Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/LuwyQulyJVGwZ50W_3tPKhmM8rI.roa
File: LuwyQulyJVGwZ50W_3tPKhmM8rI.roa (raw, json)
Hash identifier: o6clOVY8Q0C+BvrL8DP3SGtwYhFB+NnLWz+Uc3DqUJ8=
Subject key identifier: 2E:EC:32:42:E9:72:25:51:B0:67:9D:16:FF:7B:4F:2A:19:8C:F2:B2
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/LuwyQulyJVGwZ50W_3tPKhmM8rI.roa
Signing time: Thu 15 Sep 2022 02:49:45 +0000
ROA not before: Thu 15 Sep 2022 02:49:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 61.61.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2EEC3242E9722551B0679D16FF7B4F2A198CF2B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d7:c3:36:62:5e:d1:ee:11:a0:3c:1d:5d:6d:
9d:8f:28:bb:7b:b8:e3:bc:db:28:ae:33:2c:05:66:
fe:fa:0d:c1:8b:c9:de:57:0c:eb:cc:d2:15:2b:68:
9c:02:70:f1:48:be:f1:cc:9a:54:df:6d:c4:b7:c8:
a0:bc:eb:df:85:a0:83:30:6b:a4:0c:8f:da:4b:fd:
0b:9c:ef:52:8b:eb:a7:5b:0f:67:8e:7c:49:f2:c3:
8d:8e:66:10:5a:2d:58:b4:da:09:a0:d3:c7:2e:42:
a0:c6:3c:67:e1:69:44:be:6b:6f:af:bc:20:35:52:
cb:64:a3:e9:65:39:cb:4a:21:a9:10:fd:2f:4f:d4:
a0:be:23:13:19:e0:b9:e4:bb:31:39:03:72:a8:d9:
a6:a3:2c:e9:c7:25:81:e4:05:ac:0b:d3:8d:1d:e6:
39:bc:04:da:44:68:36:50:73:ab:85:8e:cd:e6:08:
46:9c:4d:bd:e3:4a:71:a5:29:5e:fb:db:79:96:82:
79:dd:02:6f:6f:be:05:22:3c:44:fe:a5:06:4e:a5:
80:d5:99:5e:af:2c:22:55:8f:17:e3:45:1b:a0:14:
79:54:37:f1:05:41:61:a7:81:7e:3c:57:76:ca:62:
b0:27:4a:9a:53:0b:d7:df:0a:7e:6f:62:06:b2:98:
83:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EC:32:42:E9:72:25:51:B0:67:9D:16:FF:7B:4F:2A:19:8C:F2:B2
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/LuwyQulyJVGwZ50W_3tPKhmM8rI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.168.0/21
Signature Algorithm: sha256WithRSAEncryption
15:24:ac:ff:d1:be:41:f1:33:c3:3b:26:39:b4:9d:e8:35:23:
31:13:45:dc:4e:b5:b6:7f:5f:c3:d5:3b:85:f5:1e:c8:e6:ca:
25:16:69:af:13:b8:ef:4c:c5:ce:ad:cb:5d:72:ed:23:1a:41:
3e:2f:14:e2:ce:f1:18:1a:ea:bc:ef:0e:a1:76:63:97:f5:3c:
16:d4:4a:28:4c:4a:03:85:38:5a:80:a9:5b:78:1e:f8:37:73:
08:13:02:5c:89:4b:f7:aa:b9:76:26:7b:10:07:ab:8e:5c:72:
3d:f1:98:8f:ca:2d:e0:62:2f:0a:b5:03:75:ee:48:d6:04:2a:
47:1e:00:a1:5c:66:cc:07:71:1f:aa:ec:10:52:b9:2d:7f:e7:
9d:05:9a:5d:d6:f1:e3:da:ec:5b:e0:80:5b:19:fc:c2:80:b2:
b4:26:0e:da:6b:9f:f9:15:59:e6:3e:4a:f9:3c:b1:d8:ff:44:
fa:33:17:53:cb:96:d6:1b:70:d5:62:2e:b3:6a:a3:36:fa:ef:
ba:80:6d:db:40:e9:9e:d4:30:aa:48:e9:6c:50:b9:0a:c2:10:
e3:5b:9d:30:57:9e:9c:c6:04:7c:72:ee:eb:61:f7:92:9c:66:
8c:82:82:7f:d0:a2:87:54:ba:4f:13:de:61:6c:5c:06:06:ad:
ec:d5:27:b5
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMjA5MTUw
MjQ5NDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJFRUMzMjQyRTk3MjI1
NTFCMDY3OUQxNkZGN0I0RjJBMTk4Q0YyQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC518M2Yl7R7hGgPB1dbZ2PKLt7uOO82yiuMywFZv76DcGLyd5X
DOvM0hUraJwCcPFIvvHMmlTfbcS3yKC869+FoIMwa6QMj9pL/Quc71KL66dbD2eO
fEnyw42OZhBaLVi02gmg08cuQqDGPGfhaUS+a2+vvCA1Ustko+llOctKIakQ/S9P
1KC+IxMZ4LnkuzE5A3Ko2aajLOnHJYHkBawL040d5jm8BNpEaDZQc6uFjs3mCEac
Tb3jSnGlKV7723mWgnndAm9vvgUiPET+pQZOpYDVmV6vLCJVjxfjRRugFHlUN/EF
QWGngX48V3bKYrAnSppTC9ffCn5vYgaymIPlAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQULuwyQulyJVGwZ50W/3tPKhmM8rIwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0x1d3lRdWx5SlZHd1o1MFdfM3RQS2ht
TThySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9PagwDQYJ
KoZIhvcNAQELBQADggEBABUkrP/RvkHxM8M7Jjm0neg1IzETRdxOtbZ/X8PVO4X1
HsjmyiUWaa8TuO9Mxc6ty11y7SMaQT4vFOLO8Rga6rzvDqF2Y5f1PBbUSihMSgOF
OFqAqVt4Hvg3cwgTAlyJS/equXYmexAHq45ccj3xmI/KLeBiLwq1A3XuSNYEKkce
AKFcZswHcR+q7BBSuS1/550Fml3W8ePa7FvggFsZ/MKAsrQmDtprn/kVWeY+Svk8
sdj/RPozF1PLltYbcNViLrNqozb677qAbdtA6Z7UMKpI6WxQuQrCEONbnTBXnpzG
BHxy7uth95KcZoyCgn/QoodUuk8T3mFsXAYGrezVJ7U=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org