Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jqizZjhm0nBrU82IMutOgY3NFIk.roa
File: jqizZjhm0nBrU82IMutOgY3NFIk.roa (raw, json)
Hash identifier: +2nFoX0wiet/bQ0YLzdkKvQgfQK9slRIt7Gasd6N7mM=
Subject key identifier: 8E:A8:B3:66:38:66:D2:70:6B:53:CD:88:32:EB:4E:81:8D:CD:14:89
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0985
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jqizZjhm0nBrU82IMutOgY3NFIk.roa
Signing time: Wed 29 Sep 2021 02:52:29 +0000
ROA not before: Wed 29 Sep 2021 02:52:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131596
IP address blocks: 61.58.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2437 (0x985)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 29 02:52:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8EA8B3663866D2706B53CD8832EB4E818DCD1489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:04:ad:36:be:d2:6d:c4:e9:fb:8f:da:43:8a:
fc:9f:83:25:86:64:52:f1:cc:d0:60:1f:e5:3e:98:
a6:24:11:a0:c0:88:1a:4a:13:72:e3:32:a2:4d:d7:
ff:13:f8:06:14:a6:76:f2:1d:c8:d7:3b:15:70:d5:
6c:98:b7:d9:02:c9:b3:3b:29:6d:53:3f:2d:16:04:
e3:e8:43:35:e8:0d:ef:fd:9a:ac:51:f5:41:96:d3:
7f:b8:6c:a9:b5:a3:9d:67:0c:93:66:03:56:6d:bb:
b5:e9:80:09:60:05:27:63:29:62:08:05:f4:d4:90:
a9:c6:7b:dc:90:c5:51:90:c2:df:d8:71:6b:99:a5:
fd:7c:ca:2e:10:26:f3:91:71:92:1b:56:12:0d:67:
c6:c3:15:b7:8c:86:62:00:97:e0:37:2e:ca:a6:27:
7e:ec:3a:1f:21:c4:5a:fb:a0:6d:c4:ca:c2:b0:bd:
42:a6:ea:61:c8:de:58:3e:f6:8d:b9:63:aa:97:39:
47:b2:94:1f:87:56:5d:8b:b5:00:39:09:3d:c0:ce:
e0:7c:3f:a8:b1:0a:3b:b8:57:79:27:89:5a:99:7d:
50:4a:04:16:d1:29:58:28:af:4b:a2:ad:98:de:a9:
54:62:fa:82:26:06:c6:58:87:bc:6e:0d:55:6c:36:
59:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A8:B3:66:38:66:D2:70:6B:53:CD:88:32:EB:4E:81:8D:CD:14:89
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/jqizZjhm0nBrU82IMutOgY3NFIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.72.0/21
Signature Algorithm: sha256WithRSAEncryption
86:0c:49:6c:40:3b:7d:21:4e:51:57:79:1e:c7:48:af:ed:22:
04:f3:7f:2a:46:60:5c:dd:26:a7:ba:22:5b:21:d3:2b:6e:64:
5b:5d:ed:0a:e4:62:e9:cc:3f:c2:98:a8:5e:50:8f:85:67:ea:
a7:59:94:e8:ec:5a:6a:1a:f8:ff:8c:0f:81:3a:21:36:d7:70:
9b:0e:77:91:05:53:5b:18:8e:1a:a8:63:05:ad:43:18:cf:ee:
b8:c5:ac:58:dc:6c:67:75:b9:6a:20:7f:f2:ba:b2:58:cb:a0:
fc:70:36:30:fe:46:71:6d:37:ba:e4:f8:2f:4b:6d:5b:6e:c7:
d0:0d:25:20:a4:cd:70:08:09:f5:86:55:c8:5f:7e:2b:9d:4e:
2d:31:8f:20:9d:46:97:64:d4:72:ca:93:1d:2b:07:c0:a6:e8:
89:00:69:d2:4b:2f:fa:22:04:9a:51:86:1f:a3:3d:a5:d1:c7:
3c:30:52:c7:a4:26:ca:7a:84:c7:e0:33:0a:f9:36:e5:b0:47:
e9:49:b1:f6:42:09:25:c7:bf:8e:9b:75:2d:59:11:46:c9:f4:
12:5c:ab:60:49:70:ba:5d:c2:79:76:e0:05:a0:c2:ac:29:a1:
95:b3:76:0a:0e:d5:5d:e9:7e:26:01:34:8d:db:38:e2:de:a2:
92:e9:8c:6d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMTA5Mjkw
MjUyMjlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhFQThCMzY2Mzg2NkQy
NzA2QjUzQ0Q4ODMyRUI0RTgxOERDRDE0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/BK02vtJtxOn7j9pDivyfgyWGZFLxzNBgH+U+mKYkEaDAiBpK
E3LjMqJN1/8T+AYUpnbyHcjXOxVw1WyYt9kCybM7KW1TPy0WBOPoQzXoDe/9mqxR
9UGW03+4bKm1o51nDJNmA1Ztu7XpgAlgBSdjKWIIBfTUkKnGe9yQxVGQwt/YcWuZ
pf18yi4QJvORcZIbVhINZ8bDFbeMhmIAl+A3LsqmJ37sOh8hxFr7oG3EysKwvUKm
6mHI3lg+9o25Y6qXOUeylB+HVl2LtQA5CT3AzuB8P6ixCju4V3kniVqZfVBKBBbR
KVgor0uirZjeqVRi+oImBsZYh7xuDVVsNlnlAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUjqizZjhm0nBrU82IMutOgY3NFIkwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9qcWl6WmpobTBuQnJVODJJTXV0
T2dZM05GSWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTpI
MA0GCSqGSIb3DQEBCwUAA4IBAQCGDElsQDt9IU5RV3kex0iv7SIE838qRmBc3San
uiJbIdMrbmRbXe0K5GLpzD/CmKheUI+FZ+qnWZTo7FpqGvj/jA+BOiE213CbDneR
BVNbGI4aqGMFrUMYz+64xaxY3GxndblqIH/yurJYy6D8cDYw/kZxbTe65PgvS21b
bsfQDSUgpM1wCAn1hlXIX34rnU4tMY8gnUaXZNRyypMdKwfApuiJAGnSSy/6IgSa
UYYfoz2l0cc8MFLHpCbKeoTH4DMK+TblsEfpSbH2Qgklx7+Om3UtWRFGyfQSXKtg
SXC6XcJ5duAFoMKsKaGVs3YKDtVd6X4mATSN2zji3qKS6Yxt
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org