Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/A4jSWzjQd0FGJdpsx8MnUYavRkw.roa
File: A4jSWzjQd0FGJdpsx8MnUYavRkw.roa (raw, json)
Hash identifier: T3VdE27pKGb+B1VcLi2k86hahHqQBfjSf4PBRc8AZfs=
Subject key identifier: 03:88:D2:5B:38:D0:77:41:46:25:DA:6C:C7:C3:27:51:86:AF:46:4C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 079A
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/A4jSWzjQd0FGJdpsx8MnUYavRkw.roa
Signing time: Tue 29 Sep 2020 09:59:45 +0000
ROA not before: Tue 29 Sep 2020 09:59:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 61.61.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1946 (0x79a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0388D25B38D077414625DA6CC7C3275186AF464C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:79:bc:93:88:a2:e6:a7:8b:1b:4e:dc:f7:73:
21:64:b8:54:f0:44:37:79:fb:0d:2a:80:11:b8:3b:
18:74:2e:e2:5f:c1:e9:96:43:99:d2:ee:74:74:ed:
59:09:e2:fc:26:8a:53:ee:92:1c:56:fd:b2:cd:89:
70:a9:d6:66:99:78:22:16:82:7b:ba:dc:38:f7:a3:
7d:fc:dc:9f:76:36:cf:35:ca:db:b0:30:50:fd:fe:
bf:96:f1:f1:9e:43:8d:73:bc:a6:e4:23:7a:3f:ea:
14:71:49:8a:f9:d3:9d:fc:53:98:11:5b:51:4b:7c:
24:c0:f5:cf:7c:9e:60:7e:0a:3e:a7:04:28:cd:78:
ca:c8:58:93:65:ed:4e:82:9b:33:b5:9b:ad:c6:d3:
1e:68:4f:54:1b:8a:70:61:3b:84:d0:79:5b:ed:80:
93:63:7f:c2:45:0f:cc:fd:fa:6b:51:1a:a7:4a:4b:
51:bb:d2:93:56:36:a8:59:e2:be:99:dd:5d:a1:1a:
08:20:b9:60:f6:e0:7b:46:73:cc:42:0c:93:0e:fd:
2f:59:49:61:f2:1c:41:09:b5:e3:1f:5e:ba:fc:ae:
a7:13:b1:92:aa:f1:32:d7:31:aa:0e:fd:0e:9a:e8:
bc:2b:c3:05:48:15:b5:c4:34:dd:0a:3b:f1:e8:61:
09:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:88:D2:5B:38:D0:77:41:46:25:DA:6C:C7:C3:27:51:86:AF:46:4C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/A4jSWzjQd0FGJdpsx8MnUYavRkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.76.0/22
Signature Algorithm: sha256WithRSAEncryption
29:07:8a:bb:73:a3:25:53:5e:f3:b4:1d:97:df:af:17:4b:82:
04:90:ea:49:66:57:7d:bf:aa:fb:16:17:f0:4b:f4:e3:ed:28:
0c:be:0a:2f:68:d7:e9:d3:da:ce:e6:98:36:f7:58:b0:63:2c:
67:cb:ea:fb:d5:51:fd:c8:0a:2b:1a:62:05:a2:42:2f:4d:ba:
f4:53:f6:ba:b6:45:64:e1:d2:5c:fa:1e:46:41:29:09:a3:f8:
da:53:5e:e2:b0:7c:9b:a3:5e:de:2c:fe:2d:c5:e2:33:b4:e7:
db:65:e7:90:f7:7b:23:17:10:8f:ba:ae:1a:2f:0f:fa:dc:e8:
d2:a7:7b:71:fb:1a:20:17:91:25:7d:ec:cb:7e:ff:15:70:54:
1a:d1:10:5f:ed:07:1c:db:da:49:e2:5d:36:20:96:3a:46:8e:
b7:20:77:b0:fb:79:b9:ea:19:f6:f1:b0:9d:95:b2:a9:7f:4c:
33:79:11:d0:31:77:db:1d:d9:df:87:26:49:3f:dd:8d:f8:85:
e2:ec:93:4d:23:89:5c:5f:32:af:12:a0:ed:60:a6:aa:72:db:
ba:6d:39:9d:83:92:56:ae:47:18:7b:c7:43:f9:3b:70:d9:97:
03:e7:f2:74:72:cb:11:54:90:e8:81:46:89:c9:50:18:09:ca:
24:37:a5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org