Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/EnwPJ8B3_3xQW8z_5Yqm6ypF6J8.roa
File: EnwPJ8B3_3xQW8z_5Yqm6ypF6J8.roa (raw, json)
Hash identifier: +LBasZJdlmESc/PgQwA36Cv8pIMseq8XqzjYKD2P8kg=
Subject key identifier: 12:7C:0F:27:C0:77:FF:7C:50:5B:CC:FF:E5:8A:A6:EB:2A:45:E8:9F
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/EnwPJ8B3_3xQW8z_5Yqm6ypF6J8.roa
Signing time: Thu 15 Sep 2022 02:49:49 +0000
ROA not before: Thu 15 Sep 2022 02:49:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=127C0F27C077FF7C505BCCFFE58AA6EB2A45E89F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d7:17:75:ea:1c:19:9d:a5:28:1c:9c:37:ef:
13:e7:d9:4e:f4:45:41:f0:1e:a8:63:50:b1:46:7c:
79:92:93:3b:88:17:df:bf:e2:e3:8a:74:69:01:86:
d3:96:0a:ca:a3:27:5f:bd:a0:cd:9f:2c:f1:58:4c:
94:84:b0:45:68:7d:b0:ca:8e:64:6f:b5:a8:00:82:
7e:0f:ce:b0:b8:0b:32:ea:f0:5a:f3:32:6f:73:b9:
2a:dc:d3:54:9f:37:3a:d7:62:39:4f:a5:cc:81:11:
d5:45:f4:5c:f0:b7:ea:f5:64:62:5f:41:e5:8e:08:
7b:03:82:73:2f:e4:2a:0f:5c:4b:5d:04:1e:f9:72:
00:80:cd:4e:cf:02:8a:f1:c8:2d:bd:78:19:1c:d5:
54:65:65:fd:ef:d5:ce:19:91:6a:f7:57:ce:fd:4f:
12:13:3d:bc:b6:5c:a1:82:ff:92:06:d9:54:b6:e0:
47:f4:21:32:9b:92:0a:c4:32:2c:f0:08:50:71:11:
44:71:04:d9:2f:3b:bf:1c:06:a6:e3:8e:56:06:bd:
ce:c7:ff:f4:ed:7d:56:b6:b7:c8:f1:b9:6f:58:79:
bd:ac:21:ed:22:0d:e9:e9:94:02:8a:44:d0:69:a2:
c1:e2:83:58:b1:ba:ba:d9:4f:3f:aa:7a:aa:50:f3:
17:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7C:0F:27:C0:77:FF:7C:50:5B:CC:FF:E5:8A:A6:EB:2A:45:E8:9F
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/EnwPJ8B3_3xQW8z_5Yqm6ypF6J8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
30:00:e1:e4:4c:78:e2:30:c7:70:a3:32:cc:19:56:d8:d1:ad:
e6:cc:9f:29:16:7a:40:29:48:4b:01:5c:3c:75:3c:4e:1a:16:
d8:3a:f7:36:83:cf:53:95:97:7f:65:1b:d3:91:f9:66:66:e6:
4f:37:bd:a3:cb:ba:34:c3:5e:1a:f1:52:66:4a:95:88:4b:a5:
30:d2:69:9f:5c:df:05:2c:2c:88:b4:0f:9d:9d:3e:3e:00:15:
9a:e6:94:e0:27:ca:a3:21:81:45:5c:09:fb:d0:fb:2d:6d:a9:
f7:51:a3:92:2c:27:74:80:d5:3d:6a:f0:26:12:75:85:d7:0f:
93:cc:df:8d:f3:bf:14:99:13:88:ba:f7:78:31:32:1c:79:a5:
21:92:9a:cb:b7:f4:a3:c3:98:73:f9:21:5a:e7:23:c8:c3:5c:
08:b6:53:ea:07:18:c2:b6:8a:7a:32:43:e5:63:a5:5b:c9:cc:
b1:88:81:b4:61:b0:d1:a3:34:d2:b9:d3:cf:6c:1a:3b:b3:70:
1b:53:b6:f4:99:21:a0:7e:b8:ab:67:52:d3:5c:3f:86:80:47:
bc:32:e2:b6:f1:22:68:e2:9e:fa:51:c9:c2:f6:ec:97:24:4a:
42:d9:a3:2d:1c:6b:8d:9a:96:cf:1a:a5:29:66:0b:bd:45:fb:
38:84:fb:61
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMjA5MTUw
MjQ5NDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEyN0MwRjI3QzA3N0ZG
N0M1MDVCQ0NGRkU1OEFBNkVCMkE0NUU4OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDU1xd16hwZnaUoHJw37xPn2U70RUHwHqhjULFGfHmSkzuIF9+/
4uOKdGkBhtOWCsqjJ1+9oM2fLPFYTJSEsEVofbDKjmRvtagAgn4PzrC4CzLq8Frz
Mm9zuSrc01SfNzrXYjlPpcyBEdVF9Fzwt+r1ZGJfQeWOCHsDgnMv5CoPXEtdBB75
cgCAzU7PAorxyC29eBkc1VRlZf3v1c4ZkWr3V879TxITPby2XKGC/5IG2VS24Ef0
ITKbkgrEMizwCFBxEURxBNkvO78cBqbjjlYGvc7H//TtfVa2t8jxuW9Yeb2sIe0i
DenplAKKRNBposHig1ixurrZTz+qeqpQ8xcjAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUEnwPJ8B3/3xQW8z/5Yqm6ypF6J8wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0Vud1BKOEIzXzN4UVc4el81WXFtNnlw
RjZKOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ
KoZIhvcNAQELBQADggEBADAA4eRMeOIwx3CjMswZVtjRrebMnykWekApSEsBXDx1
PE4aFtg69zaDz1OVl39lG9OR+WZm5k83vaPLujTDXhrxUmZKlYhLpTDSaZ9c3wUs
LIi0D52dPj4AFZrmlOAnyqMhgUVcCfvQ+y1tqfdRo5IsJ3SA1T1q8CYSdYXXD5PM
343zvxSZE4i693gxMhx5pSGSmsu39KPDmHP5IVrnI8jDXAi2U+oHGMK2inoyQ+Vj
pVvJzLGIgbRhsNGjNNK5089sGjuzcBtTtvSZIaB+uKtnUtNcP4aAR7wy4rbxImji
nvpRycL27JckSkLZoy0ca42als8apSlmC71F+ziE+2E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org