Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/LNl_8LzcYuvQ7IVUOQ6R58pYF_o.roa
File: LNl_8LzcYuvQ7IVUOQ6R58pYF_o.roa (raw, json)
Hash identifier: +p4tYqj/jhlGWZqjbKxzuXHVm0wArQ+Ggz9JScMD0Ww=
Subject key identifier: 2C:D9:7F:F0:BC:DC:62:EB:D0:EC:85:54:39:0E:91:E7:CA:58:17:FA
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0917
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/LNl_8LzcYuvQ7IVUOQ6R58pYF_o.roa
Signing time: Sun 07 Feb 2021 11:55:15 +0000
ROA not before: Sun 07 Feb 2021 11:55:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.63.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2327 (0x917)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CD97FF0BCDC62EBD0EC8554390E91E7CA5817FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b7:ef:ec:29:01:35:85:11:9c:c8:9c:37:43:
bf:2a:48:ad:1d:06:72:80:3d:51:ce:fd:7d:41:6b:
59:40:77:c0:52:6c:73:d2:47:62:6c:88:79:3e:ac:
c7:f4:cf:3d:fe:09:96:7c:3a:68:7a:f7:30:6c:7f:
0e:c0:e3:9e:3f:b5:7a:c5:e0:d6:82:58:7e:ee:e8:
a8:60:1d:12:2d:83:12:06:62:b7:3d:b8:bf:2b:d9:
a4:04:77:e6:77:03:99:9f:29:e4:88:ea:12:f2:b0:
ad:ba:8d:14:a1:7a:d6:b7:f3:6c:a7:d5:53:5c:2f:
1d:f5:33:5d:e9:81:25:c0:52:31:86:28:fd:00:45:
be:5d:26:b7:5e:bd:cc:1d:39:bf:69:25:72:91:85:
ae:d1:9a:31:d9:32:6c:5c:68:6b:76:b0:30:5a:a5:
a4:a5:fb:f9:28:e5:aa:0f:c1:d3:32:4a:ed:bb:57:
e9:2b:bb:4f:1a:2b:d7:e4:79:e2:a6:c3:fc:1e:26:
38:d4:cd:fd:41:00:a4:0a:43:d9:55:60:0e:85:9d:
e2:60:dd:28:5f:c4:4c:4b:38:15:c7:ff:89:1f:7e:
ec:a4:12:9d:53:71:c5:d1:86:18:77:a3:85:97:d2:
e7:a6:8c:83:65:82:1a:64:ff:e1:bd:03:a9:d8:47:
f0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D9:7F:F0:BC:DC:62:EB:D0:EC:85:54:39:0E:91:E7:CA:58:17:FA
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/LNl_8LzcYuvQ7IVUOQ6R58pYF_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a4:b2:01:73:0e:cf:64:b5:e3:7e:02:3c:97:52:87:22:85:02:
ac:59:d7:61:eb:58:bb:84:7b:38:f3:70:18:95:c6:97:08:92:
01:5d:8d:77:a0:be:9c:a3:82:04:05:e7:34:e9:fc:8c:97:7d:
d2:70:61:db:79:82:3c:f8:12:c2:ed:cd:1d:43:f2:e2:20:78:
f3:50:ae:91:d8:c8:bc:ff:cf:84:28:09:dd:01:73:cf:ae:33:
16:29:f6:63:a1:64:93:fb:61:a1:7e:24:91:cf:08:c8:18:f8:
e7:7e:30:1f:70:ae:c2:d3:50:17:f4:c1:f7:83:1e:b3:d3:58:
02:96:a4:9f:ba:27:97:28:71:18:c9:c4:62:48:e7:21:3d:e5:
4e:06:54:a6:12:cc:55:af:0f:c6:c7:c4:d8:42:a4:1c:1a:02:
1d:99:69:43:df:8c:f5:b4:82:07:0d:ed:d5:bd:47:df:6b:db:
05:b4:6a:75:58:f8:51:38:7c:52:8e:5f:98:87:c7:67:e9:8e:
a7:48:2d:a1:e5:58:96:bf:be:d9:aa:8e:4b:74:a3:c6:e8:b6:
79:b2:f6:31:0d:0b:a7:dc:70:e4:5c:0a:01:1c:10:3f:95:fa:
50:91:f5:e7:88:56:70:ac:da:31:61:8a:e3:33:96:d7:f0:a0:
9c:42:76:c5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMTAyMDcx
MTU1MTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJDRDk3RkYwQkNEQzYy
RUJEMEVDODU1NDM5MEU5MUU3Q0E1ODE3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCt+/sKQE1hRGcyJw3Q78qSK0dBnKAPVHO/X1Ba1lAd8BSbHPS
R2JsiHk+rMf0zz3+CZZ8Omh69zBsfw7A454/tXrF4NaCWH7u6KhgHRItgxIGYrc9
uL8r2aQEd+Z3A5mfKeSI6hLysK26jRSheta382yn1VNcLx31M13pgSXAUjGGKP0A
Rb5dJrdevcwdOb9pJXKRha7RmjHZMmxcaGt2sDBapaSl+/ko5aoPwdMySu27V+kr
u08aK9fkeeKmw/weJjjUzf1BAKQKQ9lVYA6FneJg3ShfxExLOBXH/4kffuykEp1T
ccXRhhh3o4WX0uemjINlghpk/+G9A6nYR/ATAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQULNl/8LzcYuvQ7IVUOQ6R58pYF/owHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vTE5sXzhMemNZdXZRN0lW
VU9RNlI1OHBZRl9vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bj0/wDANBgkqhkiG9w0BAQsFAAOCAQEApLIBcw7PZLXjfgI8l1KHIoUCrFnXYetY
u4R7OPNwGJXGlwiSAV2Nd6C+nKOCBAXnNOn8jJd90nBh23mCPPgSwu3NHUPy4iB4
81CukdjIvP/PhCgJ3QFzz64zFin2Y6Fkk/thoX4kkc8IyBj4534wH3CuwtNQF/TB
94Mes9NYApakn7onlyhxGMnEYkjnIT3lTgZUphLMVa8PxsfE2EKkHBoCHZlpQ9+M
9bSCBw3t1b1H32vbBbRqdVj4UTh8Uo5fmIfHZ+mOp0gtoeVYlr++2aqOS3Sjxui2
ebL2MQ0Lp9xw5FwKARwQP5X6UJH154hWcKzaMWGK4zOW1/CgnEJ2xQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:51 2025 by rpki-client