Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/akjYPP430Wlq1g6FhH2TzxMncOU.roa
File: akjYPP430Wlq1g6FhH2TzxMncOU.roa (raw, json)
Hash identifier: VRfJBrRUptpb+WqJPHBTZfnXbP2f3BP7j2mpMpAu7nE=
Subject key identifier: 6A:48:D8:3C:FE:37:D1:69:6A:D6:0E:85:84:7D:93:CF:13:27:70:E5
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0A7E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/akjYPP430Wlq1g6FhH2TzxMncOU.roa
Signing time: Thu 15 Sep 2022 02:50:01 +0000
ROA not before: Thu 15 Sep 2022 02:50:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131596
IP address blocks: 61.58.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 15 02:50:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6A48D83CFE37D1696AD60E85847D93CF132770E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ca:69:d5:e0:a4:c3:9e:27:9a:d6:25:c2:f3:
f6:d1:e2:53:b4:4f:80:6d:36:d1:37:c9:9c:d2:a0:
a7:b3:e2:07:e6:d1:09:5f:78:0a:6b:0f:69:13:43:
63:e9:67:1e:37:a7:b9:d6:7f:fa:40:64:d3:1f:37:
bb:81:a2:13:87:a0:f5:10:af:05:6d:49:95:f2:9a:
73:b1:0e:ec:e2:c8:ec:7e:8d:a2:eb:f5:e7:35:4f:
f3:19:f8:30:34:2e:f9:bc:22:ad:a7:3b:4a:34:b0:
15:79:71:e6:15:18:57:cf:e9:af:4c:33:2d:12:69:
95:93:b2:07:ac:ad:b4:8f:2c:06:11:5d:50:b8:cb:
77:56:d0:32:b9:3c:44:e3:2c:e4:d3:4b:dc:dd:d6:
7e:3f:22:54:f7:7b:8d:64:9f:ad:5b:12:67:3b:19:
09:df:4a:7f:2f:7d:2d:7e:8c:c8:c4:f7:4e:5c:85:
fb:69:86:67:96:a6:f0:15:f4:e7:9d:b2:e9:ed:f8:
bf:83:f4:51:d8:2c:ec:4b:1e:88:9f:4f:9f:a0:fd:
2e:6e:60:75:68:ce:ad:1c:8d:ed:fa:b9:d0:71:f4:
c6:7c:34:80:2c:5d:5f:f2:14:59:f8:22:c2:79:1c:
09:c0:22:fb:8f:39:d8:2c:27:81:c1:2e:e7:03:60:
ea:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:48:D8:3C:FE:37:D1:69:6A:D6:0E:85:84:7D:93:CF:13:27:70:E5
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/akjYPP430Wlq1g6FhH2TzxMncOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/21
Signature Algorithm: sha256WithRSAEncryption
07:ef:bc:96:a9:bb:11:10:18:69:db:3b:34:58:75:bc:e9:a8:
c7:36:a0:f5:d9:48:53:12:33:57:9d:aa:9a:c7:8e:db:cd:db:
65:43:cd:8b:83:88:b4:e1:a3:1b:88:db:b5:24:50:fb:cb:8d:
8e:7d:cb:4c:d0:26:3b:fd:5b:41:67:d1:77:52:1e:d5:d1:a3:
3d:77:8f:a6:fd:08:78:0d:1a:9b:c0:00:72:e9:6f:37:eb:ef:
99:96:5d:1c:8c:4b:d0:26:7b:3a:a7:2d:46:06:07:cb:a8:4d:
98:30:37:0b:2f:b2:6b:8f:dc:ce:66:73:bb:00:0f:0c:2e:83:
2b:62:fe:65:34:49:74:5c:84:50:ef:51:71:3c:ad:1c:0f:42:
c6:72:45:07:d5:12:2b:72:81:0b:40:b9:a2:1c:c9:30:42:b6:
02:d9:9b:60:13:8d:68:ff:20:a8:8a:dd:79:23:7b:01:d3:4a:
0f:9a:63:9b:11:f9:af:22:12:67:ab:7b:ee:b9:b5:5c:3f:45:
aa:31:8c:67:06:17:41:db:86:c3:ef:77:33:74:f2:01:b0:fe:
92:38:ac:a9:95:6c:65:0c:c1:66:c6:56:55:9d:34:c2:ae:0d:
c8:4a:ac:29:45:b2:62:2c:92:39:3d:26:c1:d5:0d:d1:37:2d:
83:dc:7e:75
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMjA5MTUw
MjUwMDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZBNDhEODNDRkUzN0Qx
Njk2QUQ2MEU4NTg0N0Q5M0NGMTMyNzcwRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSymnV4KTDniea1iXC8/bR4lO0T4BtNtE3yZzSoKez4gfm0Qlf
eAprD2kTQ2PpZx43p7nWf/pAZNMfN7uBohOHoPUQrwVtSZXymnOxDuziyOx+jaLr
9ec1T/MZ+DA0Lvm8Iq2nO0o0sBV5ceYVGFfP6a9MMy0SaZWTsgesrbSPLAYRXVC4
y3dW0DK5PETjLOTTS9zd1n4/IlT3e41kn61bEmc7GQnfSn8vfS1+jMjE905chftp
hmeWpvAV9Oedsunt+L+D9FHYLOxLHoifT5+g/S5uYHVozq0cje36udBx9MZ8NIAs
XV/yFFn4IsJ5HAnAIvuPOdgsJ4HBLucDYOpvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUakjYPP430Wlq1g6FhH2TzxMncOUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9ha2pZUFA0MzBXbHExZzZGaEgy
VHp4TW5jT1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTpA
MA0GCSqGSIb3DQEBCwUAA4IBAQAH77yWqbsREBhp2zs0WHW86ajHNqD12UhTEjNX
naqax47bzdtlQ82Lg4i04aMbiNu1JFD7y42OfctM0CY7/VtBZ9F3Uh7V0aM9d4+m
/Qh4DRqbwABy6W836++Zll0cjEvQJns6py1GBgfLqE2YMDcLL7Jrj9zOZnO7AA8M
LoMrYv5lNEl0XIRQ71FxPK0cD0LGckUH1RIrcoELQLmiHMkwQrYC2ZtgE41o/yCo
it15I3sB00oPmmObEfmvIhJnq3vuubVcP0WqMYxnBhdB24bD73czdPIBsP6SOKyp
lWxlDMFmxlZVnTTCrg3ISqwpRbJiLJI5PSbB1Q3RNy2D3H51
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org