Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G0Kf-QH2FfkxqQdJ4Wt0DCEsUoE.roa
File: G0Kf-QH2FfkxqQdJ4Wt0DCEsUoE.roa (raw, json)
Hash identifier: u+FGpvw84EuFL6qOeERwEDVgPi8bsBkskZu3/kQGRXw=
Subject key identifier: 1B:42:9F:F9:01:F6:15:F9:31:A9:07:49:E1:6B:74:0C:21:2C:52:81
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0797
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G0Kf-QH2FfkxqQdJ4Wt0DCEsUoE.roa
Signing time: Tue 29 Sep 2020 10:05:46 +0000
ROA not before: Tue 29 Sep 2020 10:05:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.65.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1943 (0x797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B429FF901F615F931A90749E16B740C212C5281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4a:45:aa:d5:05:03:f7:f4:be:f7:b1:28:ff:
a6:b5:c3:ee:99:1b:17:92:bd:1d:f6:4d:09:65:88:
75:f6:d7:1b:62:7d:e1:a9:5c:01:ad:48:3d:b2:ed:
f0:10:72:76:16:23:9b:d5:f4:9d:13:c4:c6:e5:18:
85:ff:1a:29:3a:e3:3a:2a:7c:a9:60:54:81:58:14:
07:a3:cc:f4:20:0c:8c:18:af:69:da:bf:45:fa:7f:
ac:37:e0:4c:f7:56:67:1a:37:e8:28:ee:49:f8:c7:
9f:75:3e:82:18:6a:bd:d1:c6:69:2a:fb:e1:10:f1:
92:c4:38:5a:e9:e8:06:e4:d3:81:e5:31:05:04:0d:
44:23:c9:23:1a:8a:07:0b:0d:35:eb:48:fa:5b:17:
0b:6a:c2:4f:83:96:c4:79:a5:76:80:bd:7a:c6:af:
49:70:32:cc:12:ce:c2:bd:7c:05:b6:8b:a0:4b:e9:
b0:82:9e:db:27:36:ad:55:da:f5:6b:31:f1:fa:5a:
b3:b6:d0:eb:fd:1f:08:5c:ce:42:e8:ac:dd:35:7b:
2b:1f:c4:80:62:c9:64:4a:0c:39:ea:3e:fe:15:fe:
96:ee:17:70:73:8c:db:0f:e5:48:75:70:3c:cc:d2:
38:f3:a9:02:77:e8:e2:6f:7b:04:07:f9:70:4e:10:
86:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:42:9F:F9:01:F6:15:F9:31:A9:07:49:E1:6B:74:0C:21:2C:52:81
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G0Kf-QH2FfkxqQdJ4Wt0DCEsUoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.0.0/17
Signature Algorithm: sha256WithRSAEncryption
07:35:c5:f6:e2:fd:e3:34:2c:93:73:2b:b4:a9:c2:82:b7:64:
82:29:1c:e4:e9:db:d1:4e:15:84:e8:f8:6e:3c:01:79:c5:2d:
5f:4d:72:13:3c:59:77:0e:30:92:50:fe:38:1e:78:60:2d:a0:
d1:63:02:7d:6a:b8:ad:5a:56:7a:4b:c5:2f:12:b8:be:c1:28:
64:89:59:92:77:82:eb:37:7b:43:ab:1a:a9:fd:95:73:7a:e1:
33:b8:44:20:fd:ac:10:74:80:8f:c5:2b:2c:b3:b7:fe:44:98:
1b:9a:c6:9a:50:4f:37:15:6f:7c:3a:a5:f2:e7:3e:dc:59:e7:
94:26:21:65:8b:7e:7f:3e:6f:69:92:01:a8:fa:27:63:6c:e2:
79:0f:87:d5:08:aa:86:43:c6:10:0c:b7:78:c8:51:61:cc:04:
c5:95:02:bf:98:c9:9d:e2:ce:fc:42:4d:4b:8e:76:81:f5:1f:
6a:b4:12:1e:61:dd:d4:2f:16:ce:8d:20:82:d7:27:43:70:22:
3e:f8:dd:71:d6:97:7c:84:a6:b3:27:bb:99:ea:56:99:f0:7f:
01:96:13:98:ac:95:fa:75:d5:3d:e6:29:f0:7c:b8:e0:61:2b:
d9:26:1b:38:94:ac:9f:c0:0f:0d:9e:99:03:4c:65:85:15:1d:
27:96:a6:3b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMDA5Mjkx
MDA1NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFCNDI5RkY5MDFGNjE1
RjkzMUE5MDc0OUUxNkI3NDBDMjEyQzUyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8SkWq1QUD9/S+97Eo/6a1w+6ZGxeSvR32TQlliHX21xtifeGp
XAGtSD2y7fAQcnYWI5vV9J0TxMblGIX/Gik64zoqfKlgVIFYFAejzPQgDIwYr2na
v0X6f6w34Ez3VmcaN+go7kn4x591PoIYar3Rxmkq++EQ8ZLEOFrp6Abk04HlMQUE
DUQjySMaigcLDTXrSPpbFwtqwk+DlsR5pXaAvXrGr0lwMswSzsK9fAW2i6BL6bCC
ntsnNq1V2vVrMfH6WrO20Ov9HwhczkLorN01eysfxIBiyWRKDDnqPv4V/pbuF3Bz
jNsP5Uh1cDzM0jjzqQJ36OJvewQH+XBOEIaVAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUG0Kf+QH2FfkxqQdJ4Wt0DCEsUoEwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vRzBLZi1RSDJGZmt4cVFk
SjRXdDBEQ0VzVW9FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bz1BADANBgkqhkiG9w0BAQsFAAOCAQEABzXF9uL94zQsk3MrtKnCgrdkgikc5Onb
0U4VhOj4bjwBecUtX01yEzxZdw4wklD+OB54YC2g0WMCfWq4rVpWekvFLxK4vsEo
ZIlZkneC6zd7Q6saqf2Vc3rhM7hEIP2sEHSAj8UrLLO3/kSYG5rGmlBPNxVvfDql
8uc+3FnnlCYhZYt+fz5vaZIBqPonY2zieQ+H1QiqhkPGEAy3eMhRYcwExZUCv5jJ
neLO/EJNS452gfUfarQSHmHd1C8Wzo0ggtcnQ3AiPvjdcdaXfISmsye7mepWmfB/
AZYTmKyV+nXVPeYp8Hy44GEr2SYbOJSsn8APDZ6ZA0xlhRUdJ5amOw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org