cXQ3SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PAAwDQYJ
KoZIhvcNAQELBQADggEBAEKmVQWmE7dWPrB7QypaUqFMndl0aVjVSwCRKW3DAIGv
rOQxXwhOTVQp8+3ciMjgEU7TzFUHTysWW0ufOeb0cYFpMyiIHfpwUxPaAmgWqD3j
LoYibo3GqZcJcbHAWh/17rbXrVNEoeMyiB9yQTFHUecYd3Ycd8XpCG+gI5lvmhby
bg14LbM+meKlVB1TiB2NspJymZV7+0CK1exwkkhDecCSNA9mf4vc4f3gBFQwFOs9
EOkVbxhLw9GZ157iU0ceK8RhOWjuahg/tE4ArpHW+voDSpolURQ8bPT5aliguYD8
COiXiIVylaNX7+bVd03EX/wo8i3sB6Wre8Fh9Gslh10=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org