Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/Z18g_aslthHVFi2geO0_pzmAqAM.roa
File: Z18g_aslthHVFi2geO0_pzmAqAM.roa (raw, json)
Hash identifier: Zlg38ZoNC6QSihYwFn0yU93ReyzNT3NgwINC0PU8ZyM=
Subject key identifier: 67:5F:20:FD:AB:25:B6:11:D5:16:2D:A0:78:ED:3F:A7:39:80:A8:03
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0783
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Z18g_aslthHVFi2geO0_pzmAqAM.roa
Signing time: Tue 29 Sep 2020 10:03:51 +0000
ROA not before: Tue 29 Sep 2020 10:03:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 61.60.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 29 10:03:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=675F20FDAB25B611D5162DA078ED3FA73980A803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:76:61:6a:ff:a3:db:dc:2b:df:46:48:91:6c:
8f:4e:4b:d0:7e:ed:9c:49:d3:65:c3:47:c3:30:25:
81:14:99:7e:ec:5d:47:f2:75:39:b7:f1:4e:97:36:
09:f8:93:bb:4e:fd:9c:a7:c8:0a:44:a8:21:9f:e4:
fe:04:c5:ad:15:39:1c:86:35:d8:33:5b:26:7f:30:
6c:5f:90:97:8a:80:6d:47:75:ae:cb:e5:18:d2:52:
26:51:d3:bb:e5:c2:35:7f:e3:01:42:76:d0:f8:4a:
4e:a1:3e:f6:f1:9d:21:bb:a6:ca:fd:f7:3e:57:cb:
bc:1e:e2:a6:e1:a8:47:ce:29:e4:01:1f:ea:f8:f9:
38:17:e6:17:4c:ef:ff:f0:04:2c:4d:b2:4b:18:79:
e6:d9:82:9b:ff:59:e7:39:39:23:6d:29:08:62:b1:
0e:48:93:dc:11:fa:b5:ee:e4:43:d8:6f:0c:b5:88:
8c:74:be:33:31:a5:cc:4b:7f:45:ee:e9:02:9d:8e:
d4:d9:4d:4d:40:c3:1f:46:6c:b2:c7:ed:27:21:92:
b4:ca:d0:78:80:65:5a:3f:16:8b:5f:0c:3c:49:a1:
c4:ad:a2:fd:5d:0d:9c:d9:51:b7:80:28:77:7c:d8:
f9:60:83:93:3d:6d:f5:fa:37:9a:a9:67:ca:b7:c7:
58:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5F:20:FD:AB:25:B6:11:D5:16:2D:A0:78:ED:3F:A7:39:80:A8:03
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Z18g_aslthHVFi2geO0_pzmAqAM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.0.0/17
Signature Algorithm: sha256WithRSAEncryption
1f:2e:12:91:e0:7a:8e:43:c7:cd:0a:51:62:90:7a:85:57:d3:
fd:05:c6:24:9e:e6:f6:81:21:fc:52:58:29:41:bf:4d:c1:d1:
bf:1f:79:44:68:fc:76:d4:c6:c1:dd:b1:4e:56:23:6e:a9:25:
2b:b4:9e:a3:38:b3:33:37:ff:8a:23:d2:00:9a:0c:05:46:09:
a7:8c:02:94:58:44:c7:3f:ab:a0:60:49:78:85:5c:0a:2b:f4:
d2:c8:5a:19:fc:20:c1:c8:8c:cd:c7:b0:5e:19:c1:ac:8a:c4:
7b:b4:7e:1f:d2:e9:12:8d:9d:0e:65:a1:c9:4a:f1:47:9c:49:
d2:2c:a5:66:f3:1b:16:1a:76:0a:bf:f4:b8:2b:ea:43:82:10:
b4:20:3b:1f:59:f8:3d:e7:d4:05:03:83:ab:0f:a3:dc:de:78:
18:20:28:f9:07:75:4f:61:e5:41:e0:ef:21:9f:7d:10:32:bf:
60:41:c6:ae:77:bc:dc:70:84:62:f1:18:59:09:c5:26:96:9c:
bc:26:5a:e4:08:e4:c4:e6:be:d9:76:6e:af:86:e9:bb:c3:bb:
11:8b:f9:d5:9b:34:8b:08:ef:23:99:25:89:be:d4:77:fe:99:
c9:f9:bc:9a:f4:3a:5d:c6:ba:e7:b6:06:1a:e5:b7:6a:77:e6:
c6:b3:6b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org