Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/JCZvh5vlYLmtCthDdElN3ViBlfg.roa
File: JCZvh5vlYLmtCthDdElN3ViBlfg.roa (raw, json)
Hash identifier: jRGK+E7dm4pBTXkIZUklp9B7Gko9IxIt4PEhGBHN07k=
Subject key identifier: 24:26:6F:87:9B:E5:60:B9:AD:0A:D8:43:74:49:4D:DD:58:81:95:F8
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 077D
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/JCZvh5vlYLmtCthDdElN3ViBlfg.roa
Signing time: Tue 29 Sep 2020 09:59:20 +0000
ROA not before: Tue 29 Sep 2020 09:59:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 61.64.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1917 (0x77d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 09:59:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=24266F879BE560B9AD0AD84374494DDD588195F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:db:84:11:75:d5:c0:32:ac:63:67:ef:7e:
a1:5c:ac:e1:96:81:01:3e:33:52:3b:c9:9b:75:07:
ba:08:98:c4:2f:2d:c1:79:23:05:8c:9b:8c:43:4f:
c1:e1:60:87:f5:ae:aa:92:31:d5:48:57:2c:81:9a:
c5:22:f9:e1:5b:3b:af:e6:99:30:66:72:f3:bd:47:
20:11:28:99:9b:eb:bb:7b:b3:f2:dc:05:d4:ca:52:
c1:e5:bb:d7:9d:cb:3a:68:ce:b0:8a:47:6e:db:78:
5b:75:0e:a9:04:07:c3:61:d8:34:c5:39:14:4f:0b:
f6:b8:29:6b:fa:bc:e1:c7:83:b2:72:8e:6a:35:1f:
71:8e:23:a4:dc:71:2f:3b:ec:5e:ba:5c:e4:cd:44:
8e:57:fc:ea:5d:56:35:b5:ff:2a:f6:d5:c7:e6:54:
0e:02:f4:c0:20:f5:74:b3:63:9d:b1:e8:2b:ae:26:
8d:e3:fb:24:b1:1e:b8:a5:ec:93:38:45:96:e9:1e:
38:c7:de:d5:d5:1f:df:4b:17:a3:4d:16:67:49:89:
19:d3:cc:5e:07:ff:6e:d0:3e:72:29:05:c5:bb:80:
2b:c1:6a:25:1c:6f:33:05:56:bb:97:ea:7e:1e:33:
b4:0f:9d:e1:e4:82:d1:0e:4c:ff:86:70:e9:09:b1:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:26:6F:87:9B:E5:60:B9:AD:0A:D8:43:74:49:4D:DD:58:81:95:F8
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/JCZvh5vlYLmtCthDdElN3ViBlfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.64.0/18
Signature Algorithm: sha256WithRSAEncryption
22:ec:68:69:bd:da:ea:3f:52:fa:46:ce:02:c9:d4:4c:2c:b0:
0c:48:4d:94:02:2d:51:3f:5f:01:78:f8:4f:ef:6d:0b:15:31:
87:a6:c5:26:4c:46:3d:40:18:5a:0e:f3:05:ad:88:49:bd:b5:
e3:d9:f7:fd:57:a4:f1:0f:1f:25:56:fe:72:50:15:8e:5f:3a:
74:cc:a2:3b:b9:62:83:9f:04:d9:c4:4f:e5:d3:b6:94:0e:28:
a4:20:e9:0f:48:40:fa:c1:88:11:8a:98:9c:25:ef:09:6d:39:
71:2b:bd:06:1c:53:1e:03:7c:20:bb:4c:f5:1e:22:07:e7:7e:
13:15:02:92:ff:83:b1:03:7b:bc:4d:29:d4:be:dc:d1:9e:f6:
50:d6:88:8f:ce:23:b5:36:a1:8b:2b:33:bb:65:59:a2:b3:c0:
de:40:22:89:93:d4:88:6c:5e:a2:5c:f7:89:79:17:be:f1:75:
4b:5d:8a:66:36:eb:63:d8:a4:43:a2:ab:14:80:78:99:e4:16:
5f:5a:c2:b9:9c:0b:d5:81:58:61:0c:13:82:ad:1a:62:5c:21:
0c:c3:a4:31:9e:25:05:86:d9:a8:ec:f5:85:30:1c:84:4d:50:
61:bd:c3:1c:ad:1d:a1:08:c6:3b:bc:fa:36:a0:c2:aa:f8:c9:
68:b9:a2:8a
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMDA5Mjkw
OTU5MjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI0MjY2Rjg3OUJFNTYw
QjlBRDBBRDg0Mzc0NDk0RERENTg4MTk1RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3s9uEEXXVwDKsY2fvfqFcrOGWgQE+M1I7yZt1B7oImMQvLcF5
IwWMm4xDT8HhYIf1rqqSMdVIVyyBmsUi+eFbO6/mmTBmcvO9RyARKJmb67t7s/Lc
BdTKUsHlu9edyzpozrCKR27beFt1DqkEB8Nh2DTFORRPC/a4KWv6vOHHg7Jyjmo1
H3GOI6TccS877F66XOTNRI5X/OpdVjW1/yr21cfmVA4C9MAg9XSzY52x6CuuJo3j
+ySxHril7JM4RZbpHjjH3tXVH99LF6NNFmdJiRnTzF4H/27QPnIpBcW7gCvBaiUc
bzMFVruX6n4eM7QPneHkgtEOTP+GcOkJsWnvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJCZvh5vlYLmtCthDdElN3ViBlfgwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9KQ1p2aDV2bFlMbXRDdGhEZEVs
TjNWaUJsZmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPUBA
MA0GCSqGSIb3DQEBCwUAA4IBAQAi7GhpvdrqP1L6Rs4CydRMLLAMSE2UAi1RP18B
ePhP720LFTGHpsUmTEY9QBhaDvMFrYhJvbXj2ff9V6TxDx8lVv5yUBWOXzp0zKI7
uWKDnwTZxE/l07aUDiikIOkPSED6wYgRipicJe8JbTlxK70GHFMeA3wgu0z1HiIH
534TFQKS/4OxA3u8TSnUvtzRnvZQ1oiPziO1NqGLKzO7ZVmis8DeQCKJk9SIbF6i
XPeJeRe+8XVLXYpmNutj2KRDoqsUgHiZ5BZfWsK5nAvVgVhhDBOCrRpiXCEMw6Qx
niUFhtmo7PWFMByETVBhvcMcrR2hCMY7vPo2oMKq+MlouaKK
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org