Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/0GNh4BAAfjlIFdeQkzggkDi0oFQ.roa
File: 0GNh4BAAfjlIFdeQkzggkDi0oFQ.roa (raw, json)
Hash identifier: GQFU/UgQ6n7GYyt6MtOTj1VNT8zDmbSEbBUTtEgUl54=
Subject key identifier: D0:63:61:E0:10:00:7E:39:48:15:D7:90:93:38:20:90:38:B4:A0:54
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/0GNh4BAAfjlIFdeQkzggkDi0oFQ.roa
Signing time: Thu 15 Sep 2022 02:49:50 +0000
ROA not before: Thu 15 Sep 2022 02:49:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9918
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D06361E010007E394815D7909338209038B4A054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:59:ea:d1:7b:39:b8:f5:0b:bb:2b:61:3d:cd:
72:dc:74:1b:0c:cc:e6:60:29:36:1c:56:ec:31:3c:
3e:62:cf:4c:65:b6:0d:b0:ca:0b:d5:e2:e7:2c:a8:
25:77:c9:f5:9b:28:4a:85:07:f0:e7:0d:bb:a9:a2:
22:b4:d0:9a:b4:ab:df:34:28:08:1d:d6:52:53:00:
58:92:fe:7d:46:09:69:a6:ca:43:f5:35:05:bc:6d:
4a:57:2b:10:2e:5e:25:ba:66:80:fa:87:57:e5:0b:
11:e4:72:af:db:b9:2a:e1:bb:23:fb:67:ae:26:3a:
c1:61:cc:85:59:79:e8:b7:a4:d1:46:36:fe:d0:83:
c3:71:c9:da:09:af:4a:5e:9a:f4:5d:1c:b5:ab:98:
71:cb:ea:05:68:86:8d:ad:bf:04:6d:e6:60:0f:0e:
81:52:ca:20:1c:94:d9:08:ea:41:c7:1a:d6:d6:1d:
43:54:40:e3:b3:aa:66:a8:0d:c5:4f:e1:a1:f9:40:
ef:fd:01:ac:fe:d9:60:5b:92:df:20:7f:2d:1f:3b:
16:82:04:6f:1d:56:46:10:79:d3:0d:23:34:d8:b1:
11:81:ef:bd:b6:0d:f4:4a:25:04:a8:88:56:54:2f:
0b:45:6f:b2:1c:5a:ce:30:79:7e:97:24:6a:b3:7b:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:63:61:E0:10:00:7E:39:48:15:D7:90:93:38:20:90:38:B4:A0:54
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/0GNh4BAAfjlIFdeQkzggkDi0oFQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:32:98:50:9d:33:44:ef:de:b9:b0:5c:6f:28:6a:82:88:f5:
48:80:1e:eb:80:57:48:43:06:68:e2:55:5b:79:2d:ed:e4:2b:
63:d0:52:35:10:d6:52:95:04:d8:c6:7e:58:d9:99:51:f3:e6:
ed:e1:37:65:f3:fd:95:36:1b:89:8d:c5:fd:f9:98:21:4d:94:
29:03:13:a5:11:8c:95:9a:f1:df:78:d5:88:1b:4f:fd:12:91:
71:86:ea:b9:bc:5b:04:0c:16:d7:87:5c:c5:8b:57:28:64:13:
6c:f1:11:9b:dc:a8:5b:52:66:3c:14:46:ba:a2:0b:d9:30:e4:
ab:3c:85:ad:3b:1d:c4:82:83:dd:c1:fc:a4:4e:c8:b5:1b:7c:
df:fa:24:f0:9e:6f:1e:44:ba:7b:56:cf:9f:f3:10:37:f1:cd:
ed:e2:97:28:be:c0:9e:25:53:d9:10:64:25:93:b2:05:f6:1e:
11:42:b9:82:cd:8f:4b:cd:7e:ea:7a:dd:1c:8b:7b:8f:c5:fa:
56:cf:67:4f:12:25:97:d0:ea:81:09:cb:31:85:5f:c3:88:e5:
e0:a0:8f:31:35:56:e5:23:13:fc:04:ec:f7:7b:cb:73:00:e3:
e6:71:64:be:6f:e2:5b:5f:2e:46:d5:e5:9b:de:c0:25:3e:7d:
ab:21:a0:74
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMjA5MTUw
MjQ5NTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQwNjM2MUUwMTAwMDdF
Mzk0ODE1RDc5MDkzMzgyMDkwMzhCNEEwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIWerRezm49Qu7K2E9zXLcdBsMzOZgKTYcVuwxPD5iz0xltg2w
ygvV4ucsqCV3yfWbKEqFB/DnDbupoiK00Jq0q980KAgd1lJTAFiS/n1GCWmmykP1
NQW8bUpXKxAuXiW6ZoD6h1flCxHkcq/buSrhuyP7Z64mOsFhzIVZeei3pNFGNv7Q
g8NxydoJr0pemvRdHLWrmHHL6gVoho2tvwRt5mAPDoFSyiAclNkI6kHHGtbWHUNU
QOOzqmaoDcVP4aH5QO/9Aaz+2WBbkt8gfy0fOxaCBG8dVkYQedMNIzTYsRGB7722
DfRKJQSoiFZULwtFb7IcWs4weX6XJGqze7C1AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU0GNh4BAAfjlIFdeQkzggkDi0oFQwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzBHTmg0QkFBZmpsSUZkZVFremdna0Rp
MG9GUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ
KoZIhvcNAQELBQADggEBAKUymFCdM0Tv3rmwXG8oaoKI9UiAHuuAV0hDBmjiVVt5
Le3kK2PQUjUQ1lKVBNjGfljZmVHz5u3hN2Xz/ZU2G4mNxf35mCFNlCkDE6URjJWa
8d941YgbT/0SkXGG6rm8WwQMFteHXMWLVyhkE2zxEZvcqFtSZjwURrqiC9kw5Ks8
ha07HcSCg93B/KROyLUbfN/6JPCebx5EuntWz5/zEDfxze3ilyi+wJ4lU9kQZCWT
sgX2HhFCuYLNj0vNfup63RyLe4/F+lbPZ08SJZfQ6oEJyzGFX8OI5eCgjzE1VuUj
E/wE7Pd7y3MA4+ZxZL5v4ltfLkbV5ZvewCU+fashoHQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:12 2025 by rpki-client