Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/5r5wotWn2YrQIL4bQHC4Re4_sVM.roa
File: 5r5wotWn2YrQIL4bQHC4Re4_sVM.roa (raw, json)
Hash identifier: qU+zuADCGs5Z7W1Tb45T3vhfNdjCLAs32adJhcXbWMw=
Subject key identifier: E6:BE:70:A2:D5:A7:D9:8A:D0:20:BE:1B:40:70:B8:45:EE:3F:B1:53
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 091A
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/5r5wotWn2YrQIL4bQHC4Re4_sVM.roa
Signing time: Sun 07 Feb 2021 11:42:40 +0000
ROA not before: Sun 07 Feb 2021 11:42:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.61.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2330 (0x91a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6BE70A2D5A7D98AD020BE1B4070B845EE3FB153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:74:39:ff:ab:4b:60:ec:6d:e5:ff:09:71:15:
fb:e3:ff:1f:36:d3:b3:b1:d3:5f:12:d0:f4:ad:c2:
2d:9e:66:c1:d4:08:34:c5:93:cb:ac:9d:94:b5:29:
a3:15:1d:92:0d:f8:6f:24:1f:7f:65:5b:09:fa:3c:
f1:49:f0:f3:95:6d:18:16:57:00:9f:5b:9d:ea:4b:
94:00:6a:c6:0a:e4:d3:96:a3:27:44:b6:0b:4d:c1:
ef:e7:3e:d4:be:25:3c:60:1a:65:20:7d:0d:a1:4b:
57:e3:cd:5b:63:04:9f:23:b0:83:5e:79:1e:07:51:
81:2e:62:48:1e:8e:9c:5b:d6:a9:13:34:85:3c:76:
cf:19:78:ca:94:e8:5e:a5:1f:09:4f:ea:e7:07:8f:
95:2d:95:97:f8:3a:16:6f:7a:ef:72:b1:41:ed:ab:
89:6b:9f:26:cb:a7:f1:62:9c:51:d0:06:14:6b:4f:
4b:36:19:4a:e6:d2:fa:b4:c0:3b:1c:8f:4a:1d:fa:
2f:a3:c6:f6:8a:b9:52:80:db:0c:42:f8:72:72:f7:
44:46:93:3a:d8:dc:55:ac:3d:a8:61:3f:89:37:8e:
a5:9c:44:51:c5:2a:6a:e7:08:47:59:a8:0a:de:5a:
ac:bb:f2:dd:bc:9c:29:f5:89:91:3a:1d:4a:7e:70:
35:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BE:70:A2:D5:A7:D9:8A:D0:20:BE:1B:40:70:B8:45:EE:3F:B1:53
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/5r5wotWn2YrQIL4bQHC4Re4_sVM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.72.0/22
Signature Algorithm: sha256WithRSAEncryption
47:bf:d3:11:62:2d:8a:26:81:55:44:c5:37:ce:9f:72:64:fa:
40:59:40:8e:f8:ae:9a:1b:73:d9:61:dd:23:a6:91:31:af:c2:
47:b6:8d:7c:97:81:ac:f1:17:d6:48:c3:4b:31:b7:78:24:65:
40:45:5f:f6:98:1c:9c:78:2b:ee:0c:7c:cf:c1:8e:ef:07:66:
4a:34:04:c4:9d:35:87:0b:7d:8c:1a:20:bf:cb:13:9a:e0:8a:
93:cc:4a:3a:12:90:4d:16:6c:2f:ec:56:b8:db:fa:99:63:31:
8c:74:09:07:b5:2c:9b:da:bd:02:fe:12:33:36:6d:dd:85:e9:
89:0a:5f:20:73:88:a9:da:1a:1e:ca:8b:92:a5:6d:1d:c5:bd:
ea:b8:aa:0b:7a:18:ec:b9:9a:a6:15:71:ed:fc:a6:f8:fc:0e:
b4:f9:b6:65:41:7c:03:25:86:8b:fd:01:85:c3:d1:07:b6:eb:
a0:2a:fe:bc:b8:88:59:c9:03:5d:a2:d7:dd:29:e4:af:9a:43:
b0:08:36:d7:44:ba:a2:8c:8e:1b:29:b2:7a:92:0f:f5:1e:59:
b4:91:b6:b8:25:77:19:0d:1c:20:c2:7c:93:57:a2:2b:d3:77:
88:cd:52:8f:58:5d:ac:db:7c:a3:79:26:cd:42:8d:9e:09:f8:
56:17:c6:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org