Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JKl8Rar_XafN5RkK8vK9dFD5xsc.roa
File: JKl8Rar_XafN5RkK8vK9dFD5xsc.roa (raw, json)
Hash identifier: 7x3Qb5D1v9u2ehmSzjXvgjxGaaWm53YZ7IROkKD9hJU=
Subject key identifier: 24:A9:7C:45:AA:FF:5D:A7:CD:E5:19:0A:F2:F2:BD:74:50:F9:C6:C7
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0797
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JKl8Rar_XafN5RkK8vK9dFD5xsc.roa
Signing time: Tue 29 Sep 2020 09:59:44 +0000
ROA not before: Tue 29 Sep 2020 09:59:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1943 (0x797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=24A97C45AAFF5DA7CDE5190AF2F2BD7450F9C6C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8e:48:a4:4d:b9:12:0d:f4:53:4d:52:9e:77:
15:fc:00:4d:ea:c7:54:63:41:27:d5:3d:da:a4:10:
e7:6e:2a:78:c0:70:15:d2:c3:27:5c:39:9c:48:73:
24:68:00:5d:d9:7b:1a:91:b1:8f:8e:8e:b8:a4:24:
84:57:fe:ca:88:59:bd:45:d7:64:1d:b8:1f:25:a0:
50:d8:28:79:06:e0:1e:5f:3b:63:2c:a5:5a:2a:2b:
08:81:cd:8b:1c:81:15:e2:63:ed:12:f1:97:16:a4:
cc:52:62:93:fb:18:c0:40:e8:2d:75:c5:3b:2f:cb:
0d:e8:a0:64:0d:ef:32:c3:72:a8:80:51:b9:df:eb:
14:cc:39:f2:f7:3c:10:50:01:f2:5b:76:e6:ae:fc:
fa:b0:dd:02:22:3b:08:ee:c4:5f:ab:fb:27:56:4e:
59:b2:7b:b6:2c:f5:2b:2c:5d:88:14:e4:b9:83:a7:
61:0c:52:e0:da:d7:5b:5f:51:03:a0:a9:97:40:f8:
f0:27:7d:bd:90:58:83:2d:e3:5c:3f:e4:93:37:58:
39:d4:4f:42:3a:b4:32:65:65:f6:6d:40:9f:7a:b8:
45:ad:42:c3:26:0e:22:66:3a:31:23:8f:11:df:b5:
9a:83:c5:f5:94:6d:c6:a2:14:51:eb:33:04:d3:59:
9f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A9:7C:45:AA:FF:5D:A7:CD:E5:19:0A:F2:F2:BD:74:50:F9:C6:C7
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JKl8Rar_XafN5RkK8vK9dFD5xsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
90:01:a9:5e:00:b7:6d:ed:28:33:57:57:7f:6e:94:cb:62:31:
67:d9:85:c5:ed:30:39:83:66:0c:87:7d:b4:ce:38:09:3b:f9:
18:3a:9e:f4:ca:fc:75:bc:30:40:ec:75:6e:01:be:93:7f:2e:
2e:ee:15:67:a2:fb:79:52:a8:ca:90:a3:99:5b:f6:75:0d:19:
27:35:33:22:d1:ad:b2:e0:86:b4:ee:32:da:09:d7:79:20:1f:
94:57:15:6d:ad:f9:69:48:b7:f9:c3:ef:70:c4:2e:96:6d:80:
59:16:8e:95:3f:83:90:32:1e:21:f1:d5:a8:65:46:aa:d4:5d:
d8:97:69:17:13:72:55:ed:04:ee:52:63:18:cf:1b:55:62:01:
ad:fa:bd:c5:d8:3b:97:29:fc:4d:f6:32:e7:a1:56:c8:93:71:
27:c4:0e:0e:46:5b:4e:f4:b1:c6:55:86:a1:15:e1:64:87:e2:
3e:ab:25:0b:8a:00:65:c5:1b:d2:f3:7f:48:71:bf:81:52:d5:
9f:d8:f5:e4:ae:58:b1:e7:dd:f9:f3:a8:1a:10:76:c8:17:d4:
fa:bb:35:bc:96:5f:87:ac:aa:ca:32:0d:64:fa:5b:70:9a:72:
9a:dc:ac:2d:7c:4b:70:b2:3f:93:c1:22:cc:34:73:76:f3:b4:
3c:c4:3e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org