Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JSkXW1SC0EwygqAS2ivYfIZECE4.roa
File: JSkXW1SC0EwygqAS2ivYfIZECE4.roa (raw, json)
Hash identifier: nf4GgutCnAqfmlka/YiHE1EUPauuBuvYuolSF59Miio=
Subject key identifier: 25:29:17:5B:54:82:D0:4C:32:82:A0:12:DA:2B:D8:7C:86:44:08:4E
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 07A7
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JSkXW1SC0EwygqAS2ivYfIZECE4.roa
Signing time: Tue 29 Sep 2020 09:59:48 +0000
ROA not before: Tue 29 Sep 2020 09:59:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1959 (0x7a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2529175B5482D04C3282A012DA2BD87C8644084E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:20:c7:43:f9:04:01:35:a1:ac:59:ee:53:c2:
d7:3a:11:54:b2:48:11:1c:7d:43:6c:a1:79:22:96:
54:27:c4:85:2b:35:46:09:23:de:28:1c:51:d6:7a:
23:73:50:a2:9b:08:60:44:79:77:d2:21:2f:38:10:
62:fb:9a:ec:b6:c2:b5:f8:c6:20:8e:d7:6a:24:72:
d5:83:f0:36:d3:53:d4:d4:0f:35:4a:a2:94:73:bc:
3f:f8:1a:68:c4:c5:34:2b:78:46:2a:0d:0d:66:88:
09:82:74:da:a2:bb:f2:e0:08:f6:4a:22:20:e1:c2:
e0:7e:d6:c1:be:20:03:51:c2:eb:6f:fa:99:14:2b:
9a:4e:5d:b9:6a:55:bf:23:9a:1b:02:05:8b:1d:97:
55:0c:5b:67:8f:5e:eb:5d:2b:5a:f6:86:00:bb:c4:
61:aa:c0:db:14:ab:d5:ac:eb:dd:49:80:29:f3:bd:
d3:39:c3:f7:90:ae:ac:b2:9f:26:24:61:79:03:17:
ce:e7:42:6b:e0:f2:2d:60:33:8f:5a:e4:08:0f:63:
20:42:46:e0:cd:eb:ba:09:3e:7a:56:70:4e:78:99:
5d:7b:b6:c5:55:64:9d:70:1d:b5:c6:99:92:1f:80:
fe:78:a0:58:27:1c:77:20:ab:9c:f5:7d:a7:fa:4b:
75:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:29:17:5B:54:82:D0:4C:32:82:A0:12:DA:2B:D8:7C:86:44:08:4E
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JSkXW1SC0EwygqAS2ivYfIZECE4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.96.0/19
Signature Algorithm: sha256WithRSAEncryption
31:af:94:bd:fd:4f:a9:66:91:b2:c5:94:a8:e9:1a:9b:cf:04:
3a:45:99:27:5b:2f:96:56:b0:a6:43:e9:05:b7:d1:8a:e8:25:
b3:05:77:96:33:86:55:15:0b:5d:d7:62:0f:b3:b4:ae:ab:18:
0c:6e:23:61:1f:27:20:6d:d1:7c:29:20:e3:f4:4d:30:42:5b:
72:e0:f1:70:96:20:fb:6f:b7:1b:92:3f:7c:ab:42:ce:05:27:
d2:e4:cd:d8:6c:1c:f1:16:a8:21:90:2b:a1:78:59:62:3e:15:
b0:f3:49:c6:0b:f7:56:54:b5:2c:d5:31:35:48:3d:ad:8f:9a:
1b:01:0c:8a:2b:8b:14:8e:3b:54:73:aa:28:ad:52:17:39:e5:
b7:f0:49:fe:e6:22:b3:a1:10:51:ff:6f:48:be:9f:85:96:45:
85:60:6d:8c:36:e5:a9:4b:e6:a5:3b:1b:2d:8a:fd:85:85:79:
7a:69:ae:37:00:f3:ed:4a:d9:76:ec:10:7c:77:f6:7b:cc:8c:
cb:24:ec:27:5d:cd:ac:88:26:4c:48:1a:e7:3b:2b:58:32:fb:
b1:76:39:5a:fd:6e:18:78:cd:c9:07:df:ed:69:25:cf:00:7c:
bd:08:25:32:5c:8f:22:fa:88:85:73:98:34:d5:a0:ff:54:65:
cf:e4:13:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org