Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/6XlFyLU8vk0KNmHctp1ye4aVpMI.roa
File: 6XlFyLU8vk0KNmHctp1ye4aVpMI.roa (raw, json)
Hash identifier: CTQhXtg3SSRNYlGZLJh2yk2dAJ2/084T1Xr+xvJMfEE=
Subject key identifier: E9:79:45:C8:B5:3C:BE:4D:0A:36:61:DC:B6:9D:72:7B:86:95:A4:C2
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 07A0
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/6XlFyLU8vk0KNmHctp1ye4aVpMI.roa
Signing time: Tue 29 Sep 2020 10:05:48 +0000
ROA not before: Tue 29 Sep 2020 10:05:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.65.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1952 (0x7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E97945C8B53CBE4D0A3661DCB69D727B8695A4C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:68:e4:a7:05:99:89:d5:b8:e9:04:a3:26:
98:dc:c5:b2:9f:5c:0c:ad:44:bc:16:06:3f:a4:b8:
26:53:51:f8:13:5a:8f:40:9b:c3:73:b7:12:72:eb:
30:85:6d:7a:08:f7:6c:f3:b7:b9:ad:c3:4c:ba:38:
d8:e2:fe:82:6e:69:05:05:86:da:46:9a:a0:63:f5:
e3:57:21:74:95:8b:c8:72:18:d3:76:3d:d3:c5:ac:
62:c2:1c:c2:e9:2e:55:74:4a:12:0a:34:de:23:fd:
03:e0:af:9d:98:95:58:61:5f:27:75:7a:26:2a:bf:
14:06:60:17:b5:f3:3b:69:6e:3a:bd:1e:10:a9:30:
69:d1:e6:e3:18:9f:f3:07:ba:fa:fd:31:a1:eb:cb:
a7:3d:2f:be:b5:fb:09:80:f4:2b:54:44:38:27:84:
35:bf:d2:6b:03:cb:17:38:0d:e5:1b:e4:1a:8e:ca:
d2:1e:94:29:b6:60:2c:2a:2f:5c:b3:10:f1:7d:b8:
b2:26:ab:13:70:60:59:e4:b8:0d:0e:64:c5:4b:fd:
34:59:39:ae:fc:58:08:0b:9f:3c:81:95:d0:39:c0:
28:ef:4a:bf:4e:3e:29:c6:e0:49:58:f4:8b:38:06:
93:97:16:c2:5b:17:ac:af:2a:ae:4d:22:7c:10:d3:
85:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:79:45:C8:B5:3C:BE:4D:0A:36:61:DC:B6:9D:72:7B:86:95:A4:C2
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/6XlFyLU8vk0KNmHctp1ye4aVpMI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.128.0/18
Signature Algorithm: sha256WithRSAEncryption
98:d6:05:8d:06:c4:7d:86:cb:a2:6f:da:2c:99:e2:d9:f6:c0:
06:da:92:b4:f4:83:71:b7:3f:d5:79:9c:62:0e:a4:36:35:2b:
c2:3d:ec:a7:af:eb:d3:c7:6b:1b:fb:f9:ba:18:04:e9:26:0c:
ae:d4:ae:b5:2b:de:a9:50:dc:b3:79:f8:5c:95:9d:ed:01:8b:
0c:42:38:8d:c1:be:62:87:5a:52:b4:19:a2:1d:8e:2b:2a:57:
e0:91:39:02:88:86:53:07:a5:d7:b6:cd:86:9f:71:27:de:31:
1e:75:bd:eb:a0:8a:d8:96:fe:54:a9:f3:7b:c2:87:39:26:b9:
0a:99:ea:3e:3f:69:b7:4f:10:1c:37:dc:57:7d:5e:89:29:59:
04:ae:ef:4a:5e:d7:f2:97:ff:d1:37:af:1c:1c:cb:af:70:d6:
24:c6:cb:ba:29:12:5d:b1:b2:9c:36:eb:26:68:24:28:be:7c:
4d:0a:06:15:c0:d0:5a:7f:96:36:61:20:e0:9c:97:8a:6d:5a:
9b:f6:bd:d8:f7:1a:b4:e7:de:f6:0f:a6:e7:94:cf:cf:5a:0f:
24:74:36:f4:a8:c6:40:fb:1b:ba:2e:45:d1:83:da:f1:6f:a5:
3a:11:05:11:d5:83:0d:1a:05:52:57:8d:40:b2:44:92:bb:0b:
2d:2c:8b:d0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMDA5Mjkx
MDA1NDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU5Nzk0NUM4QjUzQ0JF
NEQwQTM2NjFEQ0I2OUQ3MjdCODY5NUE0QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpF2jkpwWZidW46QSjJpjcxbKfXAytRLwWBj+kuCZTUfgTWo9A
m8NztxJy6zCFbXoI92zzt7mtw0y6ONji/oJuaQUFhtpGmqBj9eNXIXSVi8hyGNN2
PdPFrGLCHMLpLlV0ShIKNN4j/QPgr52YlVhhXyd1eiYqvxQGYBe18ztpbjq9HhCp
MGnR5uMYn/MHuvr9MaHry6c9L761+wmA9CtURDgnhDW/0msDyxc4DeUb5BqOytIe
lCm2YCwqL1yzEPF9uLImqxNwYFnkuA0OZMVL/TRZOa78WAgLnzyBldA5wCjvSr9O
PinG4ElY9Is4BpOXFsJbF6yvKq5NInwQ04VTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU6XlFyLU8vk0KNmHctp1ye4aVpMIwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vNlhsRnlMVTh2azBLTm1I
Y3RwMXllNGFWcE1JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bj1BgDANBgkqhkiG9w0BAQsFAAOCAQEAmNYFjQbEfYbLom/aLJni2fbABtqStPSD
cbc/1XmcYg6kNjUrwj3sp6/r08drG/v5uhgE6SYMrtSutSveqVDcs3n4XJWd7QGL
DEI4jcG+YodaUrQZoh2OKypX4JE5AoiGUwel17bNhp9xJ94xHnW966CK2Jb+VKnz
e8KHOSa5CpnqPj9pt08QHDfcV31eiSlZBK7vSl7X8pf/0TevHBzLr3DWJMbLuikS
XbGynDbrJmgkKL58TQoGFcDQWn+WNmEg4JyXim1am/a92PcatOfe9g+m55TPz1oP
JHQ29KjGQPsbui5F0YPa8W+lOhEFEdWDDRoFUleNQLJEkrsLLSyL0A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org