Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/3aJ24VsebA3oBztNzRJvimVuKgQ.roa
File: 3aJ24VsebA3oBztNzRJvimVuKgQ.roa (raw, json)
Hash identifier: SM4O+0pZzCuUvXfw8OIlDVr1aWCgaVL8fexqzw0GiuA=
Subject key identifier: DD:A2:76:E1:5B:1E:6C:0D:E8:07:3B:4D:CD:12:6F:8A:65:6E:2A:04
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/3aJ24VsebA3oBztNzRJvimVuKgQ.roa
Signing time: Thu 15 Sep 2022 02:38:42 +0000
ROA not before: Thu 15 Sep 2022 02:38:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 61.60.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DDA276E15B1E6C0DE8073B4DCD126F8A656E2A04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fe:83:51:08:03:50:36:8f:44:dd:d6:e9:b9:
70:29:82:c7:22:d9:6f:12:4f:22:85:6f:de:42:42:
0c:eb:a5:ce:ba:34:f5:2f:8f:28:4d:7e:ab:cd:45:
01:ef:9f:66:3b:b1:3a:95:86:9f:99:a8:d2:f4:01:
40:98:66:dd:a0:84:c4:37:38:d5:b0:4b:38:93:dd:
ac:60:aa:ca:7d:39:bb:25:89:38:82:13:20:1b:55:
f9:e5:78:f6:34:2e:18:11:5b:1d:80:d0:10:c4:06:
8b:6f:fb:fb:3d:e8:43:a7:fd:f7:3b:c8:30:f2:c9:
91:73:1c:45:ec:42:6c:ae:f5:85:ed:ab:61:51:d9:
c2:e3:62:8b:e6:08:30:3d:fc:ee:b0:87:25:f0:48:
e7:40:0c:a5:36:25:fa:19:9c:3f:5a:f9:d0:4b:bf:
ff:f2:be:8a:4d:a5:58:9f:c4:d6:b1:21:d3:ba:bf:
23:bd:8c:d1:33:cb:2b:cb:ac:ef:3f:b1:57:cd:c7:
87:29:15:0e:73:bc:55:ef:74:bb:e0:34:0d:a8:18:
55:16:c6:16:5f:41:58:f4:ac:3a:2e:81:e7:3c:2b:
5d:9d:46:19:19:f9:19:36:23:94:ad:ea:19:c2:0a:
e0:da:ff:d9:60:01:93:a1:01:f7:5d:a7:b9:ab:e5:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A2:76:E1:5B:1E:6C:0D:E8:07:3B:4D:CD:12:6F:8A:65:6E:2A:04
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/3aJ24VsebA3oBztNzRJvimVuKgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.0.0/17
Signature Algorithm: sha256WithRSAEncryption
ce:26:ce:d2:00:f9:d4:f8:e2:e8:21:50:ba:bc:3e:15:e2:a8:
c6:e7:65:17:89:c7:21:0d:0b:3a:c3:f1:7b:ca:46:e8:d3:f9:
98:e5:b8:9b:2b:04:04:9f:5a:cc:b7:dc:50:6d:b7:f2:32:33:
7d:6a:df:bb:59:46:5f:23:54:d5:4c:84:67:67:13:df:e1:f6:
10:81:3c:b9:19:ca:24:e6:f9:00:48:17:dc:0c:16:05:c5:ee:
41:b7:b8:72:6d:d5:f9:87:f6:1d:ec:7e:ba:c6:70:d2:26:e8:
e5:a3:85:c8:74:54:d0:fe:0c:08:d1:dc:a6:d9:09:23:10:91:
0a:b9:03:55:90:93:0d:60:04:7b:fd:3f:93:94:6f:27:9e:4d:
f8:e3:5a:1c:ce:88:52:3f:37:ef:e2:be:ef:8c:9a:37:eb:95:
7e:9a:af:de:4c:d7:76:37:9e:75:87:ea:39:1c:ac:1b:91:6e:
94:69:84:6c:93:ba:d8:21:c5:49:4e:ad:e0:ee:8e:84:84:ba:
ce:e2:58:07:d5:8b:a1:c2:8c:c1:e7:7b:29:a5:67:fa:0b:27:
5b:eb:de:8a:32:a8:a7:02:48:67:70:89:2a:e8:0c:5b:62:90:
e1:a4:cb:e4:81:7c:b6:25:57:90:4e:3e:64:e2:81:63:64:29:
78:87:22:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org