Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dHoPRL3KNa9qA4dWTPViVOHuLTM.roa
File: dHoPRL3KNa9qA4dWTPViVOHuLTM.roa (raw, json)
Hash identifier: eijJACNXa8w3RiVbQtYtoK6lFmCXEnPg/pVkFKnVN+E=
Subject key identifier: 74:7A:0F:44:BD:CA:35:AF:6A:03:87:56:4C:F5:62:54:E1:EE:2D:33
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 098D
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dHoPRL3KNa9qA4dWTPViVOHuLTM.roa
Signing time: Wed 29 Sep 2021 02:52:31 +0000
ROA not before: Wed 29 Sep 2021 02:52:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2445 (0x98d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=747A0F44BDCA35AF6A0387564CF56254E1EE2D33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6c:17:3e:63:bf:db:b9:64:1f:85:54:fb:d2:
76:ae:be:a8:99:31:d6:c7:8e:03:d3:bd:40:bb:16:
5f:6c:7d:b6:79:d3:6a:ec:81:02:24:92:f8:21:49:
fd:c3:68:6d:5a:fc:20:e1:96:37:83:51:f7:9f:3c:
69:a8:c0:76:72:1c:45:14:d5:44:fe:3a:c9:02:5d:
a5:9c:22:56:12:59:0e:40:1e:ef:65:ba:93:0b:7b:
dc:e7:e8:6a:2a:4e:17:29:ce:1b:5d:df:58:a5:5f:
27:54:1c:f2:ea:fe:12:a8:1b:f4:76:eb:ea:21:ac:
74:0e:2f:de:9d:3c:51:85:e0:39:39:99:cd:49:ba:
07:a7:dc:45:4d:61:10:ec:2e:82:f4:eb:d8:ac:e6:
ce:40:7c:5b:51:27:e1:83:7e:2a:f8:8f:33:23:d8:
20:1b:77:d5:d8:4d:7a:60:f6:c1:7e:83:67:6e:f7:
aa:b6:2d:ea:27:da:65:dc:d6:04:fd:34:86:37:b1:
5e:d1:7e:7b:c4:d3:92:94:b1:ea:7e:23:13:4a:69:
38:8a:da:0f:16:26:e1:78:87:cf:9f:0c:5c:e2:ad:
18:27:fe:1c:36:2e:24:a2:69:47:ac:4e:c5:12:70:
e9:15:09:fe:6c:f8:36:9f:3f:4c:68:23:9e:71:bb:
b2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7A:0F:44:BD:CA:35:AF:6A:03:87:56:4C:F5:62:54:E1:EE:2D:33
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/dHoPRL3KNa9qA4dWTPViVOHuLTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
06:04:08:3e:f6:80:ea:34:b5:6b:03:dc:4c:c5:f2:74:00:81:
01:ac:02:d0:35:61:94:4e:5e:f2:ad:b4:15:81:12:1b:64:4e:
f7:cb:62:a7:e5:56:b1:97:91:35:04:ee:10:21:46:9b:11:32:
62:c5:24:f6:08:37:b7:f4:a3:26:61:9e:3f:24:c6:52:e0:e8:
f4:f5:1c:e2:ab:4c:c9:11:60:59:a3:cf:14:3d:ad:28:31:f5:
01:37:1e:a1:3d:df:d0:f5:59:80:9d:8d:cd:65:5f:46:43:0c:
07:1f:b5:fb:73:8c:f5:ce:cf:01:24:81:87:96:68:34:b2:4e:
a4:84:33:be:54:23:f1:8c:47:58:23:f4:87:c6:6e:f2:eb:b6:
a3:ed:52:b4:c7:cc:8c:12:58:27:58:b7:d2:26:b0:87:0f:3f:
af:90:60:ee:56:14:d4:82:cb:e1:18:8f:a6:11:7e:e3:af:d3:
d3:02:08:a5:a6:3f:73:db:4e:af:ad:fc:ee:36:30:68:20:ea:
0f:24:d1:1a:fe:ef:f3:82:f4:fc:6c:b7:06:b9:bf:57:3b:e1:
4a:96:8d:6b:3a:82:ee:1f:ec:8b:46:dc:6b:da:5f:81:32:ef:
3f:a0:70:26:cd:f9:df:72:02:72:8d:0e:b6:a0:99:9a:76:ad:
74:55:0b:d5
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTA5Mjkw
MjUyMzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDc0N0EwRjQ0QkRDQTM1
QUY2QTAzODc1NjRDRjU2MjU0RTFFRTJEMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCebBc+Y7/buWQfhVT70nauvqiZMdbHjgPTvUC7Fl9sfbZ502rs
gQIkkvghSf3DaG1a/CDhljeDUfefPGmowHZyHEUU1UT+OskCXaWcIlYSWQ5AHu9l
upMLe9zn6GoqThcpzhtd31ilXydUHPLq/hKoG/R26+ohrHQOL96dPFGF4Dk5mc1J
ugen3EVNYRDsLoL069is5s5AfFtRJ+GDfir4jzMj2CAbd9XYTXpg9sF+g2du96q2
Leon2mXc1gT9NIY3sV7RfnvE05KUsep+IxNKaTiK2g8WJuF4h8+fDFzirRgn/hw2
LiSiaUesTsUScOkVCf5s+DafP0xoI55xu7KvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUdHoPRL3KNa9qA4dWTPViVOHuLTMwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9kSG9QUkwzS05hOXFBNGRXVFBW
aVZPSHVMVE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPT9g
MA0GCSqGSIb3DQEBCwUAA4IBAQAGBAg+9oDqNLVrA9xMxfJ0AIEBrALQNWGUTl7y
rbQVgRIbZE73y2Kn5Vaxl5E1BO4QIUabETJixST2CDe39KMmYZ4/JMZS4Oj09Rzi
q0zJEWBZo88UPa0oMfUBNx6hPd/Q9VmAnY3NZV9GQwwHH7X7c4z1zs8BJIGHlmg0
sk6khDO+VCPxjEdYI/SHxm7y67aj7VK0x8yMElgnWLfSJrCHDz+vkGDuVhTUgsvh
GI+mEX7jr9PTAgilpj9z206vrfzuNjBoIOoPJNEa/u/zgvT8bLcGub9XO+FKlo1r
OoLuH+yLRtxr2l+BMu8/oHAmzfnfcgJyjQ62oJmadq10VQvV
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org