Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Ka8CFN7jX3PxTC8VWzdiG8-PevE.roa
File: Ka8CFN7jX3PxTC8VWzdiG8-PevE.roa (raw, json)
Hash identifier: k4OMbxHO/vsyaMLF7LErXM33CptnnreosZEyEjEJ83Q=
Subject key identifier: 29:AF:02:14:DE:E3:5F:73:F1:4C:2F:15:5B:37:62:1B:CF:8F:7A:F1
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09D6
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Ka8CFN7jX3PxTC8VWzdiG8-PevE.roa
Signing time: Wed 29 Sep 2021 02:52:16 +0000
ROA not before: Wed 29 Sep 2021 02:52:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2518 (0x9d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=29AF0214DEE35F73F14C2F155B37621BCF8F7AF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:bd:af:fd:c8:5e:ad:27:c6:e6:39:0c:e2:03:
72:31:19:ae:68:b5:89:1f:88:d4:2b:17:a0:d9:7a:
ed:08:5e:f2:6e:ec:1b:25:9e:28:19:c9:30:ad:7e:
15:ec:56:31:34:37:7e:aa:30:37:ad:bd:07:7a:ae:
8e:6d:1c:13:4c:00:ea:1e:6d:1d:68:e3:58:f0:23:
b6:7e:ea:46:7c:92:2a:4a:f1:c7:18:bc:11:82:43:
2c:56:bf:75:bd:d3:f8:c9:95:64:41:20:f1:48:53:
00:d3:11:a9:8d:8b:96:0a:66:7d:60:8b:84:9b:c1:
35:0b:43:f0:a2:6a:20:13:63:fe:cd:83:db:e8:17:
56:fb:a2:85:0e:0b:24:7b:e8:e6:84:09:c2:20:ca:
cb:a6:b0:35:23:40:91:19:7b:ce:09:6c:3d:f4:03:
17:e1:75:77:98:1a:40:a8:3c:d3:11:61:15:b2:5d:
65:a1:03:a0:90:58:92:d7:20:47:96:9b:eb:88:55:
cd:35:15:d3:69:e5:07:4f:15:9e:a0:0e:29:8d:6f:
b2:00:81:62:db:10:2f:f5:6f:65:4f:af:0d:0c:cb:
5a:51:22:69:35:a4:f1:61:9b:3b:52:da:b1:4b:6a:
5d:79:c1:8e:84:26:e2:8b:68:2b:86:b9:23:d2:15:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AF:02:14:DE:E3:5F:73:F1:4C:2F:15:5B:37:62:1B:CF:8F:7A:F1
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Ka8CFN7jX3PxTC8VWzdiG8-PevE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b4:b0:27:c9:89:2e:50:7f:fe:41:0e:2f:a3:20:f7:4c:b4:
eb:9d:6f:b4:05:1e:cb:17:cd:91:6a:c1:76:e3:18:f4:ed:13:
bf:16:fa:a0:38:11:54:30:98:30:3c:78:79:5d:23:a4:24:b2:
fc:09:59:5b:d9:52:bb:ce:20:cc:45:bd:43:84:af:b4:58:93:
b0:93:6d:df:4d:c6:20:ea:1a:87:62:51:95:40:a7:8b:9e:f3:
b4:cc:4c:80:2f:06:84:fa:9d:10:7f:01:87:38:b9:c5:ac:98:
4a:3d:65:f0:38:1b:0c:27:77:8d:1c:a5:1b:29:f8:6e:a0:9d:
7d:7b:36:c8:40:b7:a2:7f:05:ab:00:26:cf:e2:c2:1f:32:7f:
06:f6:6e:a7:47:fa:d0:c2:41:1a:c8:26:92:3b:06:30:3e:17:
4f:2c:1c:d9:d9:fa:da:46:89:b4:ae:0b:ed:1c:a2:d6:ee:24:
e1:07:f1:0a:5a:37:a5:6c:1d:77:46:9b:c2:1c:7e:31:d7:69:
2a:c9:13:06:57:28:bc:fa:35:d1:75:a2:c2:6d:7e:3c:9f:13:
42:d3:27:7b:f6:f2:6c:31:3b:8e:c3:9f:3c:8c:43:ee:ed:c7:
6a:b7:2d:e0:01:ed:a8:2f:e5:f1:16:89:a2:90:fa:d4:f8:3f:
5f:43:76:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org