Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/F0bOEInEpM3-l_XTHpApOtJS-DI.roa
File: F0bOEInEpM3-l_XTHpApOtJS-DI.roa (raw, json)
Hash identifier: /SUAZAJ4pG2K7Gxi4OyYXY1laRLlrID7aj8QJUTm0SU=
Subject key identifier: 17:46:CE:10:89:C4:A4:CD:FE:97:F5:D3:1E:90:29:3A:D2:52:F8:32
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0918
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/F0bOEInEpM3-l_XTHpApOtJS-DI.roa
Signing time: Sun 07 Feb 2021 11:42:39 +0000
ROA not before: Sun 07 Feb 2021 11:42:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.61.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2328 (0x918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1746CE1089C4A4CDFE97F5D31E90293AD252F832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9d:ad:b7:48:cb:d5:27:74:3d:a7:27:b1:79:
fa:89:9e:ef:ae:90:00:aa:df:e5:2c:57:92:a7:aa:
78:e1:45:62:30:9e:1e:2d:66:7f:87:54:b0:74:77:
ff:11:ba:8c:82:15:52:d5:08:a7:77:46:a6:91:de:
47:ec:bf:12:82:dc:13:4e:07:06:ef:06:a3:a9:b5:
f8:35:e1:00:89:ee:f2:49:ad:c1:7b:65:9b:87:9e:
d0:95:64:02:04:15:81:56:45:70:e7:f1:38:83:a0:
c6:bb:01:ec:e8:ca:04:69:1a:eb:af:8b:de:9c:28:
be:62:2f:68:eb:20:22:0f:5e:2a:fe:7a:04:63:a6:
83:80:60:46:bd:a6:1d:31:3c:b5:5c:6a:1d:b7:fa:
d2:54:05:7b:8c:9e:98:cb:66:fd:66:94:c0:9a:2b:
d7:48:ff:0b:30:90:fb:e9:fa:b0:ca:db:3f:bb:75:
93:eb:19:38:a5:0a:ba:e2:be:9d:1d:7b:31:b8:dd:
6c:5b:16:d1:84:fc:4e:23:4a:8b:40:fa:1b:01:0b:
1f:26:7d:c3:07:ea:1f:7d:70:ee:eb:40:1f:d1:bf:
6b:dd:44:4f:d6:dd:3e:69:07:0e:c1:00:4c:57:f7:
d7:ba:00:f3:c5:ac:44:9b:9b:83:40:04:d9:95:3a:
78:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:46:CE:10:89:C4:A4:CD:FE:97:F5:D3:1E:90:29:3A:D2:52:F8:32
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/F0bOEInEpM3-l_XTHpApOtJS-DI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.64.0/22
Signature Algorithm: sha256WithRSAEncryption
39:88:b9:6c:43:6b:cb:3c:e4:6c:6a:da:b6:0b:ec:ad:09:3e:
87:20:d3:f8:7d:7e:a1:df:a1:5d:84:00:9e:a5:1f:9e:0a:32:
b2:8a:08:22:82:38:69:b8:80:bc:28:c4:6a:3b:38:89:eb:ac:
c8:20:8e:8e:9f:ef:99:f5:be:98:8f:f9:fd:93:e7:d0:5e:b9:
bc:1d:b6:f3:42:f7:8f:11:1c:83:b7:72:34:c5:2a:73:07:cb:
08:bc:dd:80:da:6b:62:e7:36:b8:b2:c1:d5:88:26:bb:d0:16:
b0:28:3c:5a:66:5a:b0:20:dc:85:a3:c4:e6:97:28:64:e6:5f:
3d:2d:93:e7:4d:49:2d:a0:87:65:1b:99:cf:11:15:4a:76:39:
b7:c4:c6:25:ca:a6:1d:d4:26:e7:ce:4d:02:4d:a6:b7:f4:3f:
ae:28:15:34:9a:e8:ad:8a:cd:df:2a:f0:87:03:29:15:f6:ea:
c3:8d:a6:94:6e:c6:eb:7a:d2:be:bf:89:7b:38:c2:15:d1:0e:
3a:d6:7a:f1:a5:0f:46:8c:61:93:37:6a:01:95:c9:b2:9a:0c:
34:1a:a9:4f:34:c0:d2:db:09:7c:34:41:45:3a:03:7a:71:91:
ca:34:59:a5:ad:2c:57:57:8e:6f:95:36:08:04:2a:68:a0:8b:
42:b9:ed:da
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMTAyMDcx
MTQyMzlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDE3NDZDRTEwODlDNEE0
Q0RGRTk3RjVEMzFFOTAyOTNBRDI1MkY4MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnna23SMvVJ3Q9pyexefqJnu+ukACq3+UsV5KnqnjhRWIwnh4t
Zn+HVLB0d/8RuoyCFVLVCKd3RqaR3kfsvxKC3BNOBwbvBqOptfg14QCJ7vJJrcF7
ZZuHntCVZAIEFYFWRXDn8TiDoMa7AezoygRpGuuvi96cKL5iL2jrICIPXir+egRj
poOAYEa9ph0xPLVcah23+tJUBXuMnpjLZv1mlMCaK9dI/wswkPvp+rDK2z+7dZPr
GTilCrrivp0dezG43WxbFtGE/E4jSotA+hsBCx8mfcMH6h99cO7rQB/Rv2vdRE/W
3T5pBw7BAExX99e6APPFrESbm4NABNmVOngvAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUF0bOEInEpM3+l/XTHpApOtJS+DIwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0YwYk9FSW5FcE0zLWxfWFRIcEFwT3RK
Uy1ESS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PUAwDQYJ
KoZIhvcNAQELBQADggEBADmIuWxDa8s85Gxq2rYL7K0JPocg0/h9fqHfoV2EAJ6l
H54KMrKKCCKCOGm4gLwoxGo7OInrrMggjo6f75n1vpiP+f2T59BeubwdtvNC948R
HIO3cjTFKnMHywi83YDaa2LnNriywdWIJrvQFrAoPFpmWrAg3IWjxOaXKGTmXz0t
k+dNSS2gh2Ubmc8RFUp2ObfExiXKph3UJufOTQJNprf0P64oFTSa6K2Kzd8q8IcD
KRX26sONppRuxut60r6/iXs4whXRDjrWevGlD0aMYZM3agGVybKaDDQaqU80wNLb
CXw0QUU6A3pxkco0WaWtLFdXjm+VNggEKmigi0K57do=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org