Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/S1dxfrgrMz_-hbeHLYvUjpzzYoc.roa
File: S1dxfrgrMz_-hbeHLYvUjpzzYoc.roa (raw, json)
Hash identifier: B4WpO3bPbxzUKkqsjpxSzEcWmtxbbVq3OUXJzAGD3cQ=
Subject key identifier: 4B:57:71:7E:B8:2B:33:3F:FE:85:B7:87:2D:8B:D4:8E:9C:F3:62:87
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0980
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/S1dxfrgrMz_-hbeHLYvUjpzzYoc.roa
Signing time: Wed 29 Sep 2021 02:53:08 +0000
ROA not before: Wed 29 Sep 2021 02:53:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 61.58.41.128/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2432 (0x980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 29 02:53:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4B57717EB82B333FFE85B7872D8BD48E9CF36287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:e3:6a:88:e9:38:03:d9:42:87:3c:52:ff:
b3:1d:ec:c6:94:c5:32:8b:8c:34:4e:55:fb:c5:d2:
85:df:bd:95:2d:88:ff:5f:19:bb:fd:55:c7:ab:69:
79:d4:34:24:b6:9e:d7:a3:42:16:1b:f7:f6:18:29:
40:a7:b8:c5:40:f2:c3:69:d3:f4:aa:69:9c:7f:92:
2b:31:e1:ae:d5:e1:47:75:c0:08:53:2b:b5:0f:19:
16:9f:c3:3c:70:0e:fc:18:bc:9f:c4:8d:0c:0d:43:
df:37:78:c9:2a:3d:c3:9c:90:c5:9a:2a:b8:c5:59:
8d:66:e6:b5:34:63:43:83:61:48:a6:28:01:ae:12:
b9:3b:d7:ef:c6:a1:80:db:88:5f:2b:ee:97:16:f8:
78:3b:31:1e:f8:bf:1b:f7:1c:84:46:74:f4:05:28:
ad:6d:ec:9c:c3:3c:ce:04:5d:09:a5:7e:d5:ac:0e:
c4:0a:68:26:db:1e:2d:68:f8:f9:a3:f0:dc:a3:88:
fa:b9:93:b8:5b:17:42:7e:d5:11:41:47:3b:6c:41:
b3:f7:b9:77:80:f8:b6:63:98:ea:36:af:2a:08:ac:
48:f9:30:d3:22:c1:45:5d:52:77:8f:7d:02:b2:7b:
ec:e5:9d:51:71:11:a7:8e:f5:da:ed:a9:03:1f:2c:
aa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:57:71:7E:B8:2B:33:3F:FE:85:B7:87:2D:8B:D4:8E:9C:F3:62:87
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/S1dxfrgrMz_-hbeHLYvUjpzzYoc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.128/29
Signature Algorithm: sha256WithRSAEncryption
00:b0:c3:3b:b5:4c:f4:57:80:f6:f8:39:71:fa:9b:64:d2:73:
e8:f3:19:62:5f:b7:bb:47:ec:2d:61:8d:6c:00:87:44:60:fb:
41:c9:d8:7d:38:d4:e8:87:00:40:81:7a:a9:bf:f6:4e:20:3a:
9c:51:46:a2:a7:a5:f1:e1:7d:12:03:ac:ec:cf:2c:f5:e1:f7:
6a:62:28:b7:68:b6:17:c9:46:f6:bd:9a:93:8d:3a:e7:a3:1b:
a4:fd:9c:5d:da:b1:85:41:7a:f3:72:bf:9d:47:38:a0:a8:a2:
5d:88:9b:91:3b:07:03:33:f9:f7:f8:23:7b:e1:be:8c:4e:6d:
d5:c5:c5:bd:99:c6:6a:8c:0e:ba:21:21:dd:59:9d:df:b7:99:
b4:6c:77:83:78:1a:d0:32:7d:dc:05:52:fa:a8:e8:5b:66:42:
67:23:b3:45:a6:00:b6:50:ce:4d:6f:2f:33:95:41:e1:a6:67:
40:56:40:4e:4b:f7:9f:7a:e3:c8:cd:58:4a:ab:4a:46:54:78:
c1:f0:22:f6:58:0a:31:77:2e:63:dc:1e:f5:11:4a:e5:01:0b:
d2:82:7b:d7:09:aa:57:ce:44:79:0f:da:a5:0f:43:23:d3:99:
a2:68:21:50:49:10:ed:ee:d2:0f:48:9c:5c:e3:1b:52:99:87:
4b:27:4b:9b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy
Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMTA5Mjkw
MjUzMDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDRCNTc3MTdFQjgyQjMz
M0ZGRTg1Qjc4NzJEOEJENDhFOUNGMzYyODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYj+NqiOk4A9lChzxS/7Md7MaUxTKLjDROVfvF0oXfvZUtiP9f
Gbv9VceraXnUNCS2ntejQhYb9/YYKUCnuMVA8sNp0/SqaZx/kisx4a7V4Ud1wAhT
K7UPGRafwzxwDvwYvJ/EjQwNQ983eMkqPcOckMWaKrjFWY1m5rU0Y0ODYUimKAGu
Erk71+/GoYDbiF8r7pcW+Hg7MR74vxv3HIRGdPQFKK1t7JzDPM4EXQmlftWsDsQK
aCbbHi1o+Pmj8NyjiPq5k7hbF0J+1RFBRztsQbP3uXeA+LZjmOo2ryoIrEj5MNMi
wUVdUnePfQKye+zlnVFxEaeO9drtqQMfLKoHAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUS1dxfrgrMz/+hbeHLYvUjpzzYocwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe
wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv
bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9TMWR4ZnJnck16Xy1oYmVITFl2
VWpwenpZb2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPTop
gDANBgkqhkiG9w0BAQsFAAOCAQEAALDDO7VM9FeA9vg5cfqbZNJz6PMZYl+3u0fs
LWGNbACHRGD7QcnYfTjU6IcAQIF6qb/2TiA6nFFGoqel8eF9EgOs7M8s9eH3amIo
t2i2F8lG9r2ak40656MbpP2cXdqxhUF683K/nUc4oKiiXYibkTsHAzP59/gje+G+
jE5t1cXFvZnGaowOuiEh3Vmd37eZtGx3g3ga0DJ93AVS+qjoW2ZCZyOzRaYAtlDO
TW8vM5VB4aZnQFZATkv3n3rjyM1YSqtKRlR4wfAi9lgKMXcuY9we9RFK5QEL0oJ7
1wmqV85EeQ/apQ9DI9OZomghUEkQ7e7SD0icXOMbUpmHSydLmw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-fra.rpki-client.org