Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/C_cVH8kCH9_nbsF_yNVos820iDU.roa
File: C_cVH8kCH9_nbsF_yNVos820iDU.roa (raw, json)
Hash identifier: fmvM7FSzqWBar83QLmscEIAoOr92tO+Hq2p1nWj6psE=
Subject key identifier: 0B:F7:15:1F:C9:02:1F:DF:E7:6E:C1:7F:C8:D5:68:B3:CD:B4:88:35
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0906
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/C_cVH8kCH9_nbsF_yNVos820iDU.roa
Signing time: Sun 07 Feb 2021 06:50:21 +0000
ROA not before: Sun 07 Feb 2021 06:50:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:50:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0BF7151FC9021FDFE76EC17FC8D568B3CDB48835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:26:05:a3:ec:01:79:3f:1d:e1:a9:05:9c:30:
91:85:69:07:13:ea:9e:dd:2b:15:13:d8:36:77:a8:
19:51:40:58:f0:53:9f:69:43:3c:fb:36:a5:c9:60:
91:3a:d6:cf:6e:9c:ab:e2:e4:15:c6:ee:53:4f:bc:
5b:7e:4c:bb:9b:77:60:06:31:d8:d2:19:a4:8d:e9:
b9:67:4b:90:49:11:2f:54:df:ae:cd:b3:3a:a8:7c:
a9:07:61:3c:fe:d6:48:13:54:e0:ec:42:59:52:b0:
fe:85:9c:fe:60:40:da:55:a7:ac:4e:30:fa:94:24:
e4:e2:58:e0:9d:c3:9e:50:9a:cc:da:63:06:cd:37:
65:4f:5f:68:a1:42:a2:69:9c:2d:4d:dd:bb:70:ce:
22:ab:4c:9d:20:a3:52:87:bb:1c:e0:13:5a:95:a4:
94:8d:12:f4:a8:6b:70:ed:e6:b8:d9:e9:92:a5:74:
5c:ca:1f:e0:2c:64:66:67:79:dd:b7:a7:6d:93:bd:
83:70:f0:51:bc:82:bc:d2:d8:57:24:12:62:32:a0:
e8:01:54:65:ba:07:6b:26:8e:91:ae:37:b6:25:f2:
62:41:34:e1:88:b1:b7:18:76:90:f9:a0:1e:2c:b8:
a2:b4:65:5d:9e:b1:38:ef:b4:17:9a:03:e1:11:4c:
14:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F7:15:1F:C9:02:1F:DF:E7:6E:C1:7F:C8:D5:68:B3:CD:B4:88:35
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/C_cVH8kCH9_nbsF_yNVos820iDU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
03:bd:27:70:42:fc:3a:26:fc:d2:6a:4b:1b:d1:58:7f:e9:ff:
b6:bd:17:05:3d:23:14:8c:30:42:cb:bc:76:77:33:68:23:ff:
53:22:2f:4f:e0:09:ef:07:94:20:fc:4d:f6:9b:6b:8b:a2:6e:
0c:cb:f3:40:d0:fe:14:ef:af:4a:ec:92:3d:07:62:8b:4a:18:
70:90:ca:c4:62:af:41:96:6b:19:99:16:f8:ca:70:df:c1:c2:
45:13:83:40:c5:c4:32:fa:a6:6c:0a:6a:74:25:4f:be:2e:fd:
0e:96:ec:fd:8e:e0:17:94:c6:9c:b4:df:9d:ca:92:bf:02:a0:
61:84:88:65:ea:43:f0:76:bf:a5:ee:56:6e:5f:c5:fd:c9:57:
0d:e7:6c:e9:95:3f:1e:5d:e8:ab:78:6a:7c:17:4c:a5:35:36:
7c:39:74:43:a1:5f:3b:91:f7:db:92:4d:de:49:61:d8:3d:01:
e9:13:12:b8:47:dc:96:05:ea:7b:6d:ee:94:e5:d9:e9:a2:59:
30:1b:7b:e2:ff:e5:ac:cc:dd:d2:3d:2d:29:8a:13:56:29:38:
18:8d:7f:e9:49:69:7f:91:77:e5:c5:b1:cf:fe:52:9e:5d:40:
7a:ed:86:2b:bd:8b:21:a0:46:c0:69:e6:71:bb:c1:2f:01:6b:
da:b9:0f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org