Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/aIQ-UgRLTofgVmeMwoctlyVwVfc.roa
File: aIQ-UgRLTofgVmeMwoctlyVwVfc.roa (raw, json)
Hash identifier: uKbHHEk2EF6hFAaCkLtJDHmqjS3rdqSed3P+8F/9KwU=
Subject key identifier: 68:84:3E:52:04:4B:4E:87:E0:56:67:8C:C2:87:2D:97:25:70:55:F7
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 090E
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/aIQ-UgRLTofgVmeMwoctlyVwVfc.roa
Signing time: Sun 07 Feb 2021 11:49:30 +0000
ROA not before: Sun 07 Feb 2021 11:49:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2318 (0x90e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68843E52044B4E87E056678CC2872D97257055F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2e:a4:81:a7:42:d4:7c:91:a3:3f:f7:b9:42:
a4:1a:b4:c4:62:b0:98:88:18:7d:83:f1:54:a3:26:
10:49:d0:79:71:89:f6:b6:e8:87:7f:99:29:76:8e:
dd:19:26:f5:46:c9:dd:8d:89:4b:50:1d:ee:6e:d8:
92:fd:b7:58:54:33:d2:86:28:f1:76:52:9b:20:2b:
ed:28:f0:87:25:e8:c7:0a:80:5d:cd:c6:8c:08:aa:
65:de:cf:2c:11:75:e6:f9:ce:39:e0:1f:e7:22:f6:
df:97:04:d3:69:8a:a0:f8:eb:2c:d0:2d:82:e6:8f:
44:d7:d3:c1:a7:ff:1f:7b:90:de:6d:0f:98:8e:6b:
a0:58:bb:cd:12:ec:42:87:fd:a4:01:8d:64:ac:fd:
5c:e2:80:61:c0:16:bc:c6:d2:d2:00:77:09:31:fa:
a1:67:7c:e0:64:d7:0d:85:39:68:a9:e0:a1:4f:29:
98:57:5f:5e:fa:64:d4:b1:99:ef:28:4a:9f:4e:09:
9a:f2:f4:e4:95:59:2b:fd:1a:58:c1:4f:4b:cc:5d:
0c:d1:42:f1:66:f0:e3:6e:d0:33:d7:5d:d4:3f:06:
67:e3:05:79:41:58:44:cb:97:c5:63:8f:e9:4a:88:
7a:fb:02:16:4a:fb:bb:79:f7:2f:f1:ef:98:da:01:
51:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:84:3E:52:04:4B:4E:87:E0:56:67:8C:C2:87:2D:97:25:70:55:F7
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/aIQ-UgRLTofgVmeMwoctlyVwVfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:cd:b3:87:34:1e:44:b8:ad:5b:0c:d2:41:df:94:d7:03:b5:
7e:8d:45:db:18:08:f7:86:60:2e:ef:c6:94:04:a3:2b:8c:25:
3b:4b:da:1b:22:19:6a:e7:e6:b0:2e:e4:b2:1b:47:8a:e4:07:
15:2a:ed:6b:8c:f2:92:8f:b0:02:05:53:b1:4e:90:50:c3:73:
a9:26:8a:ff:3c:b5:16:99:8d:0d:2d:37:98:18:cc:da:cf:f9:
1d:3b:3e:3d:0b:0b:48:a2:90:03:a4:8d:49:71:a1:ea:ea:9f:
46:41:8b:9a:dd:06:4b:b1:d4:be:b2:8d:99:f1:df:17:ab:1d:
68:e9:77:79:30:08:c1:5e:1a:17:88:c8:a6:e5:4b:f3:7a:98:
b1:7b:ca:22:70:86:86:cc:d9:d5:0d:04:c2:ce:48:27:dd:96:
7e:cf:9a:f9:7b:09:c6:37:05:37:f5:83:0b:24:f4:b5:34:df:
5d:a6:6c:48:62:f7:63:bb:a3:da:4a:20:e3:99:d8:cb:8b:d8:
e8:a9:d1:fa:76:ce:c6:69:40:64:a4:82:0d:b4:11:62:bc:05:
b1:84:92:3e:57:99:fa:b9:4b:75:25:e4:ae:da:3a:f6:d2:b0:
73:f0:1b:4b:3f:80:4a:6b:44:a6:4e:91:a6:e4:37:55:54:1a:
1b:ff:3a:78
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTAyMDcx
MTQ5MzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY4ODQzRTUyMDQ0QjRF
ODdFMDU2Njc4Q0MyODcyRDk3MjU3MDU1RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLLqSBp0LUfJGjP/e5QqQatMRisJiIGH2D8VSjJhBJ0Hlxifa2
6Id/mSl2jt0ZJvVGyd2NiUtQHe5u2JL9t1hUM9KGKPF2UpsgK+0o8Icl6McKgF3N
xowIqmXezywRdeb5zjngH+ci9t+XBNNpiqD46yzQLYLmj0TX08Gn/x97kN5tD5iO
a6BYu80S7EKH/aQBjWSs/VzigGHAFrzG0tIAdwkx+qFnfOBk1w2FOWip4KFPKZhX
X176ZNSxme8oSp9OCZry9OSVWSv9GljBT0vMXQzRQvFm8ONu0DPXXdQ/BmfjBXlB
WETLl8Vjj+lKiHr7AhZK+7t59y/x75jaAVGLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUaIQ+UgRLTofgVmeMwoctlyVwVfcwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9hSVEtVWdSTFRvZmdWbWVNd29j
dGx5VndWZmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTzA
MA0GCSqGSIb3DQEBCwUAA4IBAQC5zbOHNB5EuK1bDNJB35TXA7V+jUXbGAj3hmAu
78aUBKMrjCU7S9obIhlq5+awLuSyG0eK5AcVKu1rjPKSj7ACBVOxTpBQw3OpJor/
PLUWmY0NLTeYGMzaz/kdOz49CwtIopADpI1JcaHq6p9GQYua3QZLsdS+so2Z8d8X
qx1o6Xd5MAjBXhoXiMim5Uvzepixe8oicIaGzNnVDQTCzkgn3ZZ+z5r5ewnGNwU3
9YMLJPS1NN9dpmxIYvdju6PaSiDjmdjLi9joqdH6ds7GaUBkpIINtBFivAWxhJI+
V5n6uUt1JeSu2jr20rBz8BtLP4BKa0SmTpGm5DdVVBob/zp4
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org