Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/6N2dPM0Ucsa7kisbKzkLPWVWYZo.roa
File: 6N2dPM0Ucsa7kisbKzkLPWVWYZo.roa (raw, json)
Hash identifier: pZjLQw5P9gnnquEI/uKORp0T2xrbNv6NV6W5YNMMjtQ=
Subject key identifier: E8:DD:9D:3C:CD:14:72:C6:BB:92:2B:1B:2B:39:0B:3D:65:56:61:9A
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0B74
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/6N2dPM0Ucsa7kisbKzkLPWVWYZo.roa
Signing time: Fri 07 Apr 2023 00:55:34 +0000
ROA not before: Fri 07 Apr 2023 00:55:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131602
IP address blocks: 211.78.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Apr 7 00:55:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E8DD9D3CCD1472C6BB922B1B2B390B3D6556619A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5d:b4:74:77:65:12:2e:53:b9:0f:89:ab:39:
f9:b6:8a:02:31:33:52:f5:97:10:f8:bf:2d:88:b5:
9a:bf:b1:1d:d2:88:a6:0b:6e:0e:65:93:a4:05:ea:
a1:28:c7:17:c8:9d:64:9d:42:b8:06:07:c9:68:85:
86:25:17:83:f3:75:80:21:e9:ad:c9:24:c3:2d:8a:
cd:b0:36:97:d7:b7:11:ea:2e:6d:25:b0:f8:6d:b7:
35:3e:33:81:35:11:cc:4c:41:58:87:27:ed:59:f6:
d8:40:f8:58:c5:cc:ed:e2:60:a3:28:09:67:2e:d6:
f6:c2:ed:da:91:ec:70:90:56:5a:b5:06:37:25:ae:
5e:6a:d4:a4:41:d4:b1:ca:11:44:01:69:ad:ce:2f:
5c:9a:1c:4a:ef:94:fb:17:d8:eb:d3:06:28:43:80:
7b:df:b4:68:b3:47:50:1b:fb:c4:06:3f:25:61:ec:
84:b0:39:19:44:49:14:9b:6c:f2:75:26:96:92:c4:
11:13:aa:4b:b0:5f:23:6e:cd:f3:f4:21:8d:f1:c2:
4b:ae:7d:bb:46:90:38:eb:ba:06:8e:29:8f:15:07:
5f:c9:26:42:37:00:c5:a5:51:09:af:95:17:b9:fa:
28:38:fa:81:2c:b3:e6:8e:14:04:7f:0d:5e:a4:af:
51:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DD:9D:3C:CD:14:72:C6:BB:92:2B:1B:2B:39:0B:3D:65:56:61:9A
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/6N2dPM0Ucsa7kisbKzkLPWVWYZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.24.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:c0:7d:ee:5a:89:5a:72:eb:bd:d8:ee:f2:78:bd:f1:10:f1:
64:82:18:6c:51:62:d3:2f:8d:b0:24:93:ae:01:0d:cf:e0:2f:
91:91:26:c5:0f:eb:2f:61:4d:71:e6:c1:ea:cf:a3:75:9f:d0:
05:14:b8:a0:5b:64:9b:29:a2:57:49:4c:6f:c1:db:01:46:23:
32:b2:3c:43:e6:49:6e:21:3c:86:42:82:b5:ab:d0:44:cd:11:
2b:4a:ae:ae:2d:9c:37:e2:dc:9c:19:85:bd:1a:ff:55:22:62:
0b:a0:84:f8:cf:cb:27:7a:d4:1f:36:fe:e3:3e:d8:67:f3:e0:
14:24:34:38:b3:e3:54:6a:76:9b:e6:16:bd:c1:49:69:f9:7a:
fb:eb:4d:86:d3:f7:df:b2:84:66:3e:95:6a:f5:5a:1a:d8:f1:
b8:e1:5d:05:26:96:5f:af:77:88:2a:e7:d5:9a:d3:31:34:e6:
0a:7c:14:8a:c7:ca:9a:02:4f:8f:4a:a3:0c:7e:cd:56:2f:d4:
8d:68:3c:19:b1:4f:e9:85:30:eb:54:92:07:43:0c:66:57:4c:
d0:ea:65:7a:a2:40:2f:60:8c:c6:a6:84:88:78:35:60:e4:bc:
69:bb:a9:1f:d6:cc:32:61:11:bb:68:b3:5b:82:87:ac:95:98:
ac:6c:e7:38
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA0MDcw
MDU1MzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU4REQ5RDNDQ0QxNDcy
QzZCQjkyMkIxQjJCMzkwQjNENjU1NjYxOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaXbR0d2USLlO5D4mrOfm2igIxM1L1lxD4vy2ItZq/sR3SiKYL
bg5lk6QF6qEoxxfInWSdQrgGB8lohYYlF4PzdYAh6a3JJMMtis2wNpfXtxHqLm0l
sPhttzU+M4E1EcxMQViHJ+1Z9thA+FjFzO3iYKMoCWcu1vbC7dqR7HCQVlq1Bjcl
rl5q1KRB1LHKEUQBaa3OL1yaHErvlPsX2OvTBihDgHvftGizR1Ab+8QGPyVh7ISw
ORlESRSbbPJ1JpaSxBETqkuwXyNuzfP0IY3xwkuufbtGkDjrugaOKY8VB1/JJkI3
AMWlUQmvlRe5+ig4+oEss+aOFAR/DV6kr1H9AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU6N2dPM0Ucsa7kisbKzkLPWVWYZowHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzZOMmRQTTBVY3NhN2tpc2JLemtMUFdW
V1laby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTThgwDQYJ
KoZIhvcNAQELBQADggEBABvAfe5aiVpy673Y7vJ4vfEQ8WSCGGxRYtMvjbAkk64B
Dc/gL5GRJsUP6y9hTXHmwerPo3Wf0AUUuKBbZJspoldJTG/B2wFGIzKyPEPmSW4h
PIZCgrWr0ETNEStKrq4tnDfi3JwZhb0a/1UiYgughPjPyyd61B82/uM+2Gfz4BQk
NDiz41RqdpvmFr3BSWn5evvrTYbT99+yhGY+lWr1WhrY8bjhXQUmll+vd4gq59Wa
0zE05gp8FIrHypoCT49Kowx+zVYv1I1oPBmxT+mFMOtUkgdDDGZXTNDqZXqiQC9g
jMamhIh4NWDkvGm7qR/WzDJhEbtos1uCh6yVmKxs5zg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org