Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/4WpwP_cv8zs_rERZm22r1eqV3dw.roa
File: 4WpwP_cv8zs_rERZm22r1eqV3dw.roa (raw, json)
Hash identifier: 3rwkQjHO/Mfqdl/Jj362YrCEmPoaPvQ45tEB6fWSR/Y=
Subject key identifier: E1:6A:70:3F:F7:2F:F3:3B:3F:AC:44:59:9B:6D:AB:D5:EA:95:DD:DC
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/4WpwP_cv8zs_rERZm22r1eqV3dw.roa
Signing time: Thu 15 Sep 2022 02:49:52 +0000
ROA not before: Thu 15 Sep 2022 02:49:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E16A703FF72FF33B3FAC44599B6DABD5EA95DDDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:55:40:b1:1b:4a:bb:a4:bf:e9:0d:da:27:49:
87:a4:ba:5c:c0:fe:a0:7b:2e:4a:dc:39:5e:07:7e:
d1:60:c3:a6:2f:52:c4:19:d7:83:46:60:5d:b1:92:
33:82:ba:5c:d1:2b:54:12:84:4f:e1:64:1d:99:c4:
6d:8b:1d:6a:bf:b0:18:73:3e:23:5a:07:3a:99:52:
e8:33:ea:e0:f8:8f:6d:34:c1:49:c8:f8:77:ef:91:
be:39:0e:49:81:db:b2:1a:29:7e:0b:06:28:94:df:
ad:b0:e8:ff:be:78:90:eb:e4:35:4f:b8:1c:b2:c2:
fb:ab:77:a3:0d:94:0d:df:b9:78:2a:2b:40:fa:12:
f0:9b:39:0a:bc:61:b3:98:87:1f:43:99:e0:67:f0:
95:67:b5:1f:fb:df:b7:c1:b7:f7:97:d9:8f:81:f8:
c5:a3:48:98:23:b7:0e:7a:e3:48:58:28:2a:a9:7e:
a3:f3:fc:d2:50:2e:3f:87:76:59:08:19:b9:0e:6e:
0a:64:8c:bd:0a:39:da:75:79:67:7e:29:3b:a0:fd:
dd:45:1b:8f:9d:38:ff:c3:4b:cb:1e:94:14:37:2c:
d6:bf:c1:78:58:e7:a5:a5:59:4f:4b:b6:c6:ef:8a:
81:80:8c:25:a4:f3:31:20:d9:b8:20:d1:84:4c:fa:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6A:70:3F:F7:2F:F3:3B:3F:AC:44:59:9B:6D:AB:D5:EA:95:DD:DC
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/4WpwP_cv8zs_rERZm22r1eqV3dw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.36.0/22
Signature Algorithm: sha256WithRSAEncryption
95:32:15:b2:09:a4:60:ee:5d:9d:a5:77:17:79:03:de:d8:cb:
45:34:ff:f7:f3:91:bb:aa:04:5f:68:d8:96:c2:1b:47:11:7f:
95:27:91:6d:21:61:82:c0:c6:a5:f0:47:d3:c0:5a:7e:ef:12:
6a:a8:08:fa:81:39:c2:b5:89:df:1c:42:9b:f0:b4:d6:ab:6b:
6e:e4:22:30:4f:40:e4:f7:17:6b:88:ea:4f:b9:ca:39:65:c2:
49:f9:55:2a:b3:cf:60:32:13:3f:90:4c:a0:6a:d8:10:c7:00:
94:17:5e:cc:c7:3c:6a:30:e5:6a:e4:d4:2d:a7:a9:43:ce:f9:
d5:6c:1e:10:2e:e4:dd:10:68:9e:c9:bd:2c:ac:bb:8b:c4:f0:
e4:9c:54:4f:03:71:3f:72:b3:40:9a:c5:0b:1e:9e:af:fc:0d:
8a:3b:25:c6:c6:a5:3c:25:4e:14:46:00:b1:41:52:54:d5:63:
f1:7b:9d:ba:3f:9b:8a:d6:3b:e1:4f:85:0d:21:b3:cc:2d:b4:
71:04:84:5a:49:d9:d5:98:62:fc:ea:4d:2f:96:03:e9:85:0d:
5e:c9:c4:df:14:1e:a8:bd:9c:3f:b9:b0:f1:41:a6:60:76:49:
69:db:5d:2c:76:0e:b5:d8:e0:48:07:50:9f:9e:4b:51:44:da:
c9:c9:dd:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org