Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
File: N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa (raw, json)
Hash identifier: 4iK9sLs+gl4rTYbWiBnm1/J7fv/+sMPxPkH3pZpJaCk=
Subject key identifier: 37:BC:33:F6:DB:6A:7B:F7:14:97:35:01:45:DF:9C:ED:03:CB:1A:BB
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09DF
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
Signing time: Wed 29 Sep 2021 02:52:18 +0000
ROA not before: Wed 29 Sep 2021 02:52:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2527 (0x9df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=37BC33F6DB6A7BF71497350145DF9CED03CB1ABB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:60:ca:39:96:22:4b:6a:06:cd:51:86:39:90:
59:54:14:60:0b:13:a5:66:c0:15:55:b8:50:42:7e:
78:1a:12:55:11:61:f7:a3:68:1c:c6:6b:87:08:83:
1c:3c:90:42:22:76:f6:a1:f0:9d:9a:d5:f1:d4:f5:
a2:4b:75:dd:2a:23:6e:fc:dd:0b:88:0c:ba:0a:1e:
77:ea:e6:68:71:db:c9:74:d3:a3:0b:61:bf:88:f6:
9d:c2:29:71:a3:c4:46:93:67:11:12:37:02:f8:5a:
cf:f4:25:7c:6a:58:9f:74:e0:93:8d:58:58:bd:8e:
bf:13:16:f7:86:41:33:f4:7e:5d:39:fd:fc:b1:3c:
95:31:ce:8d:c3:5f:c2:25:95:d9:f9:d2:25:52:e1:
3b:1d:56:5c:11:0f:fd:47:ad:57:20:1a:c0:77:59:
60:f9:b3:20:2c:a7:2a:47:45:59:28:ca:93:30:3a:
dc:8e:bf:99:59:c9:24:00:7f:d2:1f:51:19:8c:5e:
de:79:88:25:fe:d1:98:e4:70:97:49:22:22:b7:e0:
f3:38:69:68:61:f2:f4:3a:aa:8e:3c:84:9a:84:b3:
75:f2:58:3a:0c:05:0d:47:17:6d:d6:8f:88:5b:a7:
a8:83:d9:2b:25:c3:da:d8:bc:31:6f:86:16:5f:25:
ec:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BC:33:F6:DB:6A:7B:F7:14:97:35:01:45:DF:9C:ED:03:CB:1A:BB
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
8a:ec:eb:b0:37:24:ce:08:06:31:95:29:9c:d5:f9:39:4e:e2:
84:42:27:90:04:c6:1d:76:7d:10:2e:b7:fe:f5:eb:6f:91:b4:
42:44:fd:c3:93:bc:93:ef:e9:93:3d:ff:f5:07:47:e4:67:1e:
c8:89:79:09:40:9a:46:d3:6e:43:40:13:71:1e:5b:9b:80:ba:
02:e3:49:16:e1:c5:b1:67:fd:0e:9e:29:26:5b:ba:e8:d1:ca:
33:b3:79:22:06:14:90:03:0e:31:c8:ef:cf:62:cf:be:cb:a9:
1e:0d:1c:9f:5b:95:80:13:68:a8:da:e9:e9:13:bb:92:d2:3f:
df:e8:e6:d8:aa:29:6c:60:d5:0a:16:38:89:5f:5b:31:05:26:
d9:51:29:1a:1a:3b:05:e4:d5:c0:41:58:72:73:53:71:e6:ab:
97:03:05:5c:2a:36:c4:36:cf:ce:18:a2:7c:57:a7:c6:7a:a0:
2c:a4:a1:94:31:a1:44:ff:6d:7b:f2:8f:04:07:05:fb:fe:95:
c6:9f:3e:45:b7:87:57:cf:32:2d:5a:8e:f0:14:1b:84:06:c2:
a1:63:95:e8:ce:c5:86:96:09:c3:10:9f:74:69:db:65:88:17:
75:83:bf:24:7e:28:96:30:59:bb:5f:ed:fb:61:6d:16:58:f7:
cf:5f:d9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org