Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/OKPADCP1-Qu5aBCXwqZyzWiycIE.roa
File: OKPADCP1-Qu5aBCXwqZyzWiycIE.roa (raw, json)
Hash identifier: 7nxlGdQmMT/Rz2eKvFjGREnPvrytLA/gxopmBSkfntI=
Subject key identifier: 38:A3:C0:0C:23:F5:F9:0B:B9:68:10:97:C2:A6:72:CD:68:B2:70:81
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0791
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/OKPADCP1-Qu5aBCXwqZyzWiycIE.roa
Signing time: Tue 29 Sep 2020 10:05:44 +0000
ROA not before: Tue 29 Sep 2020 10:05:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.60.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1937 (0x791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38A3C00C23F5F90BB9681097C2A672CD68B27081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:12:84:65:6d:71:7a:2b:35:16:03:e6:73:0e:
a9:59:fb:0a:27:27:79:65:8e:97:23:cb:7d:79:03:
99:f6:cd:4b:50:8d:71:c8:3f:ae:3b:1b:23:aa:a0:
78:2a:61:5c:87:4f:75:a6:0f:f7:d2:91:27:d0:d7:
12:15:18:4b:46:14:00:79:ff:91:f8:10:f9:d0:78:
7a:d1:4d:60:1b:38:34:d4:bc:2d:f8:52:82:72:1b:
f1:ba:51:d5:0a:ed:d3:d5:46:cb:07:2a:54:51:20:
77:a8:38:5d:72:1e:4f:5d:0d:86:01:27:e6:1f:3a:
1d:1f:ec:a7:c7:8c:59:1c:3a:0b:c8:f7:2f:7f:ba:
91:00:55:fd:bf:df:bd:69:e8:19:38:fd:0c:32:4f:
40:aa:9e:7a:9d:82:f7:a8:78:44:53:96:7f:d9:21:
45:81:cf:ba:54:87:e2:fd:af:49:a8:43:4c:b5:1d:
61:e9:2a:85:4b:1b:bf:39:07:05:ae:03:e6:84:f7:
b5:a5:cf:18:61:31:8f:b6:3a:10:d2:6e:f2:45:6a:
a5:a7:92:9c:e9:a1:4a:18:3f:dc:03:81:59:6e:81:
0a:f6:0a:ab:55:bf:47:b5:b0:8f:03:75:4b:1f:0b:
d6:b7:dc:2b:e2:74:e7:1a:6c:82:f1:76:d2:74:66:
b8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A3:C0:0C:23:F5:F9:0B:B9:68:10:97:C2:A6:72:CD:68:B2:70:81
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/OKPADCP1-Qu5aBCXwqZyzWiycIE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
42:ef:6b:cf:97:f8:e7:7b:8a:37:42:20:e5:9c:45:96:8c:a3:
69:24:42:fb:52:5c:45:94:50:1f:82:9b:cc:64:64:d5:1e:99:
3a:d3:d3:0d:54:c7:b7:50:33:96:1c:7e:5d:8a:b6:37:02:e5:
5a:e4:45:d4:ad:65:0b:ca:dc:34:52:fe:06:da:4f:7e:65:96:
16:d4:b2:76:51:8a:34:d3:09:bc:12:c3:97:10:e9:f4:2a:5e:
0e:a0:f4:58:ac:03:a3:ba:66:92:e1:16:85:ec:58:44:01:c9:
24:36:ac:3f:6c:3e:62:c1:f4:23:25:36:db:b2:d4:f6:6b:ea:
c3:b7:d4:90:40:61:15:e5:59:48:53:99:e0:82:bd:3b:ed:6a:
64:cc:2a:88:4c:70:1c:bc:ca:88:63:16:7d:55:88:6c:06:69:
d4:58:a2:3c:db:c3:f8:da:09:a2:36:17:53:73:8a:ab:22:f2:
43:56:e8:75:98:89:31:37:eb:8d:b9:0f:a6:d0:ea:6b:a0:f7:
a0:1d:3d:de:e6:40:97:e6:4a:2f:90:5e:10:68:81:62:86:81:
f8:ae:8a:a4:bb:e6:ef:bd:90:95:b8:0f:b5:f6:47:9c:10:b3:
68:d7:aa:33:24:67:35:a4:7b:ba:87:d7:00:f6:98:f0:4e:21:
27:82:95:c6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMDA5Mjkx
MDA1NDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM4QTNDMDBDMjNGNUY5
MEJCOTY4MTA5N0MyQTY3MkNENjhCMjcwODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGEoRlbXF6KzUWA+ZzDqlZ+wonJ3lljpcjy315A5n2zUtQjXHI
P647GyOqoHgqYVyHT3WmD/fSkSfQ1xIVGEtGFAB5/5H4EPnQeHrRTWAbODTUvC34
UoJyG/G6UdUK7dPVRssHKlRRIHeoOF1yHk9dDYYBJ+YfOh0f7KfHjFkcOgvI9y9/
upEAVf2/371p6Bk4/QwyT0CqnnqdgveoeERTln/ZIUWBz7pUh+L9r0moQ0y1HWHp
KoVLG785BwWuA+aE97WlzxhhMY+2OhDSbvJFaqWnkpzpoUoYP9wDgVlugQr2CqtV
v0e1sI8DdUsfC9a33CvidOcabILxdtJ0ZrjNAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUOKPADCP1+Qu5aBCXwqZyzWiycIEwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vT0tQQURDUDEtUXU1YUJD
WHdxWnl6V2l5Y0lFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BT08gDANBgkqhkiG9w0BAQsFAAOCAQEAQu9rz5f453uKN0Ig5ZxFloyjaSRC+1Jc
RZRQH4KbzGRk1R6ZOtPTDVTHt1Azlhx+XYq2NwLlWuRF1K1lC8rcNFL+BtpPfmWW
FtSydlGKNNMJvBLDlxDp9CpeDqD0WKwDo7pmkuEWhexYRAHJJDasP2w+YsH0IyU2
27LU9mvqw7fUkEBhFeVZSFOZ4IK9O+1qZMwqiExwHLzKiGMWfVWIbAZp1FiiPNvD
+NoJojYXU3OKqyLyQ1bodZiJMTfrjbkPptDqa6D3oB093uZAl+ZKL5BeEGiBYoaB
+K6KpLvm772QlbgPtfZHnBCzaNeqMyRnNaR7uofXAPaY8E4hJ4KVxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org