Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hrMwfDKD8QXoNmaLk-1zmpqeuuY.roa
File: hrMwfDKD8QXoNmaLk-1zmpqeuuY.roa (raw, json)
Hash identifier: q4vpujFs2rbofd9hijaXD+QNqGW3FuSP24ls9XN1aPM=
Subject key identifier: 86:B3:30:7C:32:83:F1:05:E8:36:66:8B:93:ED:73:9A:9A:9E:BA:E6
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 08D1
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hrMwfDKD8QXoNmaLk-1zmpqeuuY.roa
Signing time: Sun 07 Feb 2021 11:53:48 +0000
ROA not before: Sun 07 Feb 2021 11:53:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131596
IP address blocks: 61.57.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2257 (0x8d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 7 11:53:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=86B3307C3283F105E836668B93ED739A9A9EBAE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:7c:86:e1:1c:41:fa:62:1b:a7:47:79:f5:
d6:74:23:18:08:b5:9d:f9:fb:3e:df:b4:b6:b3:9d:
47:cc:a1:02:7b:64:07:db:7a:8c:f6:79:35:1c:08:
f8:0d:48:8f:d3:12:47:22:79:f8:59:c7:0a:5e:85:
3b:b8:a1:8e:54:78:b4:f4:46:85:52:07:3e:fd:de:
29:4c:3f:be:d9:e9:ee:86:cd:a1:e3:f3:ef:87:24:
5d:8a:f2:c2:79:a3:54:c7:65:b6:d4:5b:b2:0f:61:
a9:28:cf:81:16:b3:a8:1d:9b:0f:3a:b8:c8:cd:28:
d0:8e:b6:41:19:3b:2e:cf:ae:24:ce:66:e5:b7:bb:
50:29:17:2f:e4:cf:04:38:cd:ca:a6:b6:a2:68:42:
a8:6a:6b:68:fa:81:4e:7d:f7:4a:7e:e8:c0:3b:7d:
29:85:9f:30:f0:ea:af:01:0a:7a:dc:b3:7e:1c:80:
ed:3c:4e:f0:39:d5:cb:08:fa:e4:b9:ce:0d:c5:39:
be:5d:44:0e:27:19:fb:8a:9a:b9:7d:a5:62:b5:88:
24:ad:df:25:0c:d5:e5:78:22:40:da:a1:41:ee:3c:
74:fa:c7:26:91:97:62:7a:2a:d5:42:ef:3a:b2:ea:
02:7f:ff:d7:36:8a:78:df:3d:7d:bf:09:d3:2e:a8:
37:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B3:30:7C:32:83:F1:05:E8:36:66:8B:93:ED:73:9A:9A:9E:BA:E6
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hrMwfDKD8QXoNmaLk-1zmpqeuuY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.64.0/18
Signature Algorithm: sha256WithRSAEncryption
bb:f4:8d:4c:b5:ae:f9:75:ee:73:9e:4f:70:ba:c2:da:aa:f2:
9b:df:d4:c7:e5:26:ac:ec:5e:e9:65:fa:33:90:29:1c:c1:d4:
43:ea:cd:7b:8c:4f:06:ec:11:69:b7:e1:64:24:ba:e5:30:b1:
57:f7:dd:63:d6:5a:76:cf:d9:66:e3:fa:f3:63:67:12:62:a6:
a9:b3:6a:8b:16:91:9b:47:6a:25:5a:f0:c5:ef:e9:f4:99:35:
c6:ca:31:a0:27:34:83:fb:a9:77:63:84:0d:f6:a5:75:b5:63:
0e:20:46:2a:28:ae:c3:37:25:41:f9:0c:d2:61:03:6d:56:ae:
0e:18:e3:ca:32:fb:4b:22:fd:8b:e9:eb:ff:1c:d1:06:ac:85:
aa:82:14:82:5c:e2:f8:b9:13:e9:5b:16:0f:2b:84:88:d1:f7:
db:c7:6e:25:bc:0e:28:ce:06:54:b6:3c:8d:17:63:21:4d:b9:
34:bf:1b:29:17:66:99:84:41:2e:8d:ef:fa:ff:02:92:fa:c7:
dc:3d:27:89:02:a6:98:98:a0:11:0c:63:5b:ef:01:39:2c:dd:
28:3c:bf:77:27:10:c2:f8:ae:4c:2a:11:43:47:46:6e:c8:d9:
b6:41:72:0e:c3:e5:82:a5:ae:51:e7:65:d2:a3:ae:07:c9:04:
dc:35:ff:1b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTAyMDcx
MTUzNDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg2QjMzMDdDMzI4M0Yx
MDVFODM2NjY4QjkzRUQ3MzlBOUE5RUJBRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDMnyG4RxB+mIbp0d59dZ0IxgItZ35+z7ftLaznUfMoQJ7ZAfb
eoz2eTUcCPgNSI/TEkciefhZxwpehTu4oY5UeLT0RoVSBz793ilMP77Z6e6GzaHj
8++HJF2K8sJ5o1THZbbUW7IPYakoz4EWs6gdmw86uMjNKNCOtkEZOy7PriTOZuW3
u1ApFy/kzwQ4zcqmtqJoQqhqa2j6gU5990p+6MA7fSmFnzDw6q8BCnrcs34cgO08
TvA51csI+uS5zg3FOb5dRA4nGfuKmrl9pWK1iCSt3yUM1eV4IkDaoUHuPHT6xyaR
l2J6KtVC7zqy6gJ//9c2injfPX2/CdMuqDdtAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUhrMwfDKD8QXoNmaLk+1zmpqeuuYwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9ock13ZkRLRDhRWG9ObWFMay0x
em1wcWV1dVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPTlA
MA0GCSqGSIb3DQEBCwUAA4IBAQC79I1Mta75de5znk9wusLaqvKb39TH5Sas7F7p
ZfozkCkcwdRD6s17jE8G7BFpt+FkJLrlMLFX991j1lp2z9lm4/rzY2cSYqaps2qL
FpGbR2olWvDF7+n0mTXGyjGgJzSD+6l3Y4QN9qV1tWMOIEYqKK7DNyVB+QzSYQNt
Vq4OGOPKMvtLIv2L6ev/HNEGrIWqghSCXOL4uRPpWxYPK4SI0ffbx24lvA4ozgZU
tjyNF2MhTbk0vxspF2aZhEEuje/6/wKS+sfcPSeJAqaYmKARDGNb7wE5LN0oPL93
JxDC+K5MKhFDR0ZuyNm2QXIOw+WCpa5R52XSo64HyQTcNf8b
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org