Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/chD5STRdzNDLBRZRbloU3zf7DUU.roa
File: chD5STRdzNDLBRZRbloU3zf7DUU.roa (raw, json)
Hash identifier: uXeAnoyenoybByZtmP0tx4NfatdF5Nhasez+52m7pdw=
Subject key identifier: 72:10:F9:49:34:5D:CC:D0:CB:05:16:51:6E:5A:14:DF:37:FB:0D:45
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0977
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/chD5STRdzNDLBRZRbloU3zf7DUU.roa
Signing time: Wed 29 Sep 2021 02:51:52 +0000
ROA not before: Wed 29 Sep 2021 02:51:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 61.64.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2423 (0x977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7210F949345DCCD0CB0516516E5A14DF37FB0D45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:12:6c:da:32:54:e5:10:20:82:dc:bf:84:06:
bb:c0:c9:a6:10:65:a0:14:54:8f:07:76:8c:d1:5d:
fa:ea:fa:96:92:3c:3a:43:d0:08:1c:40:ae:53:8b:
8c:d9:cd:0a:7d:1a:7a:e3:d3:2d:9e:04:73:ca:7a:
92:3e:af:da:99:20:25:3e:2b:43:e1:11:bb:14:1a:
de:6f:2c:49:38:f0:90:44:bf:6b:6e:1f:1e:b5:19:
58:83:f2:93:01:3d:1f:fa:c6:9e:44:77:88:55:43:
f1:b6:ef:f3:c2:50:81:c1:be:34:f2:4a:4d:e5:73:
2f:63:fd:e0:65:d0:e6:83:f0:26:a5:1a:71:ae:9a:
24:c3:3a:b2:7d:3e:a4:5d:a6:6d:55:f4:50:7b:9f:
09:28:0d:21:bf:1f:3d:11:4c:f2:46:2f:66:b4:43:
d0:17:19:d0:ae:89:d4:48:bf:77:a8:62:7c:9a:31:
2c:27:f2:f1:46:4c:c6:8b:0a:ad:da:8f:c7:83:43:
78:99:96:cb:29:ec:3d:2e:0e:a0:c0:32:82:19:fa:
49:6d:7b:ee:c6:53:e4:33:a5:a9:5b:69:7d:2f:ab:
b1:22:c4:99:9f:16:be:7b:ab:35:51:f4:0b:ed:f6:
8a:66:7e:6e:c6:ce:8a:96:d7:b5:e3:c9:a0:55:48:
b2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:10:F9:49:34:5D:CC:D0:CB:05:16:51:6E:5A:14:DF:37:FB:0D:45
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/chD5STRdzNDLBRZRbloU3zf7DUU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:80:92:0b:04:e1:09:22:93:d9:65:28:8d:94:dc:f0:27:e5:
cd:2f:e1:99:76:0c:3d:4b:31:8b:65:11:b1:37:20:b9:dc:23:
98:7c:c1:bb:67:d1:33:f2:db:32:cc:b4:d9:63:b2:ff:0e:ff:
ca:5d:d0:16:ac:01:cd:d1:10:4a:84:d1:80:33:7f:d0:2e:b5:
41:ea:a0:de:2e:a1:0d:81:e7:9d:3d:b3:b2:c3:bc:2e:6b:54:
39:7b:af:0a:d0:0f:3e:6f:24:8f:53:2a:86:03:99:7c:7a:9e:
e9:2b:24:c1:9e:df:56:f7:75:45:c7:10:22:f6:fc:2d:6e:c2:
91:50:12:2f:f6:3c:f6:22:70:88:13:a5:7f:2f:37:b5:37:d8:
df:f5:f0:e8:f0:84:e4:6b:da:39:19:69:2e:3c:f9:bb:f2:00:
ae:cd:28:43:fd:0a:98:1c:cb:a5:d2:62:15:45:89:01:24:a4:
39:fd:9d:6c:85:e2:d7:4f:72:53:41:34:02:7c:2c:9e:b4:c6:
1f:59:1a:b1:c7:81:40:5e:26:2e:13:d5:8d:18:36:e0:85:cd:
b1:71:98:a8:ae:14:b5:db:6d:40:d3:9b:89:f5:70:b2:e2:3a:
95:18:d2:cf:b4:1a:6e:86:4b:16:d3:b3:48:ce:b0:2e:b9:ff:
37:99:84:4d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMTA5Mjkw
MjUxNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcyMTBGOTQ5MzQ1REND
RDBDQjA1MTY1MTZFNUExNERGMzdGQjBENDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDqEmzaMlTlECCC3L+EBrvAyaYQZaAUVI8HdozRXfrq+paSPDpD
0AgcQK5Ti4zZzQp9Gnrj0y2eBHPKepI+r9qZICU+K0PhEbsUGt5vLEk48JBEv2tu
Hx61GViD8pMBPR/6xp5Ed4hVQ/G27/PCUIHBvjTySk3lcy9j/eBl0OaD8CalGnGu
miTDOrJ9PqRdpm1V9FB7nwkoDSG/Hz0RTPJGL2a0Q9AXGdCuidRIv3eoYnyaMSwn
8vFGTMaLCq3aj8eDQ3iZlssp7D0uDqDAMoIZ+klte+7GU+QzpalbaX0vq7EixJmf
Fr57qzVR9Avt9opmfm7GzoqW17XjyaBVSLLVAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUchD5STRdzNDLBRZRbloU3zf7DUUwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9jaEQ1U1RSZHpORExCUlpSYmxv
VTN6ZjdEVVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPUBA
MA0GCSqGSIb3DQEBCwUAA4IBAQAqgJILBOEJIpPZZSiNlNzwJ+XNL+GZdgw9SzGL
ZRGxNyC53COYfMG7Z9Ez8tsyzLTZY7L/Dv/KXdAWrAHN0RBKhNGAM3/QLrVB6qDe
LqENgeedPbOyw7wua1Q5e68K0A8+bySPUyqGA5l8ep7pKyTBnt9W93VFxxAi9vwt
bsKRUBIv9jz2InCIE6V/Lze1N9jf9fDo8ITka9o5GWkuPPm78gCuzShD/QqYHMul
0mIVRYkBJKQ5/Z1sheLXT3JTQTQCfCyetMYfWRqxx4FAXiYuE9WNGDbghc2xcZio
rhS1221A05uJ9XCy4jqVGNLPtBpuhksW07NIzrAuuf83mYRN
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org