Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/J7qxRoJ2V4MyBytpRBd-tRU9oz0.roa
File: J7qxRoJ2V4MyBytpRBd-tRU9oz0.roa (raw, json)
Hash identifier: F1FGaDgerj+eOTA6YeznnXXf6n4l/xXIWtLflGKirq8=
Subject key identifier: 27:BA:B1:46:82:76:57:83:32:07:2B:69:44:17:7E:B5:15:3D:A3:3D
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 079B
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/J7qxRoJ2V4MyBytpRBd-tRU9oz0.roa
Signing time: Tue 29 Sep 2020 09:59:45 +0000
ROA not before: Tue 29 Sep 2020 09:59:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9918
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1947 (0x79b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=27BAB1468276578332072B6944177EB5153DA33D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:56:5f:79:da:48:9b:41:3f:bb:4b:3c:6b:77:
9e:13:e3:b7:23:97:7b:2a:ad:36:f3:50:72:63:72:
41:e4:1b:35:2d:93:41:db:8b:06:f2:3c:0e:85:70:
b1:7f:2b:3d:18:d2:90:07:35:cf:d1:7b:b3:ca:7b:
18:46:0d:7f:66:05:1a:a3:65:b6:2a:5a:69:e6:c4:
77:cf:fb:f1:90:f7:7e:b6:52:79:cf:e8:bb:79:d4:
0c:62:13:95:51:bf:ae:a6:4c:a2:f1:da:16:5d:fd:
fb:f6:81:57:e7:d9:c4:87:5c:cb:9b:64:2d:62:4a:
f1:df:0e:9f:f1:65:94:c0:71:67:af:2f:7e:9f:86:
f7:dd:37:3f:be:47:1c:0e:2b:e2:ce:49:84:6b:34:
ab:22:b4:aa:6e:36:3e:85:b2:fe:e9:97:1d:39:5f:
16:b2:c1:a5:34:66:3c:74:9c:15:4b:a3:4b:ad:34:
9d:b6:3f:73:e3:ad:ff:ab:39:48:4b:a8:76:d0:97:
fc:5f:ad:97:92:b5:a1:9c:42:de:ae:55:66:6e:b6:
47:a2:b8:09:a4:2d:af:12:95:8b:6d:dc:90:b2:fc:
82:2a:80:6c:27:50:f4:ac:c0:eb:e9:40:2d:bc:b2:
a8:7d:42:a2:43:16:36:46:44:0c:6b:80:cc:26:27:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BA:B1:46:82:76:57:83:32:07:2B:69:44:17:7E:B5:15:3D:A3:3D
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/J7qxRoJ2V4MyBytpRBd-tRU9oz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
04:51:c4:53:11:7d:2d:03:ed:15:bc:42:3f:b6:00:20:14:e8:
91:2c:4c:37:83:8e:20:94:d6:0a:4b:52:25:5e:e2:ad:0d:1c:
5f:83:7b:5a:0d:8e:f3:67:3d:df:4e:f8:0c:69:cd:1f:74:cc:
0a:7a:e2:3e:20:6d:28:31:92:58:bc:c0:fe:6e:a3:5c:02:22:
bb:c3:42:50:eb:99:c7:31:9c:f8:32:87:0e:59:52:d4:ca:f8:
f2:55:f7:c8:63:e4:f6:70:59:5a:3f:10:b1:5d:23:48:44:89:
58:22:60:ba:47:93:d6:47:ca:35:49:ac:fa:ae:c1:91:78:96:
af:f0:01:9c:56:ec:2d:88:cc:e7:59:e5:f3:e2:7b:32:d9:da:
9f:db:fe:8a:8b:c6:33:d6:2d:15:a9:06:c6:69:6f:5d:d1:a1:
3f:74:e6:62:ce:80:30:3d:a0:6e:39:af:fb:38:8d:61:2c:31:
0f:82:e7:4d:4f:82:e8:40:3a:4a:7d:3b:1f:72:c4:e8:07:c3:
d6:63:df:1d:37:4a:ec:a5:b4:de:06:ea:48:ef:07:43:88:ff:
1e:95:ec:b3:00:70:5e:2c:10:fc:a7:ea:75:11:80:72:5a:31:
b4:21:4a:88:f2:20:9d:6c:85:11:5f:6a:5a:a3:8d:68:96:83:
d3:95:a7:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org