Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/q18tOVM9_UP-ylIyxwlUH3GlV3U.roa
File: q18tOVM9_UP-ylIyxwlUH3GlV3U.roa (raw, json)
Hash identifier: MATAZ2al2JeZ1YHfdaOHyQOb8PdZXU/5LIFpqiWeXHc=
Subject key identifier: AB:5F:2D:39:53:3D:FD:43:FE:CA:52:32:C7:09:54:1F:71:A5:57:75
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09D7
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/q18tOVM9_UP-ylIyxwlUH3GlV3U.roa
Signing time: Wed 29 Sep 2021 02:52:16 +0000
ROA not before: Wed 29 Sep 2021 02:52:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 61.61.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2519 (0x9d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AB5F2D39533DFD43FECA5232C709541F71A55775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:57:17:1e:4f:24:75:b0:04:0f:49:8d:11:ce:
67:74:53:f6:ae:6b:1b:11:f2:91:98:d8:ac:a2:0b:
bd:16:a1:db:06:95:40:d2:e6:83:4e:66:c4:62:3f:
dc:5a:44:d8:3f:bc:17:11:aa:fb:b4:77:c7:e5:2c:
99:4a:23:01:04:54:22:e9:6c:51:2c:f0:af:8b:f2:
ba:a6:4a:33:d8:5b:6e:38:56:42:84:70:9d:1e:45:
64:a3:2e:cb:4c:39:88:81:7e:27:f5:d9:e1:d7:33:
b9:ce:42:f6:03:e3:d8:6f:bb:1d:43:17:de:7e:60:
9f:fe:e4:00:70:80:69:df:77:4d:7a:83:44:49:21:
5c:b3:c1:88:92:ae:18:fc:6e:e2:07:43:3c:55:82:
d0:73:c0:3e:45:48:ce:68:87:47:09:e1:6e:5a:ef:
88:7f:06:86:5b:c3:5b:30:99:33:8a:2e:ac:de:f5:
49:09:97:27:1e:5b:00:2e:ec:00:de:ca:25:94:7d:
54:c0:16:80:c8:c8:3f:78:46:76:ad:9b:5a:02:9f:
a6:13:95:a3:bc:ef:54:c0:e5:67:7f:49:f2:72:94:
5d:9e:b5:c8:43:5a:13:28:67:96:c1:1c:14:9f:e7:
da:a6:72:3f:b6:77:66:c5:44:8d:9f:b9:f3:ac:7f:
c1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5F:2D:39:53:3D:FD:43:FE:CA:52:32:C7:09:54:1F:71:A5:57:75
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/q18tOVM9_UP-ylIyxwlUH3GlV3U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/24
Signature Algorithm: sha256WithRSAEncryption
02:34:17:a9:e4:33:9c:ed:02:f1:5f:d8:52:ca:a6:5f:60:0a:
7f:29:c2:d7:f6:4c:a6:5a:42:59:d6:95:65:3f:08:d6:73:2e:
a4:06:07:d6:74:ac:fb:7d:e7:d6:9d:39:cb:2a:0e:10:7a:17:
e7:c7:b9:8f:e3:8e:e7:a2:ff:30:21:e2:5f:3c:80:69:9f:45:
ee:df:f5:98:94:d4:c5:6e:e1:26:be:8c:4b:d0:01:04:a7:fc:
4e:c7:3d:ca:89:5b:0c:a6:8d:05:aa:1a:af:e6:ff:a0:2b:9c:
5a:08:d6:d8:6f:55:bd:17:86:c4:ad:88:09:84:7e:43:4c:c6:
68:01:7d:e5:d4:0f:7e:26:27:22:1a:df:68:17:09:58:67:db:
51:3c:3c:2a:e9:8c:1e:c2:3f:3c:5d:62:36:4b:4c:f7:af:d9:
3c:2a:44:08:6d:61:86:8b:2c:ed:62:c1:dc:bb:f3:95:aa:23:
9b:7e:4f:3c:f5:05:d6:35:cc:34:c9:98:a9:40:9d:c2:5a:b1:
d0:6b:fb:ed:f7:5d:e3:3b:19:f0:47:00:31:84:8f:ed:97:e9:
4d:36:56:14:8e:51:66:a5:31:e5:11:e0:c7:99:86:4b:f5:a9:
e7:23:16:c1:1a:8a:5a:90:2d:67:e6:d5:72:cf:5b:6a:99:4e:
02:66:55:a2
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMTA5Mjkw
MjUyMTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFCNUYyRDM5NTMzREZE
NDNGRUNBNTIzMkM3MDk1NDFGNzFBNTU3NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhVxceTyR1sAQPSY0Rzmd0U/auaxsR8pGY2KyiC70WodsGlUDS
5oNOZsRiP9xaRNg/vBcRqvu0d8flLJlKIwEEVCLpbFEs8K+L8rqmSjPYW244VkKE
cJ0eRWSjLstMOYiBfif12eHXM7nOQvYD49hvux1DF95+YJ/+5ABwgGnfd016g0RJ
IVyzwYiSrhj8buIHQzxVgtBzwD5FSM5oh0cJ4W5a74h/BoZbw1swmTOKLqze9UkJ
lyceWwAu7ADeyiWUfVTAFoDIyD94Rnatm1oCn6YTlaO871TA5Wd/SfJylF2etchD
WhMoZ5bBHBSf59qmcj+2d2bFRI2fufOsf8GlAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUq18tOVM9/UP+ylIyxwlUH3GlV3UwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3ExOHRPVk05X1VQLXlsSXl4d2xVSDNH
bFYzVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUYwDQYJ
KoZIhvcNAQELBQADggEBAAI0F6nkM5ztAvFf2FLKpl9gCn8pwtf2TKZaQlnWlWU/
CNZzLqQGB9Z0rPt959adOcsqDhB6F+fHuY/jjuei/zAh4l88gGmfRe7f9ZiU1MVu
4Sa+jEvQAQSn/E7HPcqJWwymjQWqGq/m/6ArnFoI1thvVb0XhsStiAmEfkNMxmgB
feXUD34mJyIa32gXCVhn21E8PCrpjB7CPzxdYjZLTPev2TwqRAhtYYaLLO1iwdy7
85WqI5t+Tzz1BdY1zDTJmKlAncJasdBr++33XeM7GfBHADGEj+2X6U02VhSOUWal
MeUR4MeZhkv1qecjFsEailqQLWfm1XLPW2qZTgJmVaI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org