Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3rEdVuqUMLBRMePiqDYrNr_X7_o.roa
File: 3rEdVuqUMLBRMePiqDYrNr_X7_o.roa (raw, json)
Hash identifier: w+QIEjAuCN8DhvERJIbMp7nIC/gCtPf25bUyhJoZuCM=
Subject key identifier: DE:B1:1D:56:EA:94:30:B0:51:31:E3:E2:A8:36:2B:36:BF:D7:EF:FA
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 07A6
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3rEdVuqUMLBRMePiqDYrNr_X7_o.roa
Signing time: Tue 29 Sep 2020 09:59:48 +0000
ROA not before: Tue 29 Sep 2020 09:59:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1958 (0x7a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DEB11D56EA9430B05131E3E2A8362B36BFD7EFFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:92:dc:b3:f8:a2:35:56:4b:89:4c:73:09:
61:e1:67:e8:80:ae:6a:ed:b9:02:41:77:ce:13:ea:
84:55:be:da:0d:2b:65:bb:d0:89:70:8c:8a:cd:00:
10:19:79:12:5b:8d:08:2b:4a:43:2c:00:28:63:33:
f3:4e:90:1c:4d:7c:ba:de:ba:46:c0:04:1a:c9:5d:
c6:36:01:16:f4:78:fa:80:bc:5c:b4:84:e1:e3:7d:
2f:8f:a2:3b:10:87:9d:a8:54:32:81:56:e1:4c:f0:
b5:d7:2a:18:73:9d:10:be:19:97:44:71:31:b6:e7:
f4:ca:e0:10:30:1f:ac:89:7f:e4:83:3d:50:bf:31:
b8:24:ec:b8:50:c8:78:ed:69:6e:8b:27:04:cb:dc:
8c:47:18:e6:c6:36:34:41:7e:e7:e3:bd:e6:a1:00:
7f:38:b9:ed:28:d0:ac:08:57:34:69:d9:bb:23:0a:
82:cc:24:37:41:d7:12:77:f4:71:90:84:28:64:fe:
37:c7:bd:4c:e5:6f:0d:35:85:18:cd:cd:c7:e1:31:
c2:d3:c4:be:1b:41:aa:88:2b:7c:25:e5:84:cf:d0:
d8:89:30:01:be:5c:cf:9a:ff:cf:21:03:2b:ba:c4:
bf:51:c6:b1:bd:3b:94:84:04:b7:08:ec:7d:44:c5:
e7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B1:1D:56:EA:94:30:B0:51:31:E3:E2:A8:36:2B:36:BF:D7:EF:FA
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3rEdVuqUMLBRMePiqDYrNr_X7_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.40.0/24
Signature Algorithm: sha256WithRSAEncryption
94:84:06:7f:72:03:11:41:d1:45:27:ca:cb:7a:7f:ed:ec:29:
d6:ce:64:77:31:c3:c5:70:10:3c:6e:1e:63:ad:50:96:ae:62:
7d:0e:e6:3c:f2:af:c6:f9:4c:38:ab:cd:12:45:ae:2b:30:5e:
1f:3c:29:e2:14:cc:54:e2:13:15:57:6d:ea:f7:a8:e1:6d:c6:
3c:a7:46:eb:df:9f:c0:1b:b6:58:1d:40:3b:c1:d7:68:af:23:
04:a3:64:df:dc:ac:d1:b1:76:5f:96:bb:56:d7:ba:24:8d:8c:
1d:00:6b:06:ca:c9:c9:87:fa:e8:ef:76:15:df:7e:59:d0:85:
3b:4e:af:9f:6d:aa:db:97:bf:f9:a1:c1:e0:28:de:35:80:1a:
23:24:e0:df:b3:b4:1e:c1:88:ae:4a:fb:d6:af:5b:a7:79:6d:
d5:62:2a:00:6f:14:ac:b1:0a:a1:9f:fa:9b:59:66:ea:56:cc:
b8:b0:96:da:69:91:02:ae:0b:95:c4:8a:0f:50:b6:9b:64:22:
9c:ef:18:33:52:54:27:bb:f5:00:21:40:37:3a:f7:76:ad:aa:
22:88:26:bc:5a:eb:7d:41:62:4c:dc:c5:f6:2f:f4:35:df:a3:
db:84:84:a5:d8:46:5e:22:1c:8b:31:02:37:19:b4:08:9f:b7:
69:03:51:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org