Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/Bm6YiGZIGoCREWjxojiad_gQm_A.roa
File: Bm6YiGZIGoCREWjxojiad_gQm_A.roa (raw, json)
Hash identifier: M4NpOBCH0j5Yk5gy8j/zmhTydj9Y/8xNK8Ft9Ns5InM=
Subject key identifier: 06:6E:98:88:66:48:1A:80:91:11:68:F1:A2:38:9A:77:F8:10:9B:F0
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0901
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Bm6YiGZIGoCREWjxojiad_gQm_A.roa
Signing time: Sun 07 Feb 2021 11:54:44 +0000
ROA not before: Sun 07 Feb 2021 11:54:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18018
IP address blocks: 58.86.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305 (0x901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 7 11:54:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=066E988866481A80911168F1A2389A77F8109BF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2d:87:7a:3a:ee:99:bb:86:53:e5:a5:bf:f1:
f0:72:09:04:71:1a:2a:43:3b:b5:a6:37:51:6c:e0:
f9:83:db:3a:0d:24:a3:20:77:88:c4:a0:b3:7f:25:
35:63:b2:ef:5d:b9:36:fe:0d:96:04:c2:ce:72:21:
cf:43:ea:3b:39:7a:6e:d6:50:3d:01:f3:72:51:bb:
07:11:42:60:8e:99:f1:12:4f:a1:6e:4c:0b:3a:15:
a5:25:26:34:f8:79:42:ea:0b:bb:a9:04:7b:39:81:
fe:e0:c3:1b:5d:83:40:d3:d2:d3:ce:1f:8c:99:79:
93:c3:0a:64:b8:d2:db:e0:1d:20:a0:4e:4b:85:64:
f1:8f:0e:2f:f2:bb:50:7e:df:fb:e1:72:a4:01:25:
4c:a6:61:68:17:05:16:0b:26:f4:c7:47:43:34:df:
f4:69:b3:05:6c:09:d7:13:b7:8f:af:0c:ac:a0:43:
15:29:7c:f5:09:de:00:62:51:e3:cc:57:66:cb:6b:
c7:2e:3c:db:88:39:a3:71:7d:06:eb:a7:a3:5f:02:
1a:b0:44:ac:db:79:b1:f8:98:bb:ad:06:a4:4b:88:
5d:23:f7:40:5e:ad:5f:6e:1d:cd:c4:6a:f6:a4:c2:
a7:b2:e7:c6:28:bd:94:a5:8a:20:f3:9b:c6:3f:0a:
f1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6E:98:88:66:48:1A:80:91:11:68:F1:A2:38:9A:77:F8:10:9B:F0
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Bm6YiGZIGoCREWjxojiad_gQm_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.46.0/24
Signature Algorithm: sha256WithRSAEncryption
76:5c:fa:80:38:a9:6f:c9:05:ba:3e:ce:d0:df:65:08:3f:ac:
d5:5c:db:02:87:e5:b5:78:b6:1d:ea:83:25:11:75:0b:02:b2:
cc:54:3e:0b:15:f1:bf:05:d1:a6:60:ef:3d:d3:13:c2:07:8c:
d7:38:12:22:06:6d:70:38:28:2e:e8:66:1f:f3:2d:90:03:e6:
19:9a:5c:61:6c:1a:46:cb:3a:a0:9e:28:07:3f:51:e9:2e:27:
91:42:1a:57:b0:18:4e:5b:5e:2b:5d:3e:fc:54:53:65:a0:2e:
94:bf:38:13:4c:ab:b3:9d:b8:4d:39:1b:f5:ac:79:68:8e:a8:
7f:44:fa:fe:9c:b4:9f:33:6c:bd:ce:a4:f5:01:24:0a:63:8b:
a7:aa:28:45:42:c4:eb:b8:ce:1b:ee:41:d8:80:4a:35:7d:33:
e5:bc:c9:22:6e:e0:e9:fd:04:12:65:fd:9d:b8:ff:b3:f8:78:
d0:d0:be:65:0e:38:2b:1b:17:1f:f6:a4:5a:56:1e:a5:a1:ce:
f9:91:39:fd:45:9e:17:a0:c5:15:dd:e6:9d:32:d2:e0:34:5c:
88:aa:d3:d6:1f:43:34:da:8c:e3:6c:6c:27:e7:4f:1e:78:9c:
33:bc:35:c6:f0:74:06:45:61:06:ca:2a:93:c1:d8:bd:7f:f3:
39:e3:b4:01
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yMTAyMDcx
MTU0NDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA2NkU5ODg4NjY0ODFB
ODA5MTExNjhGMUEyMzg5QTc3RjgxMDlCRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtLYd6Ou6Zu4ZT5aW/8fByCQRxGipDO7WmN1Fs4PmD2zoNJKMg
d4jEoLN/JTVjsu9duTb+DZYEws5yIc9D6js5em7WUD0B83JRuwcRQmCOmfEST6Fu
TAs6FaUlJjT4eULqC7upBHs5gf7gwxtdg0DT0tPOH4yZeZPDCmS40tvgHSCgTkuF
ZPGPDi/yu1B+3/vhcqQBJUymYWgXBRYLJvTHR0M03/RpswVsCdcTt4+vDKygQxUp
fPUJ3gBiUePMV2bLa8cuPNuIOaNxfQbrp6NfAhqwRKzbebH4mLutBqRLiF0j90Be
rV9uHc3Eavakwqey58YovZSliiDzm8Y/CvHXAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUBm6YiGZIGoCREWjxojiad/gQm/AwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0JtNllpR1pJR29DUkVXanhvamlhZF9n
UW1fQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6Vi4wDQYJ
KoZIhvcNAQELBQADggEBAHZc+oA4qW/JBbo+ztDfZQg/rNVc2wKH5bV4th3qgyUR
dQsCssxUPgsV8b8F0aZg7z3TE8IHjNc4EiIGbXA4KC7oZh/zLZAD5hmaXGFsGkbL
OqCeKAc/UekuJ5FCGlewGE5bXitdPvxUU2WgLpS/OBNMq7OduE05G/WseWiOqH9E
+v6ctJ8zbL3OpPUBJApji6eqKEVCxOu4zhvuQdiASjV9M+W8ySJu4On9BBJl/Z24
/7P4eNDQvmUOOCsbFx/2pFpWHqWhzvmROf1FnhegxRXd5p0y0uA0XIiq09YfQzTa
jONsbCfnTx54nDO8NcbwdAZFYQbKKpPB2L1/8znjtAE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org