Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/VvALI2TtNk2OD6s3ugCZAjX4ugo.roa
File: VvALI2TtNk2OD6s3ugCZAjX4ugo.roa (raw, json)
Hash identifier: T3KWe/adxd0vWhaSWNk818tuHI82WZo7+V6Kbzy66Kw=
Subject key identifier: 56:F0:0B:23:64:ED:36:4D:8E:0F:AB:37:BA:00:99:02:35:F8:BA:0A
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 079D
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/VvALI2TtNk2OD6s3ugCZAjX4ugo.roa
Signing time: Tue 29 Sep 2020 09:59:46 +0000
ROA not before: Tue 29 Sep 2020 09:59:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9918
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=56F00B2364ED364D8E0FAB37BA00990235F8BA0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:69:ae:a0:83:26:76:4c:7c:4a:f0:e0:9f:01:
e5:b7:69:88:05:d7:fa:3b:59:21:42:46:ae:5f:17:
ff:62:6e:76:0a:44:fc:b4:f0:85:29:99:70:07:a0:
ba:6d:7b:89:8c:05:78:6e:ac:57:34:30:37:87:1f:
50:74:b8:2a:04:24:15:ad:1b:50:60:f4:9b:54:06:
31:b0:b9:e6:3f:00:10:66:83:49:fc:b8:76:43:26:
ca:2b:c1:f2:fa:b1:69:f0:2e:79:ee:b1:57:62:65:
2c:88:ce:17:07:ed:97:31:47:06:44:7f:f2:19:bf:
6d:23:c0:5a:43:28:1a:0b:3f:62:ba:f6:5e:db:a5:
b8:de:12:fa:66:eb:8f:af:44:a2:87:61:c5:61:8a:
ac:65:c0:8c:b3:18:95:95:6a:3d:78:ca:e2:7c:92:
07:57:50:4f:de:b2:a0:ee:d2:d8:bf:f0:5a:73:f9:
93:2f:e1:d6:6e:97:d8:0c:4b:19:a8:eb:6d:39:94:
53:82:c0:dc:7d:1f:b1:b8:02:56:81:8d:07:14:88:
1c:84:b3:16:b0:b7:42:ae:76:0c:91:c6:4c:fe:5d:
d3:a8:d2:73:85:45:1c:9e:0a:40:b7:d3:34:04:1e:
7d:bc:cf:a8:b4:79:0f:f2:2e:be:52:4e:5a:d8:34:
58:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F0:0B:23:64:ED:36:4D:8E:0F:AB:37:BA:00:99:02:35:F8:BA:0A
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/VvALI2TtNk2OD6s3ugCZAjX4ugo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
02:1b:49:d9:a9:a9:22:0a:bc:dd:e1:6e:ef:46:b5:6d:78:0c:
42:9e:72:7e:db:6a:d7:04:c9:77:ef:f5:0e:cb:98:19:e8:31:
db:1e:b3:d8:a3:e4:31:5c:a2:f8:d2:6f:8a:f2:59:79:53:ff:
32:0e:e7:d8:1e:81:7c:31:40:de:e9:64:26:c2:25:92:6b:ce:
4b:1f:ca:4c:a2:3a:f4:3b:13:3c:3a:68:06:07:df:67:0f:9d:
f6:95:62:c0:80:45:c5:87:f2:02:fd:a3:23:ec:2c:74:3d:aa:
b8:e9:df:be:8b:f1:19:2c:22:1a:35:8d:f7:99:61:c2:a2:85:
bd:86:78:58:2c:89:f3:c3:bb:fb:f0:78:51:fd:be:34:89:4a:
85:6b:46:7b:0e:e8:71:6a:ce:76:8d:2c:7f:2c:18:90:84:71:
9a:5e:f0:e3:f9:c3:dc:3b:09:5e:31:5e:4b:41:9c:33:3f:0a:
20:b6:86:40:e5:ab:9c:19:1b:af:2c:ba:17:91:13:15:fb:d4:
17:8a:0b:ab:bb:7e:69:d8:7d:a7:50:c8:84:44:2d:a5:57:85:
81:a1:c4:d0:18:1c:c5:41:7a:b6:68:57:a5:7a:e3:ee:51:f2:
67:90:5d:b2:db:e1:ee:0d:ae:d6:e8:dd:06:a3:07:54:e2:01:
1c:cd:6f:4e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICB50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMDA5Mjkw
OTU5NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU2RjAwQjIzNjRFRDM2
NEQ4RTBGQUIzN0JBMDA5OTAyMzVGOEJBMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmaa6ggyZ2THxK8OCfAeW3aYgF1/o7WSFCRq5fF/9ibnYKRPy0
8IUpmXAHoLpte4mMBXhurFc0MDeHH1B0uCoEJBWtG1Bg9JtUBjGwueY/ABBmg0n8
uHZDJsorwfL6sWnwLnnusVdiZSyIzhcH7ZcxRwZEf/IZv20jwFpDKBoLP2K69l7b
pbjeEvpm64+vRKKHYcVhiqxlwIyzGJWVaj14yuJ8kgdXUE/esqDu0ti/8Fpz+ZMv
4dZul9gMSxmo6205lFOCwNx9H7G4AlaBjQcUiByEsxawt0KudgyRxkz+XdOo0nOF
RRyeCkC30zQEHn28z6i0eQ/yLr5STlrYNFjTAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUVvALI2TtNk2OD6s3ugCZAjX4ugowHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Z2QUxJMlR0TmsyT0Q2czN1Z0NaQWpY
NHVnby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ
KoZIhvcNAQELBQADggEBAAIbSdmpqSIKvN3hbu9GtW14DEKecn7batcEyXfv9Q7L
mBnoMdses9ij5DFcovjSb4ryWXlT/zIO59gegXwxQN7pZCbCJZJrzksfykyiOvQ7
Ezw6aAYH32cPnfaVYsCARcWH8gL9oyPsLHQ9qrjp376L8RksIho1jfeZYcKihb2G
eFgsifPDu/vweFH9vjSJSoVrRnsO6HFqznaNLH8sGJCEcZpe8OP5w9w7CV4xXktB
nDM/CiC2hkDlq5wZG68suheRExX71BeKC6u7fmnYfadQyIRELaVXhYGhxNAYHMVB
erZoV6V64+5R8meQXbLb4e4Nrtbo3QajB1TiARzNb04=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org