Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/45vrINCgOJbEPk00gXBYZu90wos.roa
File: 45vrINCgOJbEPk00gXBYZu90wos.roa (raw, json)
Hash identifier: naCN1LPvQcgKkgcuwv8+DodIcl/bcuJFYlzajaj4bfg=
Subject key identifier: E3:9B:EB:20:D0:A0:38:96:C4:3E:4D:34:81:70:58:66:EF:74:C2:8B
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0795
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/45vrINCgOJbEPk00gXBYZu90wos.roa
Signing time: Tue 29 Sep 2020 09:59:44 +0000
ROA not before: Tue 29 Sep 2020 09:59:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1941 (0x795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E39BEB20D0A03896C43E4D3481705866EF74C28B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:4e:b9:25:1b:6b:3e:e4:20:aa:99:92:c4:
7b:11:48:bb:f8:a8:29:5b:58:6f:d9:b4:97:b6:ec:
97:20:8e:20:84:9b:e5:9c:cf:6f:26:a8:16:8b:79:
a1:1f:ca:35:a2:32:db:a5:c9:af:e0:c9:95:9e:30:
db:e3:92:06:9f:85:8f:96:aa:a5:ed:4b:ee:28:b3:
6a:69:fb:03:e4:be:8b:97:20:12:2b:27:8c:c1:b9:
73:69:24:78:1b:da:fd:f6:07:18:61:95:7e:c7:3e:
31:e8:80:03:45:93:07:e1:83:1e:a9:e1:43:f4:61:
46:46:64:1d:20:ef:99:df:e1:cc:35:e2:61:ac:c1:
58:12:11:2f:81:58:80:61:7f:ef:f4:48:34:bd:28:
ea:1f:ca:57:2b:fd:29:a1:d7:f3:24:25:c0:8f:c0:
7e:02:f2:ab:a4:b0:18:03:db:3e:05:03:1b:84:72:
e5:77:93:bc:3d:9f:27:3d:38:ed:34:82:4d:1a:ac:
08:fc:c6:69:93:20:85:40:26:b9:37:96:20:de:10:
35:09:b2:5e:56:05:b6:79:ea:58:c4:3c:0c:24:88:
b5:a5:eb:6a:ac:3e:65:32:9f:04:a1:c0:ec:5e:42:
eb:3d:1f:7d:de:f1:7b:99:45:a5:da:be:f6:09:1e:
53:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9B:EB:20:D0:A0:38:96:C4:3E:4D:34:81:70:58:66:EF:74:C2:8B
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/45vrINCgOJbEPk00gXBYZu90wos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
28:71:1b:26:b0:99:4e:ca:30:3b:47:4b:05:0d:12:54:01:9e:
3b:45:11:a9:a1:de:85:ea:6d:b9:1c:bc:55:1f:ef:8f:31:b1:
5f:36:9e:57:7a:bf:4e:59:e2:5b:7c:55:c3:71:a9:66:5f:e8:
06:0f:6c:d1:95:4d:ab:8b:7c:9f:73:bd:ad:a6:18:81:57:13:
3a:90:44:c0:ad:af:a0:c9:8e:e4:58:60:fd:c5:e7:9a:80:b6:
fb:9c:b6:8d:d6:b1:68:52:37:ee:28:4c:d5:a6:58:e9:ed:ec:
12:71:bf:0d:ef:4b:3b:4d:1d:6d:5c:00:0d:ae:44:22:27:b3:
c0:8c:a9:89:58:94:1c:3d:90:8c:fc:b0:72:dc:fe:a3:7f:50:
68:84:6e:d5:e8:63:7c:8c:88:6a:57:76:45:a8:a5:03:4a:1f:
ba:1f:f8:61:d6:9a:d8:cb:b1:ad:b4:11:b3:cb:e9:50:cd:6d:
43:ed:14:fb:be:5c:45:7f:88:4b:e9:4d:47:e2:f2:a7:8f:03:
7b:16:77:bb:98:df:6b:1b:f1:7f:e1:08:7e:02:29:f5:90:94:
f4:54:19:16:46:78:55:7c:26:4d:e5:e1:26:d7:73:95:5e:75:
78:c2:1b:8a:f1:d1:64:d2:d4:ff:12:31:f6:7c:19:80:68:de:
6c:e8:22:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org