Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/lKCpHzW7vPY6QT0Utd1roFJd0qo.roa
File: lKCpHzW7vPY6QT0Utd1roFJd0qo.roa (raw, json)
Hash identifier: gsREPgQeVZiwmIvMWMP2oJta69u+eJ7X4qzwlbFQUA0=
Subject key identifier: 94:A0:A9:1F:35:BB:BC:F6:3A:41:3D:14:B5:DD:6B:A0:52:5D:D2:AA
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lKCpHzW7vPY6QT0Utd1roFJd0qo.roa
Signing time: Thu 15 Sep 2022 02:49:54 +0000
ROA not before: Thu 15 Sep 2022 02:49:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94A0A91F35BBBCF63A413D14B5DD6BA0525DD2AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ff:1e:bb:43:d5:fb:79:88:93:51:47:72:c1:
1c:21:5c:64:b2:54:29:3c:b4:28:d3:db:8d:39:4f:
e9:26:e3:6d:b5:35:69:c4:93:ff:8a:0d:72:b7:ea:
75:78:4a:15:cd:f8:a5:28:4f:49:5f:22:b3:fe:83:
5e:6b:c7:c1:ba:93:af:34:e9:f0:59:07:3f:ea:29:
ab:41:d4:dc:ba:b9:dd:fc:87:36:38:5c:24:65:9f:
c8:55:db:41:6b:8a:0a:96:f9:00:0b:42:4e:a0:0f:
6f:b5:91:4d:5f:49:22:24:81:df:c6:e9:13:a0:03:
b1:f8:ca:2b:34:9a:f5:88:8f:fa:4a:60:92:05:9c:
d9:4e:cc:85:32:17:2d:cf:99:8c:c4:c1:4e:bb:bc:
84:9a:28:e0:0f:1f:8b:53:c8:52:a1:06:89:02:40:
a1:88:91:6c:85:75:b4:ca:0e:d4:f6:14:cc:61:fc:
d1:6a:4b:fa:b6:a8:9d:08:06:e2:e9:0b:9f:ff:4e:
39:26:c1:04:d8:f6:b4:2a:ff:4f:83:43:e2:58:f8:
be:b3:a7:28:1e:0a:0c:98:e6:29:40:11:e0:44:dd:
79:0b:89:22:c4:79:8b:cc:9c:2c:aa:17:b9:a9:04:
ff:8f:e3:f5:5b:dd:48:7d:70:e4:62:3e:3b:14:34:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A0:A9:1F:35:BB:BC:F6:3A:41:3D:14:B5:DD:6B:A0:52:5D:D2:AA
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lKCpHzW7vPY6QT0Utd1roFJd0qo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.16.0/20
Signature Algorithm: sha256WithRSAEncryption
15:00:55:5b:73:8f:f2:cf:24:d6:43:37:e0:bd:75:30:a4:5e:
b0:96:ae:23:c4:a3:f0:00:25:ff:a4:8e:a8:95:04:0b:c8:77:
dd:4c:a2:58:b4:e5:88:2d:8d:e3:29:64:62:99:14:f3:36:02:
2a:87:3e:88:10:1b:77:78:fa:ba:52:15:4c:94:a7:0e:f7:5c:
62:52:e0:9c:69:64:c3:64:cc:34:f5:54:dc:fc:df:ba:4f:9e:
45:72:b8:b5:33:e8:c1:1b:3f:c1:1d:5f:a7:ad:e3:c4:24:02:
af:be:c6:3d:18:b9:c6:50:31:24:ab:c0:36:0e:c1:c1:8c:b6:
a6:60:e3:ad:d7:83:93:b9:78:89:22:8a:2e:cc:84:e7:f2:f4:
1a:af:ba:ec:7e:5a:1d:36:11:c4:dc:42:c4:d2:30:86:89:96:
8c:f1:98:2e:74:b7:4a:11:28:d2:cf:e5:96:fb:94:bd:e6:08:
c5:9e:c5:1a:9e:1f:dc:50:01:b9:a1:b7:00:18:7b:a9:07:32:
8b:01:dc:b2:3b:52:f7:3a:b7:de:53:d9:65:57:6d:88:aa:cb:
f3:8d:bf:9d:6b:2d:57:a8:2f:e9:ac:bd:d9:c0:7b:49:f2:91:
5d:3e:23:41:59:04:44:e8:46:98:ce:99:b2:77:8c:25:d0:2b:
bf:71:25:de
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMjA5MTUw
MjQ5NTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk0QTBBOTFGMzVCQkJD
RjYzQTQxM0QxNEI1REQ2QkEwNTI1REQyQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCp/x67Q9X7eYiTUUdywRwhXGSyVCk8tCjT2405T+km4221NWnE
k/+KDXK36nV4ShXN+KUoT0lfIrP+g15rx8G6k6806fBZBz/qKatB1Ny6ud38hzY4
XCRln8hV20FrigqW+QALQk6gD2+1kU1fSSIkgd/G6ROgA7H4yis0mvWIj/pKYJIF
nNlOzIUyFy3PmYzEwU67vISaKOAPH4tTyFKhBokCQKGIkWyFdbTKDtT2FMxh/NFq
S/q2qJ0IBuLpC5//TjkmwQTY9rQq/0+DQ+JY+L6zpygeCgyY5ilAEeBE3XkLiSLE
eYvMnCyqF7mpBP+P4/Vb3Uh9cORiPjsUND9nAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUlKCpHzW7vPY6QT0Utd1roFJd0qowHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2xLQ3BIelc3dlBZNlFUMFV0ZDFyb0ZK
ZDBxby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9PRAwDQYJ
KoZIhvcNAQELBQADggEBABUAVVtzj/LPJNZDN+C9dTCkXrCWriPEo/AAJf+kjqiV
BAvId91Moli05YgtjeMpZGKZFPM2AiqHPogQG3d4+rpSFUyUpw73XGJS4JxpZMNk
zDT1VNz837pPnkVyuLUz6MEbP8EdX6et48QkAq++xj0YucZQMSSrwDYOwcGMtqZg
463Xg5O5eIkiii7MhOfy9Bqvuux+Wh02EcTcQsTSMIaJlozxmC50t0oRKNLP5Zb7
lL3mCMWexRqeH9xQAbmhtwAYe6kHMosB3LI7Uvc6t95T2WVXbYiqy/ONv51rLVeo
L+msvdnAe0nykV0+I0FZBEToRpjOmbJ3jCXQK79xJd4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org