Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/GAys1oRlQjA9DhiA5rKXE1dMAto.roa
File: GAys1oRlQjA9DhiA5rKXE1dMAto.roa (raw, json)
Hash identifier: cvE6UsqsxEzAfY8BhXBppMaIs1x0HPBuy9vXFk/GVLo=
Subject key identifier: 18:0C:AC:D6:84:65:42:30:3D:0E:18:80:E6:B2:97:13:57:4C:02:DA
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/GAys1oRlQjA9DhiA5rKXE1dMAto.roa
Signing time: Thu 15 Sep 2022 02:49:52 +0000
ROA not before: Thu 15 Sep 2022 02:49:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 211.78.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=180CACD6846542303D0E1880E6B29713574C02DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:ae:14:45:36:a9:2d:51:47:b5:8f:2d:05:
f5:a3:3e:ca:7f:b4:f6:8b:1b:4f:8c:aa:31:47:23:
d7:65:62:96:c4:69:00:6c:65:8c:b9:30:43:dd:47:
96:07:1d:50:85:13:7e:74:ec:28:25:5d:dd:d7:87:
f3:2d:a9:11:9e:a4:2e:ba:78:3a:bf:ff:87:01:99:
0d:ac:2c:38:43:e2:f4:61:40:a3:3f:2c:32:01:28:
7c:21:9f:a1:c5:11:f4:73:9e:5a:de:58:77:6e:3f:
da:3d:9d:4d:fb:a5:3c:47:58:40:5f:f4:a5:71:49:
b7:9a:c1:78:39:78:f0:77:af:e3:b2:d9:c7:d8:9b:
85:9c:f2:9d:bb:1c:e9:ae:ce:90:f7:e3:a4:e7:84:
e1:21:48:ca:bd:86:4f:d8:89:59:29:38:0d:01:45:
5c:a5:d2:b9:44:a9:c4:91:21:b4:80:81:a4:09:84:
d6:27:e7:f7:46:31:bd:24:05:31:d1:6e:1a:06:f7:
0e:e9:f6:18:71:ab:f3:1c:c9:f0:af:1f:2d:f1:ac:
8c:92:41:b9:93:f6:4c:d4:3b:02:87:e8:d2:55:97:
ac:de:49:74:61:d0:7a:b8:1c:cd:ef:a8:5c:9b:f5:
88:d9:0a:8f:26:33:38:0a:c6:09:64:83:7d:69:e7:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:0C:AC:D6:84:65:42:30:3D:0E:18:80:E6:B2:97:13:57:4C:02:DA
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/GAys1oRlQjA9DhiA5rKXE1dMAto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.32.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:ca:6e:91:ce:5d:c6:12:7b:45:7a:aa:b3:fe:b7:c5:53:7f:
be:1a:95:d3:1f:6c:17:46:11:f2:15:64:44:b6:b0:f6:8d:be:
32:71:94:fe:50:f2:5c:0b:17:64:db:7e:89:30:9e:75:07:68:
04:65:b3:ec:a4:e8:f7:41:c0:c1:31:a6:50:23:d2:63:0c:80:
9a:fc:30:73:47:01:e7:bf:2f:6e:45:eb:6a:65:3e:3d:8a:99:
be:c0:e5:87:fe:82:9b:e0:b8:27:4e:9c:de:ac:1d:4f:85:98:
c6:33:65:f4:6b:b1:c7:01:5d:38:5e:79:5c:03:d1:42:93:f6:
f5:4a:fe:e4:28:a0:ad:37:a2:ad:e0:a9:c8:ba:27:55:53:65:
cf:3c:45:56:86:a3:7a:ae:34:0e:74:87:d5:82:7a:a8:17:db:
13:e5:d7:5b:4a:1e:b4:94:58:45:87:1e:bc:45:c6:7f:a2:fd:
2e:3f:70:03:fa:d2:fe:a0:e3:82:78:38:cb:c0:25:4f:cb:f6:
5c:44:8f:eb:36:c2:48:d3:8d:0f:aa:26:d4:8f:e4:9b:91:0c:
17:e0:e8:f4:56:31:f4:ab:a9:c6:c2:89:7a:27:24:f5:4f:b3:
ea:69:1a:14:46:6c:bf:98:e4:2f:0d:7f:d8:ec:51:ce:96:f5:
39:19:ff:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org