Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/fbjhgUs-5KCl982PvGFjVJ2QmuA.roa
File: fbjhgUs-5KCl982PvGFjVJ2QmuA.roa (raw, json)
Hash identifier: V0I7Wkenawp+y3vCrN2VyGDKQNoQ+MY3DrTqdFxs4Jw=
Subject key identifier: 7D:B8:E1:81:4B:3E:E4:A0:A5:F7:CD:8F:BC:61:63:54:9D:90:9A:E0
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 094B
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/fbjhgUs-5KCl982PvGFjVJ2QmuA.roa
Signing time: Wed 29 Sep 2021 02:45:17 +0000
ROA not before: Wed 29 Sep 2021 02:45:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18413
IP address blocks: 61.65.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Sep 29 02:45:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7DB8E1814B3EE4A0A5F7CD8FBC6163549D909AE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:da:08:49:1e:5a:cc:fb:ce:77:78:76:e3:
63:82:b9:53:30:90:b8:76:52:24:d0:a7:79:21:e5:
1e:8e:9f:7b:dd:66:86:6a:5d:3a:11:b6:75:66:af:
4b:4c:69:a9:ea:c2:dd:51:73:37:57:23:ce:de:2e:
fe:88:55:4c:84:10:6b:29:2b:49:dd:36:ba:b1:ef:
49:2a:b6:3c:1a:4d:20:36:eb:98:0a:45:2c:cc:e9:
2a:60:33:dc:a6:db:c2:36:5f:c2:5a:d9:df:5a:81:
b5:ff:38:63:da:9b:2f:22:0b:cb:d6:19:84:c2:24:
11:07:f9:1e:b7:56:e3:3e:37:e8:0d:8d:37:f5:f9:
04:0b:e1:a1:08:2c:cd:29:c5:9a:4f:97:0e:8f:fe:
37:a6:f5:77:1e:94:eb:2d:ff:5c:47:3f:98:3e:96:
90:9a:60:e3:0f:45:24:bc:a3:d4:11:29:02:24:da:
28:67:74:23:79:45:36:7c:fb:4d:d6:06:d9:a4:03:
62:d0:d0:96:2c:ef:ab:60:d6:5a:93:47:79:08:4d:
66:e5:cb:6f:41:fa:b2:1c:8b:74:29:87:26:fd:a3:
71:8a:7e:57:f2:89:45:ec:b3:0a:2a:b7:4b:c8:b5:
64:bb:86:b5:ce:cd:6b:70:e7:bc:8c:52:42:c8:b6:
b7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B8:E1:81:4B:3E:E4:A0:A5:F7:CD:8F:BC:61:63:54:9D:90:9A:E0
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/fbjhgUs-5KCl982PvGFjVJ2QmuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.192.0/19
Signature Algorithm: sha256WithRSAEncryption
40:78:3c:7f:b6:5a:aa:6a:9b:49:a6:25:08:ca:c7:02:54:d1:
55:63:9c:8f:80:ba:9b:d6:12:bf:59:05:41:be:90:df:06:ec:
2a:45:0d:1d:63:ed:11:1e:10:7e:51:9a:9d:0e:b3:f6:6d:ae:
34:00:9d:3f:7b:d2:31:33:e6:24:31:e2:bc:9c:63:44:68:98:
e8:35:01:9c:a8:d9:fa:83:12:14:41:66:0e:71:97:a7:b2:e5:
97:fc:52:5f:2c:b4:93:64:56:bb:90:f8:86:29:1d:49:1b:85:
d6:f0:b9:56:92:3d:45:e9:90:cb:0d:fd:fd:44:69:8f:63:dd:
fb:31:cb:25:2b:55:bf:32:e4:8a:92:c5:3d:29:9f:e8:73:9f:
6d:b8:81:16:a3:4d:fd:85:73:cc:ca:0d:a7:34:80:a1:0b:d1:
58:f5:e7:01:fe:32:f9:5d:71:ec:64:8f:d9:2e:75:74:fe:dd:
ae:56:eb:0e:fc:a2:70:f7:27:50:de:b0:43:91:bb:92:68:a5:
7f:8f:59:3d:3d:6e:e2:96:6f:b7:ed:68:98:84:4c:44:c0:61:
07:60:56:fc:73:24:7e:42:c4:86:05:22:b9:21:3f:6b:99:db:
30:8d:3f:04:9e:ec:04:6e:1f:ed:33:62:21:39:9a:0b:a8:4d:
7b:96:74:6b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB
NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yMTA5Mjkw
MjQ1MTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDdEQjhFMTgxNEIzRUU0
QTBBNUY3Q0Q4RkJDNjE2MzU0OUQ5MDlBRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDm6toISR5azPvOd3h242OCuVMwkLh2UiTQp3kh5R6On3vdZoZq
XToRtnVmr0tMaanqwt1RczdXI87eLv6IVUyEEGspK0ndNrqx70kqtjwaTSA265gK
RSzM6SpgM9ym28I2X8Ja2d9agbX/OGPamy8iC8vWGYTCJBEH+R63VuM+N+gNjTf1
+QQL4aEILM0pxZpPlw6P/jem9XcelOst/1xHP5g+lpCaYOMPRSS8o9QRKQIk2ihn
dCN5RTZ8+03WBtmkA2LQ0JYs76tg1lqTR3kITWbly29B+rIci3Qphyb9o3GKflfy
iUXsswoqt0vItWS7hrXOzWtw57yMUkLItrcbAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUfbjhgUs+5KCl982PvGFjVJ2QmuAwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1
cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y
NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvZmJqaGdVcy01S0NsOTgyUHZHRmpW
SjJRbXVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT1BwDAN
BgkqhkiG9w0BAQsFAAOCAQEAQHg8f7ZaqmqbSaYlCMrHAlTRVWOcj4C6m9YSv1kF
Qb6Q3wbsKkUNHWPtER4QflGanQ6z9m2uNACdP3vSMTPmJDHivJxjRGiY6DUBnKjZ
+oMSFEFmDnGXp7Lll/xSXyy0k2RWu5D4hikdSRuF1vC5VpI9RemQyw39/URpj2Pd
+zHLJStVvzLkipLFPSmf6HOfbbiBFqNN/YVzzMoNpzSAoQvRWPXnAf4y+V1x7GSP
2S51dP7drlbrDvyicPcnUN6wQ5G7kmilf49ZPT1u4pZvt+1omIRMRMBhB2BW/HMk
fkLEhgUiuSE/a5nbMI0/BJ7sBG4f7TNiITmaC6hNe5Z0aw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org