Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/BbmOht59EB_GAUV04Ujx4fLYxAg.roa
File: BbmOht59EB_GAUV04Ujx4fLYxAg.roa (raw, json)
Hash identifier: 8EaCczhFbLQ7Chn2JcsyRIC3IX0/+oSagiHYy1RBtnY=
Subject key identifier: 05:B9:8E:86:DE:7D:10:1F:C6:01:45:74:E1:48:F1:E1:F2:D8:C4:08
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AAA
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/BbmOht59EB_GAUV04Ujx4fLYxAg.roa
Signing time: Thu 23 Jun 2022 05:43:31 +0000
ROA not before: Thu 23 Jun 2022 05:43:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 61.61.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2730 (0xaaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jun 23 05:43:31 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=05B98E86DE7D101FC6014574E148F1E1F2D8C408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:26:72:44:d9:94:a6:f4:cc:42:7f:93:67:
ad:1e:c9:64:e9:34:62:9f:d1:94:48:a6:84:24:b7:
82:e2:d2:de:0f:e7:ae:cd:20:e3:17:9d:57:e8:b8:
e2:2a:d9:b0:a6:e1:12:d9:3a:3c:ac:95:cc:2e:64:
77:19:92:c8:1d:3d:c6:02:6b:bd:54:50:44:77:fb:
c3:29:56:db:52:9e:64:d8:86:87:96:5a:32:24:42:
43:52:d7:ee:1e:ab:70:a9:6c:d1:b1:7c:fd:ac:0c:
41:0f:46:a3:bd:c4:cc:f4:c2:5b:e2:34:90:27:68:
b3:4e:38:c9:b2:03:6a:09:58:c7:b1:cd:62:90:cd:
12:a4:f7:2d:61:4e:a4:24:63:ac:bc:e6:84:35:48:
c8:4d:b6:12:e7:6e:d2:25:0c:9a:ae:04:f3:82:5d:
59:4f:9f:fb:26:18:d9:f2:09:91:91:a9:c8:26:4b:
14:90:bf:05:a4:e7:c9:b6:8c:52:a1:03:40:26:ab:
67:b4:09:30:77:2c:ec:63:aa:7d:ed:da:23:e1:d3:
e2:ca:c4:f3:8c:db:41:bc:d3:04:07:e1:a6:65:2a:
36:48:d1:24:5e:ed:2c:21:97:47:6e:25:81:90:f3:
f1:1b:4f:91:b9:73:36:76:6d:3f:53:9f:55:7a:19:
f4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B9:8E:86:DE:7D:10:1F:C6:01:45:74:E1:48:F1:E1:F2:D8:C4:08
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/BbmOht59EB_GAUV04Ujx4fLYxAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.36.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:f4:94:c5:69:a9:1b:94:1f:1e:aa:29:18:08:92:dd:52:80:
b3:a5:26:9d:fb:c9:8f:fa:19:31:f1:07:f3:39:e6:91:ac:1d:
9c:ba:7b:6d:bf:75:d4:c5:84:e1:68:1c:22:d6:fb:58:ab:10:
27:b3:2a:23:69:c9:99:8d:33:da:d0:f4:47:d2:b0:3e:de:b9:
a5:fe:4f:59:f4:5e:4a:e1:68:4f:3f:4c:5c:3e:3a:a7:c1:0e:
5c:e0:a2:da:89:47:9f:27:ea:dd:1f:f7:9c:54:9a:30:18:42:
a8:8d:c6:7c:fb:72:1b:5e:7a:2c:8e:8b:ad:a8:1b:a1:a0:ed:
e8:4b:35:02:f2:a6:9b:5a:3d:67:dc:1e:94:ba:dd:3f:f7:00:
4a:46:97:a7:8e:26:a7:d2:cc:23:36:53:62:c9:ea:72:09:0a:
45:85:c8:e9:4d:f7:a1:42:88:1e:33:61:18:19:ac:69:6d:3c:
5e:17:f9:18:c0:2e:bc:f2:d7:f8:45:4b:d7:dd:b8:8f:32:a8:
11:f5:3f:e9:c6:93:fb:4f:b4:ed:4b:b0:c6:ab:1e:39:72:85:
d9:03:48:b8:96:c9:e6:4f:ec:a9:ed:c5:f1:9e:8b:77:de:22:
04:83:d8:be:90:b2:c1:6f:b7:7f:b6:a9:82:c8:30:15:09:fd:
9d:c0:da:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org