Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/9W3g5xTRqPZMf7ZOvg-6jQ-r-8w.roa
File: 9W3g5xTRqPZMf7ZOvg-6jQ-r-8w.roa (raw, json)
Hash identifier: vbP3OK4E9yXx+uVCKDNgoMl8MV9zwiNQFve68pUtKfI=
Subject key identifier: F5:6D:E0:E7:14:D1:A8:F6:4C:7F:B6:4E:BE:0F:BA:8D:0F:AB:FB:CC
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 08AA
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9W3g5xTRqPZMf7ZOvg-6jQ-r-8w.roa
Signing time: Wed 18 Nov 2020 10:20:17 +0000
ROA not before: Wed 18 Nov 2020 10:20:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 61.61.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Nov 18 10:20:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F56DE0E714D1A8F64C7FB64EBE0FBA8D0FABFBCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:ff:a2:ee:45:28:8d:2e:6b:8d:30:11:39:
81:cd:04:e1:a0:30:e9:74:dc:83:12:99:41:12:a6:
4d:fa:e1:ba:ae:58:53:4f:48:8e:09:4b:54:7a:a5:
2d:c0:e0:ee:45:7f:9a:26:f1:39:5b:2d:75:b6:f8:
79:36:fd:3a:3e:cc:b4:3d:e2:c8:fd:02:94:9e:a9:
65:31:ac:1d:4c:25:78:af:c5:44:b9:2a:70:8a:d7:
04:0d:f5:07:fc:64:90:c9:aa:15:c4:9a:3d:85:63:
10:c2:8b:08:05:51:28:a5:a1:a8:33:c7:91:6c:e2:
b6:72:60:bf:b7:25:bd:5f:e6:e2:58:78:1a:f7:39:
f8:ae:0d:ab:0c:c1:3b:2c:bc:7f:1d:1e:28:84:ee:
d1:d2:86:f1:12:63:97:9c:15:91:7e:ac:b2:7e:3c:
b1:a9:c7:65:2f:92:38:91:c0:52:6c:c8:f1:34:81:
f0:74:89:b9:95:c4:1a:be:9e:aa:78:8b:3f:1e:93:
8a:93:d1:00:f7:d4:90:79:87:e7:53:94:58:ca:65:
98:99:93:34:33:42:f0:17:26:d5:74:f6:36:df:fa:
72:2b:65:0e:fe:ed:71:96:d7:02:ef:fe:2a:ca:2b:
2e:ac:be:fa:54:c0:95:bd:cb:26:02:21:0f:3d:95:
4c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6D:E0:E7:14:D1:A8:F6:4C:7F:B6:4E:BE:0F:BA:8D:0F:AB:FB:CC
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9W3g5xTRqPZMf7ZOvg-6jQ-r-8w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/23
Signature Algorithm: sha256WithRSAEncryption
03:8e:85:1c:4b:a7:38:ca:9f:e0:0d:63:b8:49:5d:53:15:ff:
73:19:b9:70:5a:19:d3:9e:d0:d8:72:17:d7:82:dd:a1:f0:eb:
8d:d6:2f:73:f6:0e:a0:ed:df:f0:23:c5:4d:a4:97:fb:8f:19:
c7:20:61:f8:32:21:e3:55:72:8f:75:6d:d4:43:c5:cb:a6:9d:
af:95:d5:48:0f:a6:49:11:0a:dd:7f:eb:d3:62:83:93:45:58:
0e:73:af:d2:2a:d5:d2:a6:80:b8:e1:5a:32:4d:5e:61:c5:85:
08:54:6b:99:de:16:ac:4a:59:e2:d5:e5:36:62:f3:70:b7:dc:
9a:a0:e3:b8:e3:9c:b8:aa:94:1c:57:aa:9d:f6:8b:7c:12:5a:
76:74:e0:fd:10:fe:00:dd:80:a9:c1:1e:a6:a8:b2:ee:f0:fb:
83:55:21:f3:a0:4a:e3:76:4e:68:d1:d9:f9:a7:1f:47:24:64:
be:4d:0c:14:83:9f:0e:6c:ad:ca:52:aa:64:e2:32:a9:20:ec:
bd:8b:a8:9d:46:59:b8:97:26:46:0b:d6:7e:d7:81:22:c4:f9:
e8:d0:0a:34:05:ed:c5:08:5c:fc:59:4b:42:f9:fd:9d:b2:08:
4b:72:70:b8:3d:96:3b:0a:e6:76:28:75:b9:34:70:c3:ec:42:
7e:31:8c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org