Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Ky7COo-Ta4W9yZUO2aLyBVNmN6Q.roa
File: Ky7COo-Ta4W9yZUO2aLyBVNmN6Q.roa (raw, json)
Hash identifier: +qrpN0tAMMNBnmnVuOFDNhzC3TyQvP9y/DPYjRGecFE=
Subject key identifier: 2B:2E:C2:3A:8F:93:6B:85:BD:C9:95:0E:D9:A2:F2:05:53:66:37:A4
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0908
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Ky7COo-Ta4W9yZUO2aLyBVNmN6Q.roa
Signing time: Sun 07 Feb 2021 06:50:30 +0000
ROA not before: Sun 07 Feb 2021 06:50:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2312 (0x908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:50:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B2EC23A8F936B85BDC9950ED9A2F205536637A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:4e:d7:cf:3a:53:3e:c9:ea:a9:0f:74:e0:
3a:b7:76:a4:a2:9f:3b:03:8d:46:cc:f7:bc:87:f2:
e3:63:b7:75:75:1d:8b:67:2c:75:d1:bd:90:f8:49:
07:71:43:f0:11:79:cb:61:79:84:2c:da:5c:16:6b:
fb:df:95:97:12:9a:62:08:c0:da:64:83:dc:5c:a1:
7f:2c:d2:a6:1e:53:29:0b:5e:53:bd:18:48:38:5b:
bd:94:4b:e1:f9:d2:b5:de:83:a9:0a:68:68:8a:e4:
c3:76:14:6c:4c:f9:64:36:b5:78:b0:80:b2:ed:b6:
45:35:64:ff:b6:da:81:5b:f4:3b:5f:4d:a4:24:af:
b0:ce:66:a0:ba:a0:2e:bc:d0:03:a8:5c:92:4e:b7:
23:11:fa:72:87:cd:0b:c3:ee:cb:fc:cb:d7:92:cb:
c3:80:53:e3:4f:a1:03:ea:75:fd:68:d2:99:58:76:
f4:a4:77:4d:6c:b4:71:8c:51:69:3c:02:57:60:8a:
81:a3:1d:13:95:8c:24:c7:c8:b6:7c:79:96:5e:06:
e8:a3:3a:38:cf:da:46:8a:9d:70:ac:28:45:28:aa:
62:b9:9b:79:39:35:36:29:25:aa:47:cc:ae:c6:c5:
54:81:91:79:7a:aa:25:bd:04:75:e6:8a:f5:de:a8:
a7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2E:C2:3A:8F:93:6B:85:BD:C9:95:0E:D9:A2:F2:05:53:66:37:A4
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Ky7COo-Ta4W9yZUO2aLyBVNmN6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
60:7f:f6:37:ff:b0:68:43:4b:63:1a:fc:6f:a2:9f:13:02:f6:
d5:69:20:8e:a1:f0:26:21:bb:dc:1a:d5:38:92:99:74:37:e8:
a5:cd:24:15:af:ed:c5:62:f5:12:27:50:c3:83:c6:d3:e9:68:
ac:2c:e6:e9:b2:9f:59:7c:70:7c:b5:75:1b:c0:e2:a3:74:db:
a0:1a:9c:cf:43:8d:c4:9c:0e:84:5a:c0:48:4c:81:a1:6f:79:
f6:76:1a:1b:d5:2f:ab:e7:3a:d7:4c:3c:b7:b9:4a:2c:a9:37:
34:bb:f6:18:18:4a:eb:da:eb:e0:c9:64:ec:fb:a9:d5:56:f9:
71:7a:8f:49:47:ee:1a:07:38:1d:90:8c:c2:83:c3:f3:08:b3:
8d:22:fe:0e:92:42:de:15:d4:df:f7:6f:18:5c:e2:87:26:b7:
70:68:fb:b9:21:f2:ee:bb:c0:d5:d0:5c:fe:43:08:10:ff:f9:
07:97:7c:8e:de:30:89:09:4d:36:25:18:0a:85:41:e3:a6:d9:
10:5c:08:ab:f0:3f:69:c7:46:53:f7:7f:25:8c:9a:85:5f:85:
89:89:e9:ea:b2:bc:bc:0d:8d:f3:40:82:40:b7:2b:64:27:31:
43:9d:06:d4:5d:e6:05:45:11:45:cf:1e:2b:0d:12:90:6f:d9:
17:62:ba:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org