Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ALxTK7Pr5FW-DgfnsqYwpz7Pk_o.roa
File: ALxTK7Pr5FW-DgfnsqYwpz7Pk_o.roa (raw, json)
Hash identifier: RSLNVlBPM+gASbs1ZEbYU7yoGt9LlIHdMl2ulCWPzyA=
Subject key identifier: 00:BC:53:2B:B3:EB:E4:55:BE:0E:07:E7:B2:A6:30:A7:3E:CF:93:FA
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0911
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ALxTK7Pr5FW-DgfnsqYwpz7Pk_o.roa
Signing time: Sun 07 Feb 2021 11:55:11 +0000
ROA not before: Sun 07 Feb 2021 11:55:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.60.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321 (0x911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=00BC532BB3EBE455BE0E07E7B2A630A73ECF93FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:2c:a5:61:45:3b:89:38:4f:44:da:33:82:
8a:bb:b0:ec:05:4d:62:80:47:9c:9b:b9:7b:17:1c:
9e:1b:93:96:ca:5f:31:ee:9d:bc:d0:4b:ba:ff:49:
6b:a1:5e:57:d2:aa:e6:78:8c:65:de:cb:a1:db:0d:
d2:33:ef:55:fd:36:03:bc:9e:d8:e7:ca:b4:93:be:
d2:6d:fd:b8:14:6b:d2:3c:42:0a:c8:49:6d:50:36:
8c:5d:31:1e:35:a2:eb:c0:35:7e:0b:a5:c4:b4:de:
5a:26:7a:24:9f:85:dc:ee:4d:35:87:76:81:52:1c:
4d:1b:9e:b8:20:74:75:27:06:10:4a:7f:48:15:8a:
c6:29:c3:42:15:6a:3b:0a:af:d3:b9:a4:51:41:e2:
c2:fa:c1:31:bf:a1:57:fe:5d:a3:28:bc:a7:01:e8:
9f:d7:14:d0:f4:45:73:9b:18:ac:5d:72:5d:b0:35:
6c:b9:44:ad:e0:7b:f0:59:9e:7d:14:5d:3b:f3:96:
e5:31:2e:06:43:ae:02:0c:55:e0:cc:fa:c1:2e:8a:
b5:e6:0e:20:e3:d6:cc:80:52:68:f5:30:58:01:3a:
7f:60:8a:c2:12:e4:5f:a4:ca:23:89:a3:28:d4:1e:
06:84:21:26:9d:13:22:d6:30:bf:64:ce:82:12:07:
46:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BC:53:2B:B3:EB:E4:55:BE:0E:07:E7:B2:A6:30:A7:3E:CF:93:FA
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ALxTK7Pr5FW-DgfnsqYwpz7Pk_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.160.0/19
Signature Algorithm: sha256WithRSAEncryption
9e:a1:66:5b:57:fc:9b:eb:e7:6c:f7:24:0b:ed:3b:f7:10:02:
cc:37:cd:94:97:ef:a9:97:a5:67:a0:28:d6:4e:4a:87:6a:97:
94:cd:94:fe:a7:af:c6:c7:30:29:a8:bc:f9:6e:c0:b5:7f:41:
2e:d5:1e:7e:4e:3c:66:5f:cf:1c:74:c6:a8:6c:51:f1:18:75:
3e:ef:7e:d1:f9:fc:7e:28:f2:1c:8e:8b:8e:27:04:2c:4d:a4:
59:82:95:07:ba:33:9d:27:5d:90:83:ee:63:a7:de:38:43:87:
11:01:16:7b:4e:20:16:4d:38:d6:4a:7b:ae:e3:a3:8d:5a:82:
39:2e:50:c3:ef:7e:10:d0:c2:11:86:66:31:39:dc:cf:64:36:
c1:ce:ef:56:84:01:c9:9d:f3:6a:56:fe:57:a2:9e:b3:5a:71:
9c:66:62:ac:06:3a:ae:e1:71:77:a8:22:24:a4:eb:b2:c6:ec:
55:d4:6d:68:65:e0:79:be:7c:42:50:e2:c4:90:44:24:30:9f:
b3:56:f1:a4:34:c6:a3:1d:b5:db:f0:e0:a9:3e:79:35:f4:3b:
0d:f9:82:f1:b1:58:7a:d3:cd:52:e0:e0:00:b4:eb:a2:4c:4e:
a7:42:b4:ee:d5:66:8f:b9:fb:0c:c6:22:a4:f3:31:52:32:c2:
4e:40:8a:9f
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMTAyMDcx
MTU1MTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAwQkM1MzJCQjNFQkU0
NTVCRTBFMDdFN0IyQTYzMEE3M0VDRjkzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCj8iylYUU7iThPRNozgoq7sOwFTWKAR5ybuXsXHJ4bk5bKXzHu
nbzQS7r/SWuhXlfSquZ4jGXey6HbDdIz71X9NgO8ntjnyrSTvtJt/bgUa9I8QgrI
SW1QNoxdMR41ouvANX4LpcS03lomeiSfhdzuTTWHdoFSHE0bnrggdHUnBhBKf0gV
isYpw0IVajsKr9O5pFFB4sL6wTG/oVf+XaMovKcB6J/XFND0RXObGKxdcl2wNWy5
RK3ge/BZnn0UXTvzluUxLgZDrgIMVeDM+sEuirXmDiDj1syAUmj1MFgBOn9gisIS
5F+kyiOJoyjUHgaEISadEyLWML9kzoISB0YFAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUALxTK7Pr5FW+DgfnsqYwpz7Pk/owHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vQUx4VEs3UHI1RlctRGdm
bnNxWXdwejdQa19vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BT08oDANBgkqhkiG9w0BAQsFAAOCAQEAnqFmW1f8m+vnbPckC+079xACzDfNlJfv
qZelZ6Ao1k5Kh2qXlM2U/qevxscwKai8+W7AtX9BLtUefk48Zl/PHHTGqGxR8Rh1
Pu9+0fn8fijyHI6LjicELE2kWYKVB7oznSddkIPuY6feOEOHEQEWe04gFk041kp7
ruOjjVqCOS5Qw+9+ENDCEYZmMTncz2Q2wc7vVoQByZ3zalb+V6Kes1pxnGZirAY6
ruFxd6giJKTrssbsVdRtaGXgeb58QlDixJBEJDCfs1bxpDTGox212/DgqT55NfQ7
DfmC8bFYetPNUuDgALTrokxOp0K07tVmj7n7DMYipPMxUjLCTkCKnw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org