Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rBca4_EcW2pHACynSlAiJf9tr3M.roa
File: rBca4_EcW2pHACynSlAiJf9tr3M.roa (raw, json)
Hash identifier: 3fiM4Pn3+i+alRJgRjGm1I/n/eiCu+lyVogtu6F7cXo=
Subject key identifier: AC:17:1A:E3:F1:1C:5B:6A:47:00:2C:A7:4A:50:22:25:FF:6D:AF:73
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 078F
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rBca4_EcW2pHACynSlAiJf9tr3M.roa
Signing time: Tue 29 Sep 2020 10:05:44 +0000
ROA not before: Tue 29 Sep 2020 10:05:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.63.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1935 (0x78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AC171AE3F11C5B6A47002CA74A502225FF6DAF73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:79:d1:90:7d:53:09:e2:fc:ce:96:39:36:18:
3f:e9:84:5e:2c:3f:b5:55:90:86:29:e2:3a:23:6a:
de:e9:c9:6a:a2:b5:fa:68:01:ee:36:38:15:17:37:
31:a6:91:f1:dc:33:c6:69:38:53:f9:27:82:ff:22:
0d:28:41:ab:de:ae:4a:55:f7:c1:d0:72:eb:79:e0:
83:bf:c7:c5:9c:e6:5c:5f:5a:de:0d:f6:76:34:7c:
e6:46:1a:c9:b4:0a:10:47:d0:57:5a:73:23:1e:7f:
b6:9b:1d:20:72:6b:0f:b8:a7:0d:0a:15:2e:12:7b:
af:66:d3:71:93:63:cf:f1:86:1c:3a:a5:97:58:6d:
34:75:e3:5b:89:d5:ed:dc:54:e4:15:e1:f2:cd:ec:
c2:24:af:be:fd:c4:73:59:cf:77:9c:15:56:bc:71:
5c:b5:f7:e5:2b:94:f9:ff:ce:e3:4f:b2:f0:70:13:
b3:96:57:a7:49:ba:37:d6:09:f5:a5:65:46:59:b8:
f3:87:c4:fe:dc:d2:c3:f4:57:27:af:2d:a9:5b:ab:
b7:9e:32:e5:dd:20:6f:6c:09:3e:19:c9:10:4d:67:
95:46:0e:a6:22:3f:d1:11:0e:9b:30:4d:72:81:51:
5f:d6:cc:86:28:58:fe:d4:54:6f:b8:e6:a7:f8:b7:
3c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:17:1A:E3:F1:1C:5B:6A:47:00:2C:A7:4A:50:22:25:FF:6D:AF:73
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rBca4_EcW2pHACynSlAiJf9tr3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.192.0/18
Signature Algorithm: sha256WithRSAEncryption
4d:fa:d2:a8:9e:32:26:cf:12:61:22:e0:2c:ed:6b:48:77:8e:
cd:94:66:f2:7c:ea:b1:ef:9e:ae:47:25:4d:e5:07:2b:cd:6c:
10:35:ab:f7:37:f0:2f:45:71:0b:76:35:64:aa:17:d2:1b:9a:
24:65:6d:09:80:d6:05:7a:03:7a:c4:2a:4f:8e:4d:3e:e0:60:
f4:33:66:1b:84:ff:54:fc:c7:62:5a:4a:89:0f:aa:d1:10:e4:
c9:7a:56:85:f9:13:74:de:52:74:12:ab:47:45:00:d2:d6:45:
0c:78:9d:fc:3c:49:97:a8:a2:3d:67:7f:56:1f:b8:6d:42:d8:
0c:49:eb:ea:6a:1d:ad:5b:30:6c:3e:57:2f:f3:54:1f:a4:5f:
c5:33:7f:18:65:1f:1e:38:03:a2:0a:14:bd:f0:fb:1c:a8:bb:
7a:ff:e2:48:83:c0:39:f1:dd:d3:36:6a:ee:d4:b6:4d:75:4c:
a2:a9:57:e1:f7:cf:7a:30:ab:06:96:b5:f0:5f:22:86:eb:c6:
ac:15:05:07:32:61:1e:57:fe:b4:0b:c8:29:d9:6e:75:e6:cc:
a8:e0:d2:ec:d4:33:2d:0e:97:aa:b6:a0:01:aa:b4:af:72:e5:
e3:e8:cb:2c:9e:ce:de:66:3b:8c:3d:50:42:64:86:a8:32:c4:
7d:d1:40:d2
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMDA5Mjkx
MDA1NDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFDMTcxQUUzRjExQzVC
NkE0NzAwMkNBNzRBNTAyMjI1RkY2REFGNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhedGQfVMJ4vzOljk2GD/phF4sP7VVkIYp4jojat7pyWqitfpo
Ae42OBUXNzGmkfHcM8ZpOFP5J4L/Ig0oQaverkpV98HQcut54IO/x8Wc5lxfWt4N
9nY0fOZGGsm0ChBH0FdacyMef7abHSByaw+4pw0KFS4Se69m03GTY8/xhhw6pZdY
bTR141uJ1e3cVOQV4fLN7MIkr779xHNZz3ecFVa8cVy19+UrlPn/zuNPsvBwE7OW
V6dJujfWCfWlZUZZuPOHxP7c0sP0VyevLalbq7eeMuXdIG9sCT4ZyRBNZ5VGDqYi
P9ERDpswTXKBUV/WzIYoWP7UVG+45qf4tzxfAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUrBca4/EcW2pHACynSlAiJf9tr3MwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vckJjYTRfRWNXMnBIQUN5
blNsQWlKZjl0cjNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bj0/wDANBgkqhkiG9w0BAQsFAAOCAQEATfrSqJ4yJs8SYSLgLO1rSHeOzZRm8nzq
se+erkclTeUHK81sEDWr9zfwL0VxC3Y1ZKoX0huaJGVtCYDWBXoDesQqT45NPuBg
9DNmG4T/VPzHYlpKiQ+q0RDkyXpWhfkTdN5SdBKrR0UA0tZFDHid/DxJl6iiPWd/
Vh+4bULYDEnr6modrVswbD5XL/NUH6RfxTN/GGUfHjgDogoUvfD7HKi7ev/iSIPA
OfHd0zZq7tS2TXVMoqlX4ffPejCrBpa18F8ihuvGrBUFBzJhHlf+tAvIKdludebM
qODS7NQzLQ6XqragAaq0r3Ll4+jLLJ7O3mY7jD1QQmSGqDLEfdFA0g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org