Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_kyZLt1bGF1J59bjC-n4sJ8TmW8.roa
File: _kyZLt1bGF1J59bjC-n4sJ8TmW8.roa (raw, json)
Hash identifier: ElOMhDyXHXutDkHqxCpyAVJC/OCqCili451Ex5IKBq4=
Subject key identifier: FE:4C:99:2E:DD:5B:18:5D:49:E7:D6:E3:0B:E9:F8:B0:9F:13:99:6F
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0886
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_kyZLt1bGF1J59bjC-n4sJ8TmW8.roa
Signing time: Wed 02 Dec 2020 03:23:20 +0000
ROA not before: Wed 02 Dec 2020 03:23:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 2914
IP address blocks: 61.58.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2182 (0x886)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Dec 2 03:23:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FE4C992EDD5B185D49E7D6E30BE9F8B09F13996F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:23:88:16:4d:3d:ea:38:93:b3:b3:98:82:36:
c8:30:85:c1:7f:39:ab:74:82:cf:ee:ee:9c:cd:35:
ad:cb:73:49:94:35:4d:53:55:38:07:22:a4:8f:52:
3b:df:db:99:91:68:09:e1:34:fb:20:59:88:6b:73:
3a:79:2a:82:e1:29:bb:14:d9:ad:d8:a8:12:a8:e8:
97:48:41:9c:6b:13:f8:e0:d5:8c:7b:a9:d6:52:53:
b7:55:2e:bf:a5:c4:a1:72:e3:f5:70:87:d0:7c:c4:
85:1e:cf:62:1f:17:bb:98:b1:2e:6c:db:1a:c7:8a:
e9:5e:07:67:c8:a6:c8:4a:74:6f:5a:c0:11:c4:ec:
ae:68:83:6f:9b:25:92:93:bd:87:36:63:5c:07:dd:
68:18:04:b2:90:7e:e4:ae:bb:e4:e8:06:96:f2:1e:
37:62:dd:ee:8c:03:1d:48:7a:91:29:b1:64:96:d9:
c4:19:4c:ce:d0:2d:9b:00:d3:04:f3:7a:58:1c:4b:
c7:6e:20:d4:3f:0d:26:ba:86:2a:6d:83:b8:a3:96:
8f:6c:97:9e:37:5f:92:87:1f:95:0f:6a:0c:8e:2b:
8c:b3:f5:91:91:6b:13:48:f2:ba:32:a2:83:29:b4:
da:d4:cf:15:e9:2c:23:00:d4:fb:6c:35:a6:90:56:
86:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4C:99:2E:DD:5B:18:5D:49:E7:D6:E3:0B:E9:F8:B0:9F:13:99:6F
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_kyZLt1bGF1J59bjC-n4sJ8TmW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.32.0/20
Signature Algorithm: sha256WithRSAEncryption
c6:f1:6b:a0:a6:c0:0e:d5:0b:33:58:1e:7a:23:f2:fd:ed:9f:
7d:3c:ad:68:76:49:df:4c:ec:28:45:76:3d:e6:0c:5d:2c:ae:
cc:62:e0:32:71:8b:88:24:6c:04:dd:2e:c0:c7:f8:24:7f:1e:
0f:b2:65:eb:3a:dc:8f:30:ab:08:c0:fe:06:23:2f:7b:07:13:
41:aa:58:18:99:24:20:92:3b:71:1b:4f:c6:94:cf:70:24:1d:
8b:c9:c0:5a:10:2b:2e:b3:de:9f:e4:9f:91:94:e2:db:e4:eb:
46:62:0b:cb:ac:3d:ab:6e:ab:a1:44:0e:b6:a3:64:ba:cf:25:
03:39:39:9c:fa:95:2e:ee:35:44:68:53:26:5f:a3:fc:87:2c:
cc:1c:67:7c:7b:9e:09:85:d2:ef:fd:f2:da:57:98:39:51:b7:
b5:11:9c:7c:74:3d:74:eb:42:8d:67:bd:4a:c5:f5:af:3a:d1:
53:36:9e:10:9d:b5:3b:6a:f5:74:ce:13:98:40:87:a2:e2:7f:
8c:a1:c8:72:e9:29:bd:6f:c3:b7:47:5a:31:72:a5:37:70:6f:
01:25:5f:2d:0d:50:2b:0f:9e:61:cf:f8:99:46:fc:8f:c2:f4:
66:74:9f:72:c0:d1:0b:38:49:c1:68:d3:12:8f:85:1a:5a:37:
5b:7b:0e:88
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy
Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMDEyMDIw
MzIzMjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZFNEM5OTJFREQ1QjE4
NUQ0OUU3RDZFMzBCRTlGOEIwOUYxMzk5NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcI4gWTT3qOJOzs5iCNsgwhcF/Oat0gs/u7pzNNa3Lc0mUNU1T
VTgHIqSPUjvf25mRaAnhNPsgWYhrczp5KoLhKbsU2a3YqBKo6JdIQZxrE/jg1Yx7
qdZSU7dVLr+lxKFy4/Vwh9B8xIUez2IfF7uYsS5s2xrHiuleB2fIpshKdG9awBHE
7K5og2+bJZKTvYc2Y1wH3WgYBLKQfuSuu+ToBpbyHjdi3e6MAx1IepEpsWSW2cQZ
TM7QLZsA0wTzelgcS8duINQ/DSa6hiptg7ijlo9sl543X5KHH5UPagyOK4yz9ZGR
axNI8royooMptNrUzxXpLCMA1PtsNaaQVoa/AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/kyZLt1bGF1J59bjC+n4sJ8TmW8wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe
wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv
bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9fa3laTHQxYkdGMUo1OWJqQy1u
NHNKOFRtVzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTog
MA0GCSqGSIb3DQEBCwUAA4IBAQDG8WugpsAO1QszWB56I/L97Z99PK1odknfTOwo
RXY95gxdLK7MYuAycYuIJGwE3S7Ax/gkfx4PsmXrOtyPMKsIwP4GIy97BxNBqlgY
mSQgkjtxG0/GlM9wJB2LycBaECsus96f5J+RlOLb5OtGYgvLrD2rbquhRA62o2S6
zyUDOTmc+pUu7jVEaFMmX6P8hyzMHGd8e54JhdLv/fLaV5g5Ube1EZx8dD1060KN
Z71KxfWvOtFTNp4QnbU7avV0zhOYQIei4n+Mochy6Sm9b8O3R1oxcqU3cG8BJV8t
DVArD55hz/iZRvyPwvRmdJ9ywNELOEnBaNMSj4UaWjdbew6I
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org