Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/HnUqSWSwpmp2oM87GY7s5XyIR6g.roa
File: HnUqSWSwpmp2oM87GY7s5XyIR6g.roa (raw, json)
Hash identifier: WDQ+prJuqO9GYJ2dTYznfZazIQ1lhjXPfzCwP25fKXA=
Subject key identifier: 1E:75:2A:49:64:B0:A6:6A:76:A0:CF:3B:19:8E:EC:E5:7C:88:47:A8
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09F3
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/HnUqSWSwpmp2oM87GY7s5XyIR6g.roa
Signing time: Wed 13 Oct 2021 05:30:12 +0000
ROA not before: Wed 13 Oct 2021 05:30:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 61.61.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2547 (0x9f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Oct 13 05:30:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1E752A4964B0A66A76A0CF3B198EECE57C8847A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:b3:96:26:13:4b:3c:9c:6d:8a:91:07:83:
0a:bd:41:97:27:e9:bb:2e:5c:e1:3d:bd:49:0f:1b:
48:14:d9:b9:14:a2:86:b1:7e:b9:d3:ce:72:62:37:
ce:6c:a5:68:2d:10:29:88:85:f6:14:75:61:8b:7d:
a4:46:e7:66:20:8d:f4:0a:42:56:62:2b:63:64:a4:
2c:d2:0b:b0:6f:0a:28:7a:0f:16:b0:40:8d:2f:c2:
6e:1b:3c:ce:bb:c7:f5:61:50:1f:50:6b:c3:58:47:
fe:69:64:e0:08:ea:c2:5b:76:f4:ab:ae:6d:de:5e:
e1:27:b1:a6:06:27:23:f1:f0:88:71:f2:9b:94:90:
73:d6:f9:cb:c6:dd:d5:3d:67:4c:eb:7a:4e:12:13:
03:62:34:78:54:5d:01:3b:53:da:c6:3a:e3:dd:1f:
72:58:3f:79:fd:ef:55:47:39:3b:77:ba:f1:f9:29:
5e:a0:e0:d4:d9:48:7c:b9:92:cb:67:16:33:16:44:
14:1d:aa:bb:b4:cd:22:9b:2e:61:10:dd:78:2a:60:
36:e6:ff:8f:73:c0:d1:ac:45:2c:dd:a7:d0:72:c7:
b6:45:d9:ab:5f:a0:f6:d8:f9:ff:f3:24:c4:f9:c7:
b0:2a:fd:90:3e:88:d7:94:61:dd:d4:81:a4:a1:38:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:75:2A:49:64:B0:A6:6A:76:A0:CF:3B:19:8E:EC:E5:7C:88:47:A8
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/HnUqSWSwpmp2oM87GY7s5XyIR6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.164.0/22
Signature Algorithm: sha256WithRSAEncryption
00:19:e0:ff:f2:78:78:a0:ba:7c:8d:a3:29:5c:35:4d:9d:df:
31:dd:d1:ec:2f:56:c1:72:43:6e:af:e5:ff:59:b0:5a:eb:3f:
f9:e1:50:5a:60:df:af:00:81:d0:33:dd:ff:c6:bb:55:b6:73:
26:da:37:54:13:a3:d9:34:a5:4b:0c:50:c8:c0:fb:f2:81:99:
e8:ec:1c:36:26:80:8c:c6:bf:a8:91:d8:40:24:1e:70:d1:3d:
39:24:f7:1e:70:ca:ca:92:fa:8e:91:76:a7:e9:3b:44:e9:69:
39:e1:53:ea:86:e6:80:9f:c5:ed:62:0c:b6:b2:d1:8e:e7:9a:
4b:11:32:c2:22:50:39:f5:40:be:71:5e:a7:99:f1:b2:bb:f0:
1b:8b:d2:aa:17:b2:bf:bd:0f:3c:d6:81:89:dc:39:a2:cc:80:
a2:f6:02:14:e1:44:2a:3f:fa:6c:d6:55:0f:09:ff:c8:bd:df:
b0:52:bc:23:ae:c9:0c:7c:8a:6d:10:06:76:13:45:03:6a:0c:
19:cc:74:94:1b:f5:f1:18:3e:65:50:8c:54:1c:fd:18:0b:12:
fd:58:33:2b:66:01:08:1e:78:ba:f4:10:90:0e:79:65:4b:68:
86:55:2a:8e:4e:ec:31:08:06:58:c2:9b:82:bf:cf:88:09:53:
8b:bd:a5:35
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMTEwMTMw
NTMwMTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDFFNzUyQTQ5NjRCMEE2
NkE3NkEwQ0YzQjE5OEVFQ0U1N0M4ODQ3QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4CLOWJhNLPJxtipEHgwq9QZcn6bsuXOE9vUkPG0gU2bkUooax
frnTznJiN85spWgtECmIhfYUdWGLfaRG52YgjfQKQlZiK2NkpCzSC7BvCih6Dxaw
QI0vwm4bPM67x/VhUB9Qa8NYR/5pZOAI6sJbdvSrrm3eXuEnsaYGJyPx8Ihx8puU
kHPW+cvG3dU9Z0zrek4SEwNiNHhUXQE7U9rGOuPdH3JYP3n971VHOTt3uvH5KV6g
4NTZSHy5kstnFjMWRBQdqru0zSKbLmEQ3XgqYDbm/49zwNGsRSzdp9Byx7ZF2atf
oPbY+f/zJMT5x7Aq/ZA+iNeUYd3UgaShOKojAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUHnUqSWSwpmp2oM87GY7s5XyIR6gwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0huVXFTV1N3cG1wMm9NODdHWTdzNVh5
SVI2Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PaQwDQYJ
KoZIhvcNAQELBQADggEBAAAZ4P/yeHigunyNoylcNU2d3zHd0ewvVsFyQ26v5f9Z
sFrrP/nhUFpg368AgdAz3f/Gu1W2cybaN1QTo9k0pUsMUMjA+/KBmejsHDYmgIzG
v6iR2EAkHnDRPTkk9x5wysqS+o6RdqfpO0TpaTnhU+qG5oCfxe1iDLay0Y7nmksR
MsIiUDn1QL5xXqeZ8bK78BuL0qoXsr+9DzzWgYncOaLMgKL2AhThRCo/+mzWVQ8J
/8i937BSvCOuyQx8im0QBnYTRQNqDBnMdJQb9fEYPmVQjFQc/RgLEv1YMytmAQge
eLr0EJAOeWVLaIZVKo5O7DEIBljCm4K/z4gJU4u9pTU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org