Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Fker6Vd9DQlNjERn8DORqrdd0es.roa
File: Fker6Vd9DQlNjERn8DORqrdd0es.roa (raw, json)
Hash identifier: 3lsVYyNGnxxrgcKu8zBgA9R0sDPDXg5TDfidLAyL4t4=
Subject key identifier: 16:47:AB:E9:57:7D:0D:09:4D:8C:44:67:F0:33:91:AA:B7:5D:D1:EB
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0920
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Fker6Vd9DQlNjERn8DORqrdd0es.roa
Signing time: Sun 07 Feb 2021 11:42:44 +0000
ROA not before: Sun 07 Feb 2021 11:42:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2336 (0x920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1647ABE9577D0D094D8C4467F03391AAB75DD1EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:46:98:e2:03:96:e5:57:ca:77:a0:5b:5d:7c:
55:31:7a:6b:9f:39:4d:e1:5c:d0:d9:d8:59:19:4d:
4f:73:75:10:ec:69:27:3a:30:2d:8a:f4:39:64:97:
f4:81:c7:fb:03:d1:40:c7:8e:66:49:e4:a8:9f:a1:
ab:9a:3c:bc:36:17:02:d3:3a:50:0d:c7:5c:97:30:
b0:b9:78:19:44:75:32:03:af:56:e4:d4:bc:c9:74:
3d:ce:b2:e9:01:f3:d2:be:80:2e:aa:e8:f4:92:75:
de:c3:55:77:ce:5a:5c:e1:df:3d:6e:d9:cb:25:a9:
72:db:e7:70:51:76:ad:18:81:06:78:4f:ae:03:8b:
7a:8d:5b:81:b7:f8:e7:77:62:bd:3b:20:c3:d3:78:
fd:23:82:39:5d:de:cb:2b:23:b1:ad:90:bb:bd:35:
59:b3:e1:25:99:49:c3:70:4b:0f:aa:cf:cd:1f:04:
57:16:d2:f2:bd:3f:a2:ef:7d:0d:e7:22:14:f0:bf:
ea:59:53:7e:21:6d:54:6e:c4:55:59:a1:b4:09:d0:
75:1d:dc:88:b3:bc:d2:6d:fb:f5:f2:43:59:50:ea:
6c:a3:63:0e:60:4f:1c:3c:a2:fe:56:aa:08:d1:01:
1e:0b:6e:0e:b4:67:5d:2a:53:c2:63:6e:a3:3a:91:
1d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:47:AB:E9:57:7D:0D:09:4D:8C:44:67:F0:33:91:AA:B7:5D:D1:EB
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Fker6Vd9DQlNjERn8DORqrdd0es.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c3:6a:76:c1:e7:b6:0b:6a:ab:83:5e:43:89:06:2e:8f:2b:
63:2b:05:da:95:28:26:07:bc:c2:9e:40:44:4a:b9:64:a0:c3:
40:97:d3:a5:eb:2f:9d:80:37:17:c6:e6:b7:bf:13:c0:dd:eb:
a8:80:23:aa:e0:fd:78:c7:37:e3:02:84:4b:7c:00:5d:4b:a4:
2d:7e:e0:94:b0:47:d5:c6:99:97:ac:42:2c:d3:c1:15:98:59:
66:57:bf:e3:0e:bf:33:d2:91:1e:8c:50:56:5d:9c:34:d7:94:
d5:cd:26:15:06:a6:d0:85:dc:7a:41:fc:b7:e5:62:cf:36:ad:
1b:e3:ba:7a:6f:2d:d1:82:ce:4b:f8:b3:fc:26:12:fe:90:f0:
a4:c8:46:72:ac:3e:97:6e:30:70:e3:44:85:8f:d6:d0:8e:0d:
db:c0:72:fb:9d:b0:cf:57:fa:51:9f:8c:a5:8a:17:75:b2:94:
98:7d:74:2c:2e:ee:0e:43:d4:6f:50:af:a4:5b:03:09:be:ab:
8f:27:fe:73:aa:9c:99:f8:2b:8e:d2:67:b8:83:12:36:d0:ee:
33:a6:96:bf:36:fb:58:a8:2d:fe:3e:4c:7e:37:ae:b9:12:38:
3a:95:36:65:50:27:fd:d1:49:9f:ee:6c:1c:3b:6f:b3:47:04:
14:03:cb:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org