Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3m_aRQcKwpLityu_lKwvrGJaJUY.roa
File: 3m_aRQcKwpLityu_lKwvrGJaJUY.roa (raw, json)
Hash identifier: OYzv/QKRUaGmhEb7noCt8lKroz0qXC842UW6t0Q5YXQ=
Subject key identifier: DE:6F:DA:45:07:0A:C2:92:E2:B7:2B:BF:94:AC:2F:AC:62:5A:25:46
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09E5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3m_aRQcKwpLityu_lKwvrGJaJUY.roa
Signing time: Wed 29 Sep 2021 02:52:20 +0000
ROA not before: Wed 29 Sep 2021 02:52:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2533 (0x9e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DE6FDA45070AC292E2B72BBF94AC2FAC625A2546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3b:3a:f9:af:f7:b4:2e:ff:41:4b:69:82:4c:
00:43:8f:90:1d:c2:15:aa:b1:e8:83:36:60:04:e9:
47:f4:a8:bf:4a:3b:1b:ba:03:de:b6:1e:42:8a:e4:
a8:10:0a:b1:ec:49:3d:7a:b7:8f:92:bc:f5:23:63:
ae:21:5c:09:be:c6:14:3d:cb:66:dc:4f:29:d0:ec:
46:68:ee:8d:a9:3d:69:38:7d:e3:f1:be:a3:59:6a:
c8:05:ba:ed:12:1f:22:07:a5:ca:d5:9b:3e:c2:a9:
33:97:bd:72:c1:50:19:c6:d1:dd:a2:9d:1e:c4:91:
56:79:91:60:1f:29:e3:84:a8:7a:9d:ec:45:c9:88:
ca:cf:3f:cc:35:ee:c2:f8:17:24:d8:64:cf:3f:43:
4e:27:8c:7b:9b:e5:38:da:98:85:56:d4:8e:99:15:
bf:41:c3:5a:77:4c:0c:ab:60:f9:fc:60:33:ff:13:
a8:dd:65:b5:a9:9f:88:d7:87:08:57:07:23:04:34:
c7:5a:2f:a9:70:1b:a3:71:58:e1:cb:d7:f3:17:fe:
78:e4:f8:52:c8:6d:1b:ab:fb:dc:56:55:6b:ac:6b:
2f:2a:b7:57:b1:68:81:75:7f:e7:32:31:12:0c:ce:
86:df:b9:18:19:63:c8:8a:a5:7c:bb:42:0e:10:27:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6F:DA:45:07:0A:C2:92:E2:B7:2B:BF:94:AC:2F:AC:62:5A:25:46
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3m_aRQcKwpLityu_lKwvrGJaJUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
97:be:af:3e:4c:a0:87:75:7b:3b:41:fb:ed:fe:d2:cf:01:36:
2d:6c:e9:c0:44:f6:bc:87:7c:aa:de:80:d7:69:2f:1e:95:ec:
b3:a6:d0:06:88:cb:23:72:1d:72:81:c8:d2:31:f0:bd:da:ad:
a7:3d:c5:fe:0f:9c:d3:3f:4f:68:95:63:2d:d9:c4:df:f4:dd:
b6:d8:16:9a:14:73:e6:58:b9:b8:3f:2b:5e:2e:54:c6:fd:2d:
fb:ea:35:63:2d:6f:01:5d:83:b3:9d:0d:24:d6:a7:35:94:24:
7f:5d:50:67:b2:6e:61:4b:5b:ef:91:86:ed:ea:5d:f1:a7:02:
6f:c5:35:0b:c5:c0:c2:bb:71:9a:46:21:db:86:19:5f:8b:16:
fb:30:c1:75:32:c2:18:67:11:3e:63:09:77:fa:35:ef:06:44:
54:98:d6:72:7b:58:dd:b5:af:c2:93:b6:f3:a6:ce:57:fa:8a:
db:f5:c2:a7:a9:6e:78:d6:e7:45:95:01:28:29:e7:4c:d3:9d:
95:aa:46:bc:e5:f5:55:93:5e:96:30:8c:fb:ad:48:35:b8:c6:
62:aa:58:80:d6:79:7b:5e:fb:11:7c:b8:e9:62:14:88:95:9f:
85:dd:db:e8:fb:5c:c4:7a:22:db:bd:e0:28:50:a8:9c:e7:8b:
11:4d:c6:a3
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMTA5Mjkw
MjUyMjBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERFNkZEQTQ1MDcwQUMy
OTJFMkI3MkJCRjk0QUMyRkFDNjI1QTI1NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIOzr5r/e0Lv9BS2mCTABDj5AdwhWqseiDNmAE6Uf0qL9KOxu6
A962HkKK5KgQCrHsST16t4+SvPUjY64hXAm+xhQ9y2bcTynQ7EZo7o2pPWk4fePx
vqNZasgFuu0SHyIHpcrVmz7CqTOXvXLBUBnG0d2inR7EkVZ5kWAfKeOEqHqd7EXJ
iMrPP8w17sL4FyTYZM8/Q04njHub5TjamIVW1I6ZFb9Bw1p3TAyrYPn8YDP/E6jd
ZbWpn4jXhwhXByMENMdaL6lwG6NxWOHL1/MX/njk+FLIbRur+9xWVWusay8qt1ex
aIF1f+cyMRIMzobfuRgZY8iKpXy7Qg4QJy2xAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU3m/aRQcKwpLityu/lKwvrGJaJUYwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzNtX2FSUWNLd3BMaXR5dV9sS3d2ckdK
YUpVWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ
KoZIhvcNAQELBQADggEBAJe+rz5MoId1eztB++3+0s8BNi1s6cBE9ryHfKregNdp
Lx6V7LOm0AaIyyNyHXKByNIx8L3arac9xf4PnNM/T2iVYy3ZxN/03bbYFpoUc+ZY
ubg/K14uVMb9LfvqNWMtbwFdg7OdDSTWpzWUJH9dUGeybmFLW++Rhu3qXfGnAm/F
NQvFwMK7cZpGIduGGV+LFvswwXUywhhnET5jCXf6Ne8GRFSY1nJ7WN21r8KTtvOm
zlf6itv1wqepbnjW50WVASgp50zTnZWqRrzl9VWTXpYwjPutSDW4xmKqWIDWeXte
+xF8uOliFIiVn4Xd2+j7XMR6Itu94ChQqJznixFNxqM=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:40 2025 by rpki-client