Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/qeK5lVpY8tpkHdCftHk0co-imUY.roa
File: qeK5lVpY8tpkHdCftHk0co-imUY.roa (raw, json)
Hash identifier: Ey7K9rHeixqzS8ABP7RJ0e56242D8iPD6NnbZU+3/F8=
Subject key identifier: A9:E2:B9:95:5A:58:F2:DA:64:1D:D0:9F:B4:79:34:72:8F:A2:99:46
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0976
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qeK5lVpY8tpkHdCftHk0co-imUY.roa
Signing time: Wed 29 Sep 2021 02:51:52 +0000
ROA not before: Wed 29 Sep 2021 02:51:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18182
IP address blocks: 61.56.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2422 (0x976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A9E2B9955A58F2DA641DD09FB47934728FA29946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:15:80:9c:a9:27:ae:64:5d:a0:13:74:61:a7:
68:e6:c4:96:d0:ba:6f:7f:b7:cb:8f:6e:9d:b5:f6:
38:9a:03:b7:03:6b:a1:d4:8a:d3:1b:1f:9d:f7:99:
c4:3b:e0:54:40:fc:c6:0c:f8:48:74:fe:59:21:dd:
cc:9b:62:b9:8f:96:39:3a:2f:61:01:08:5f:0a:f3:
a5:f3:2e:2e:55:e6:9a:42:d6:d9:2c:00:c0:07:ab:
69:63:67:7c:b2:85:b6:ac:4d:a3:37:29:97:27:96:
da:db:80:83:c8:d2:97:79:68:8b:32:78:ed:7d:89:
52:b5:26:ba:39:8f:68:3d:8d:9d:c4:cb:67:49:bd:
0f:b5:aa:ee:59:43:df:5d:61:b1:45:4d:bf:82:03:
43:76:f0:00:6a:8c:7f:c2:f9:5e:21:e1:15:6c:bf:
db:c0:70:3c:bd:92:62:79:62:4a:39:4c:0d:26:78:
5f:c4:5c:2d:8e:8c:be:b1:4a:a2:5b:78:c5:bc:39:
8f:e8:87:10:e5:a8:e5:76:49:97:ef:b8:e6:59:f2:
48:30:3c:bd:fe:bd:7d:c3:1b:31:4d:d8:9d:c2:99:
d8:b4:d6:62:c3:99:50:7a:e8:d1:42:3f:fc:32:20:
d8:97:0c:22:01:0a:e7:3c:b5:dc:69:af:0f:85:0e:
c2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E2:B9:95:5A:58:F2:DA:64:1D:D0:9F:B4:79:34:72:8F:A2:99:46
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qeK5lVpY8tpkHdCftHk0co-imUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.128.0/19
Signature Algorithm: sha256WithRSAEncryption
55:55:15:95:ab:0b:cf:ae:ab:39:9e:b6:45:aa:3f:4f:29:0f:
96:ee:e8:0b:b0:82:01:a3:34:c6:ce:1f:29:57:7e:f0:77:02:
3b:f9:6a:53:52:73:f5:5f:57:32:67:22:02:54:e7:14:16:d1:
5b:18:de:f9:42:2c:aa:52:3c:78:33:3d:f0:05:54:00:99:54:
6f:82:fb:b5:2b:b9:33:85:6d:6d:7a:08:85:35:88:e0:78:d0:
28:a0:7f:41:74:2a:83:df:a0:e2:8f:2d:4c:da:8e:d7:fa:82:
98:99:28:83:e4:6a:19:fa:07:b2:c2:c1:21:8d:35:aa:c9:48:
17:4d:1d:fa:8a:ae:4a:18:97:72:a3:20:8b:95:f0:45:12:56:
8a:2c:4f:fb:f8:37:1a:ac:dc:63:be:6d:dd:92:5c:86:86:1d:
34:97:44:ed:75:b2:c6:17:08:3b:58:81:8c:cb:b3:8c:60:7f:
f2:d3:ea:68:b6:0f:f1:77:cb:dc:67:f3:8e:17:3e:53:da:ec:
e8:d0:c6:bb:5b:ef:f2:88:01:5e:5c:1f:6c:e7:7a:52:03:4d:
76:32:20:4b:c1:a5:0b:a1:91:48:77:11:08:8b:44:14:75:2b:
11:e7:2d:fd:aa:2f:e2:aa:f9:49:95:1e:c7:84:68:24:bf:21:
1e:5c:5d:20
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMTA5Mjkw
MjUxNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEE5RTJCOTk1NUE1OEYy
REE2NDFERDA5RkI0NzkzNDcyOEZBMjk5NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIFYCcqSeuZF2gE3Rhp2jmxJbQum9/t8uPbp219jiaA7cDa6HU
itMbH533mcQ74FRA/MYM+Eh0/lkh3cybYrmPljk6L2EBCF8K86XzLi5V5ppC1tks
AMAHq2ljZ3yyhbasTaM3KZcnltrbgIPI0pd5aIsyeO19iVK1Jro5j2g9jZ3Ey2dJ
vQ+1qu5ZQ99dYbFFTb+CA0N28ABqjH/C+V4h4RVsv9vAcDy9kmJ5Yko5TA0meF/E
XC2OjL6xSqJbeMW8OY/ohxDlqOV2SZfvuOZZ8kgwPL3+vX3DGzFN2J3Cmdi01mLD
mVB66NFCP/wyINiXDCIBCuc8tdxprw+FDsK7AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUqeK5lVpY8tpkHdCftHk0co+imUYwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9xZUs1bFZwWTh0cGtIZENmdEhr
MGNvLWltVVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTiA
MA0GCSqGSIb3DQEBCwUAA4IBAQBVVRWVqwvPrqs5nrZFqj9PKQ+W7ugLsIIBozTG
zh8pV37wdwI7+WpTUnP1X1cyZyICVOcUFtFbGN75QiyqUjx4Mz3wBVQAmVRvgvu1
K7kzhW1tegiFNYjgeNAooH9BdCqD36Dijy1M2o7X+oKYmSiD5GoZ+geywsEhjTWq
yUgXTR36iq5KGJdyoyCLlfBFElaKLE/7+DcarNxjvm3dklyGhh00l0TtdbLGFwg7
WIGMy7OMYH/y0+potg/xd8vcZ/OOFz5T2uzo0Ma7W+/yiAFeXB9s53pSA012MiBL
waULoZFIdxEIi0QUdSsR5y39qi/iqvlJlR7HhGgkvyEeXF0g
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org