Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/7ksqqQqPjDKvC73ahM2LamKxwT0.roa
File: 7ksqqQqPjDKvC73ahM2LamKxwT0.roa (raw, json)
Hash identifier: tVLP+661RTJQI2yEa1WdWh2NKdfjgZp7GgDTtog9dL8=
Subject key identifier: EE:4B:2A:A9:0A:8F:8C:32:AF:0B:BD:DA:84:CD:8B:6A:62:B1:C1:3D
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AA6
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/7ksqqQqPjDKvC73ahM2LamKxwT0.roa
Signing time: Thu 23 Jun 2022 05:39:29 +0000
ROA not before: Thu 23 Jun 2022 05:39:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 61.61.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2726 (0xaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jun 23 05:39:29 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE4B2AA90A8F8C32AF0BBDDA84CD8B6A62B1C13D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:bc:42:94:1c:69:53:53:46:b9:75:0d:43:57:
a0:37:ff:99:99:f4:75:f7:73:1a:b9:99:ea:46:e2:
bf:2b:fb:e4:0a:84:e8:18:8d:11:82:7c:f8:12:77:
be:57:dc:76:9a:66:2d:ea:e9:8c:d9:9d:1d:05:a9:
ba:09:90:a8:26:d8:09:c2:11:81:02:4c:1a:23:9a:
c0:3b:e3:23:7f:dd:39:1c:f1:c1:61:93:b6:7b:82:
e0:22:82:13:2a:a7:25:1e:5b:d6:05:5a:ed:ef:9e:
fe:52:8a:83:4d:6d:a2:f3:30:8b:d3:6b:49:01:d1:
d6:f8:28:3e:b4:c9:32:80:fb:51:0b:b4:c7:1c:66:
30:7a:a3:38:bd:91:ad:8d:1f:d5:fa:01:72:6b:b2:
61:75:c6:06:aa:c6:83:93:6a:c1:59:b2:b9:9e:a8:
8a:f7:1c:f5:98:9f:5f:da:60:00:cb:36:83:80:5b:
ed:13:69:9b:ec:cd:8f:28:e2:ed:c7:26:80:ef:6b:
85:67:4a:92:75:12:98:52:2d:06:3a:49:45:39:cd:
37:a6:e5:11:fd:1f:e0:be:3b:ab:10:d1:9b:ed:da:
b9:17:90:3b:6b:31:0a:9b:a5:4c:39:31:e4:e7:52:
8d:22:34:e1:4e:41:bd:a5:a8:94:d4:01:bc:64:4c:
f2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4B:2A:A9:0A:8F:8C:32:AF:0B:BD:DA:84:CD:8B:6A:62:B1:C1:3D
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/7ksqqQqPjDKvC73ahM2LamKxwT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.52.0/22
Signature Algorithm: sha256WithRSAEncryption
37:77:14:21:a4:b8:9e:ee:02:85:9c:8a:7f:22:72:e7:1a:06:
a4:d7:9d:fd:13:3d:52:f4:9e:db:e7:71:f6:f8:7b:00:5a:e5:
a6:5b:31:83:fc:49:61:61:1d:e8:2a:d1:ea:5e:50:99:71:a0:
d0:e8:1b:cc:0f:5c:e9:a3:e8:b7:f9:ea:f2:b4:f1:84:49:18:
7f:fd:1b:b8:7c:08:63:1c:d5:21:6f:0e:0b:29:0e:42:cd:1b:
32:b6:3b:02:4b:6b:2f:1c:33:a5:8f:93:e6:6d:b4:93:3e:f5:
0d:6d:e3:ea:2c:f6:e4:43:15:b3:15:79:8b:8c:2e:3c:31:53:
ce:3a:0a:1c:d2:bc:33:dd:8c:81:01:a2:22:79:e0:01:f6:f9:
2a:8b:23:64:02:a9:af:83:20:af:61:93:af:2f:96:aa:d6:ac:
5f:03:8d:ba:7b:22:42:09:cb:ca:6c:76:4d:3c:63:5d:72:b2:
5f:63:ed:5c:df:7f:ff:fb:9d:e6:15:8d:23:0b:28:53:f9:5c:
ea:d6:a4:13:a5:e5:7c:67:fe:73:76:16:59:99:ce:32:3b:f4:
c2:7e:ca:cd:ce:69:1b:4e:6e:65:82:fb:71:53:9f:ca:f5:57:
77:b9:43:f3:20:bd:25:48:9b:ca:fc:14:01:86:2b:17:c5:59:
e3:db:7c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org