Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/22FOkpuy3374tH-7SFnqSkoYBwE.roa
File: 22FOkpuy3374tH-7SFnqSkoYBwE.roa (raw, json)
Hash identifier: vmTy5df/0E1UvZO7sbpKiY10cA878KGa0+h2vuEv0G0=
Subject key identifier: DB:61:4E:92:9B:B2:DF:7E:F8:B4:7F:BB:48:59:EA:4A:4A:18:07:01
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09E0
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/22FOkpuy3374tH-7SFnqSkoYBwE.roa
Signing time: Wed 29 Sep 2021 02:52:18 +0000
ROA not before: Wed 29 Sep 2021 02:52:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9918
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2528 (0x9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB614E929BB2DF7EF8B47FBB4859EA4A4A180701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c8:61:0e:c3:99:fe:ec:14:ce:c6:f4:d8:11:
91:c8:fb:02:ca:55:61:90:26:dd:10:85:6e:08:6f:
b6:81:c9:c3:ad:89:81:2a:fa:6d:e7:9a:65:d9:3d:
ad:2e:27:73:a2:d3:ee:68:92:25:71:3f:2d:f1:e9:
31:9f:d4:89:c8:a8:60:c8:d0:cb:c6:0c:85:d3:71:
e0:14:8d:07:af:f0:70:8f:94:f1:3f:07:90:24:16:
f4:53:25:f6:3c:a8:79:42:0b:43:37:4f:da:75:67:
d3:4f:4e:90:ae:77:1d:c5:dd:d9:95:fe:f8:68:66:
b6:26:4e:f8:dc:91:49:15:69:e0:8b:6e:e2:a6:0e:
f6:cf:6b:04:39:fc:fe:ec:fa:46:21:32:e8:60:32:
89:7d:bc:cd:fa:14:67:e6:23:31:ec:7d:e9:fd:6d:
0d:66:f3:d4:45:c1:ad:97:5b:7b:3c:5c:4a:8f:a3:
6c:0c:b3:d8:23:cf:6b:9c:d3:6d:5b:4b:a9:d9:b2:
52:6a:73:a2:1f:27:5b:1c:54:5a:4f:5c:84:bf:39:
25:56:63:91:df:01:c2:67:65:5e:7c:9e:79:cf:8e:
c8:fa:56:29:38:77:0d:97:57:10:7a:f8:d0:10:bf:
99:ed:38:34:5d:ee:1a:14:73:c7:35:55:71:74:c5:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:61:4E:92:9B:B2:DF:7E:F8:B4:7F:BB:48:59:EA:4A:4A:18:07:01
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/22FOkpuy3374tH-7SFnqSkoYBwE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
23:b1:fe:26:ef:31:56:bd:3b:c3:a7:88:3a:ed:25:32:b6:cf:
ed:33:23:c9:f0:0f:5d:1d:01:c7:d3:61:2c:db:c0:9b:ff:83:
05:74:e9:55:5c:5c:74:2f:87:a8:2b:ce:7e:24:55:05:c0:19:
ba:fe:48:b8:eb:4e:31:6a:ac:ad:a6:50:99:8c:88:a2:4a:29:
24:ff:35:ae:4b:d2:e3:52:49:58:ec:31:03:51:1f:81:23:2c:
c8:b7:6c:05:8e:5f:15:39:bc:4d:9f:5d:9a:1d:66:7c:86:0c:
e1:69:98:42:8a:e4:b2:44:3e:0d:f6:ce:56:2b:eb:8f:0e:7b:
3d:33:8b:69:51:dc:0d:04:8e:0c:2b:ed:90:8e:15:0b:19:6b:
7a:27:5e:82:a3:57:b0:86:bc:29:33:06:80:65:b4:95:0b:3b:
f7:5f:40:82:47:47:b3:32:92:6d:72:00:e0:1b:40:a5:43:3c:
be:7d:cf:8b:fe:eb:fc:36:b4:cc:f3:e1:0b:eb:b0:75:bf:59:
eb:6d:5c:b3:70:c2:15:62:aa:46:7b:12:2c:81:d4:c5:f4:dd:
a3:53:ce:d6:6a:84:f6:d0:9a:ae:9b:ee:45:96:0b:06:bf:58:
ce:5d:5f:43:64:e8:33:c0:f0:23:d1:2f:e8:e4:26:bf:9b:45:
24:60:27:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:43 2025 by rpki-client