Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Jq3IKotcKfOzxkSk1hyjXvtRXEY.roa
File: Jq3IKotcKfOzxkSk1hyjXvtRXEY.roa (raw, json)
Hash identifier: b1l02X2PQBHb/SaVzXV3ib4aMdZpN1MXUHtoBs2Y1jY=
Subject key identifier: 26:AD:C8:2A:8B:5C:29:F3:B3:C6:44:A4:D6:1C:A3:5E:FB:51:5C:46
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0914
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Jq3IKotcKfOzxkSk1hyjXvtRXEY.roa
Signing time: Sun 07 Feb 2021 11:42:37 +0000
ROA not before: Sun 07 Feb 2021 11:42:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.61.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2324 (0x914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=26ADC82A8B5C29F3B3C644A4D61CA35EFB515C46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:3b:5d:3c:2a:4c:28:c5:01:4c:1c:6f:7e:
10:ba:88:91:1f:80:f0:32:7b:8d:d0:c6:48:c7:1d:
55:26:fb:9f:5c:3a:8e:d5:91:e1:e8:ac:46:f8:5c:
e6:cb:2a:fd:0e:49:bf:5c:48:3f:60:08:4a:05:d4:
ba:12:9a:db:5c:d2:12:97:c8:9f:a1:99:a4:18:01:
71:44:0f:fa:a4:13:89:87:68:3d:b1:6c:5c:7a:51:
cd:2d:3d:30:12:c1:bb:4d:e4:70:3c:d3:01:be:a4:
a5:70:ee:26:13:38:34:33:3e:8c:6e:41:80:7b:12:
af:ed:03:5c:d3:e3:b4:f2:8d:96:36:8e:e3:56:1d:
b4:12:78:eb:fd:58:bb:c1:bc:10:a7:f3:b2:e1:45:
74:4c:13:74:75:9e:97:94:75:89:37:d7:e4:a6:a8:
7b:c7:58:0f:f6:2e:e7:0d:a5:92:a2:e4:2e:51:39:
c7:f6:79:b6:a6:a3:d5:48:e0:6a:2e:51:09:a5:84:
c7:07:21:62:77:48:e8:df:ad:7e:8b:0c:04:d8:fc:
49:fe:a0:ba:20:94:5c:19:7f:ee:32:90:89:c0:86:
39:fd:2b:34:0a:bb:4c:4f:62:59:99:fe:d6:28:17:
0d:e9:5b:8d:0a:44:2e:a0:b8:a5:a1:d8:f9:43:ec:
0d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AD:C8:2A:8B:5C:29:F3:B3:C6:44:A4:D6:1C:A3:5E:FB:51:5C:46
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Jq3IKotcKfOzxkSk1hyjXvtRXEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.8.0/21
Signature Algorithm: sha256WithRSAEncryption
16:7b:45:f6:33:e2:b1:8e:f1:cc:65:48:6b:25:e9:1d:5c:f1:
5f:0c:35:ce:20:54:12:66:de:b0:94:a1:6b:0a:e9:02:e9:7c:
4f:20:83:5b:b8:7c:f4:19:9e:c6:07:79:89:43:6b:6d:da:27:
46:5e:50:0c:d3:4f:29:4f:05:b8:ab:74:3a:cb:2b:73:10:dd:
7c:33:e6:24:4e:37:76:eb:2d:b8:36:24:e2:fd:b5:ec:8e:a2:
ad:81:9d:11:22:34:17:9e:a4:83:b2:b9:bc:f9:fb:ae:25:ef:
cb:47:07:d9:40:a5:ce:7d:f3:98:24:9b:e3:49:99:d6:00:e0:
fb:26:c4:cf:fb:e2:56:d8:48:da:04:46:ab:c6:45:c9:16:dd:
88:d7:c7:ef:1d:78:9c:1f:07:60:29:2f:48:09:da:29:d4:e6:
f2:9e:bb:cb:4b:97:43:dc:7e:7f:ac:4b:50:69:79:31:14:50:
ac:60:79:8f:fd:29:e1:56:f2:d6:c2:84:1a:c3:f8:3c:03:0d:
66:68:5a:f9:fe:7d:92:1c:16:e1:9e:92:49:ac:a2:8b:81:39:
c1:d7:21:81:a8:d0:1e:df:ec:8d:20:99:7a:45:85:cf:8e:b6:
f3:cc:fb:fe:62:39:02:cd:b4:b9:9e:40:a2:01:7d:6e:b1:03:
4b:f9:ac:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org