Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/jO1sNAndc9QNpMZdeJMKy2D1yzM.roa
File: jO1sNAndc9QNpMZdeJMKy2D1yzM.roa (raw, json)
Hash identifier: mno6czy6MaXbLdoyVRQBuAA68SnXp/qswaWkThIbVV4=
Subject key identifier: 8C:ED:6C:34:09:DD:73:D4:0D:A4:C6:5D:78:93:0A:CB:60:F5:CB:33
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 09B0
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/jO1sNAndc9QNpMZdeJMKy2D1yzM.roa
Signing time: Wed 29 Sep 2021 02:40:43 +0000
ROA not before: Wed 29 Sep 2021 02:40:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18018
IP address blocks: 58.86.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2480 (0x9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 29 02:40:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8CED6C3409DD73D40DA4C65D78930ACB60F5CB33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:5b:bf:93:6e:61:fe:e6:1b:eb:de:4b:98:
b0:e7:26:ea:74:d1:8f:ec:f2:f2:40:66:60:f8:7c:
8c:5a:23:84:f7:d6:ee:14:ca:84:1a:c4:f1:1a:3c:
52:2e:a8:73:e8:ce:7b:44:46:15:d1:a7:00:72:d1:
fc:ed:e8:ae:e1:b6:2c:a4:cf:29:98:1a:1f:f1:2b:
92:af:22:24:df:0a:a2:22:db:9b:2e:09:2d:3e:3b:
c4:6f:e8:13:85:ef:4e:10:b5:06:7d:f1:61:58:ea:
ed:02:aa:34:79:89:4b:f8:c0:6b:d7:67:d1:17:ec:
94:a6:b8:ec:8f:1d:8a:7c:30:59:dd:b9:a8:2e:6e:
15:2f:99:88:b9:0b:03:de:17:09:6f:8e:33:10:b1:
2f:fd:58:c9:5c:ef:fe:96:7d:9b:10:44:7d:97:14:
69:db:1a:74:34:df:b0:38:10:d5:59:bf:a0:e9:d9:
13:51:1e:aa:bf:89:ef:a9:30:1f:d7:4c:3b:b2:b5:
b6:00:5c:b7:32:7c:28:62:5a:f1:6a:f9:19:1c:a4:
f2:3c:a0:b7:fc:47:12:26:58:49:4a:6a:a5:5d:f5:
4c:71:3f:94:1f:d3:33:15:c3:72:88:80:76:ad:e5:
ec:1f:7b:e4:0b:92:25:d4:2a:1e:74:a0:21:7b:37:
f1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:ED:6C:34:09:DD:73:D4:0D:A4:C6:5D:78:93:0A:CB:60:F5:CB:33
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/jO1sNAndc9QNpMZdeJMKy2D1yzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.46.0/24
Signature Algorithm: sha256WithRSAEncryption
83:4f:0f:5c:32:0e:63:f9:34:0d:79:fe:c4:92:06:6a:fc:40:
21:91:85:a5:e3:a5:a3:14:83:74:9e:d9:bc:96:10:81:5a:e6:
c9:09:9a:6f:22:ea:c2:e8:c2:9f:ae:62:3b:cf:5c:f5:a4:0c:
73:51:18:06:28:5a:3f:ee:47:3b:cf:32:06:5d:70:4c:a8:e1:
c3:ab:dc:e6:b1:fb:5d:bd:c3:e3:43:e4:26:97:52:31:46:97:
cf:f7:02:53:c8:c9:2b:b1:1c:f4:bf:11:19:2a:9b:a2:01:db:
8f:cf:94:89:bc:4b:ff:8d:a0:d7:f1:89:b5:0f:86:18:f1:37:
b4:7b:47:16:4c:d0:f3:32:0e:de:21:26:a4:24:0c:81:de:37:
5c:70:b9:b8:ca:d6:10:6a:14:a5:97:fa:82:11:76:74:6e:27:
65:63:ca:b0:58:01:3c:e6:be:a3:75:80:e9:74:43:d5:90:05:
fa:da:46:56:a3:b6:46:99:ca:d2:d2:8c:19:bc:27:10:59:e7:
ae:a7:07:a9:7b:37:77:53:63:3f:cc:02:6d:72:28:e9:b6:b5:
fa:a5:4a:1a:1c:fa:49:34:6c:86:a7:9f:58:ec:31:c2:e0:c4:
a0:c0:ca:e6:02:60:00:5f:dc:a8:4d:3a:6d:fd:06:f8:e3:36:
66:3f:8e:4d
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yMTA5Mjkw
MjQwNDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhDRUQ2QzM0MDlERDcz
RDQwREE0QzY1RDc4OTMwQUNCNjBGNUNCMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIBlu/k25h/uYb695LmLDnJup00Y/s8vJAZmD4fIxaI4T31u4U
yoQaxPEaPFIuqHPozntERhXRpwBy0fzt6K7htiykzymYGh/xK5KvIiTfCqIi25su
CS0+O8Rv6BOF704QtQZ98WFY6u0CqjR5iUv4wGvXZ9EX7JSmuOyPHYp8MFnduagu
bhUvmYi5CwPeFwlvjjMQsS/9WMlc7/6WfZsQRH2XFGnbGnQ037A4ENVZv6Dp2RNR
Hqq/ie+pMB/XTDuytbYAXLcyfChiWvFq+RkcpPI8oLf8RxImWElKaqVd9UxxP5Qf
0zMVw3KIgHat5ewfe+QLkiXUKh50oCF7N/GxAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUjO1sNAndc9QNpMZdeJMKy2D1yzMwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL2pPMXNOQW5kYzlRTnBNWmRlSk1LeTJE
MXl6TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6Vi4wDQYJ
KoZIhvcNAQELBQADggEBAINPD1wyDmP5NA15/sSSBmr8QCGRhaXjpaMUg3Se2byW
EIFa5skJmm8i6sLowp+uYjvPXPWkDHNRGAYoWj/uRzvPMgZdcEyo4cOr3Oax+129
w+ND5CaXUjFGl8/3AlPIySuxHPS/ERkqm6IB24/PlIm8S/+NoNfxibUPhhjxN7R7
RxZM0PMyDt4hJqQkDIHeN1xwubjK1hBqFKWX+oIRdnRuJ2VjyrBYATzmvqN1gOl0
Q9WQBfraRlajtkaZytLSjBm8JxBZ566nB6l7N3dTYz/MAm1yKOm2tfqlShoc+kk0
bIann1jsMcLgxKDAyuYCYABf3KhNOm39BvjjNmY/jk0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org