Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Pd34LkbFwqK_cLGI8lp7rnrpC6Y.roa
File: Pd34LkbFwqK_cLGI8lp7rnrpC6Y.roa (raw, json)
Hash identifier: 5i1Q0kTzzDCPUOOhZm3lupP/An7Gmg6Hb5ooOAge4mY=
Subject key identifier: 3D:DD:F8:2E:46:C5:C2:A2:BF:70:B1:88:F2:5A:7B:AE:7A:E9:0B:A6
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0794
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Pd34LkbFwqK_cLGI8lp7rnrpC6Y.roa
Signing time: Tue 29 Sep 2020 09:59:44 +0000
ROA not before: Tue 29 Sep 2020 09:59:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1940 (0x794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3DDDF82E46C5C2A2BF70B188F25A7BAE7AE90BA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:e3:5e:b4:e2:79:fa:e3:5e:5d:64:8b:1c:
a4:80:45:54:d9:31:bb:ac:16:a7:80:f6:2a:a3:72:
f8:c6:e1:07:42:8f:cc:36:89:dd:fe:99:97:26:11:
6e:95:67:6a:c9:55:7e:7a:0f:21:87:ff:7d:59:60:
b6:53:fa:ca:af:fc:50:f5:75:a7:21:62:f8:9c:47:
0c:f2:b1:6c:0b:60:55:63:af:1c:d3:95:f2:61:9d:
18:15:4e:44:01:de:36:b4:f4:80:88:2b:05:02:3a:
88:4b:88:31:51:07:01:69:50:24:d7:ab:3c:eb:35:
8f:a1:7a:c6:c4:c7:58:08:01:b2:9c:ff:16:93:a2:
9d:50:02:13:03:53:b7:b8:0d:30:c0:c0:c7:15:af:
f2:d7:97:52:14:b9:4f:81:6f:a2:cf:21:47:e0:10:
bc:82:6d:87:95:5e:cc:a6:88:0f:89:12:06:31:5b:
07:7c:4a:b7:e0:08:74:e5:38:12:d3:b4:23:bb:4b:
d6:9b:20:23:29:32:60:5e:0b:55:d3:b7:38:59:f4:
5c:b7:4b:b1:96:9b:be:05:67:dc:d5:c9:91:35:2f:
8a:ea:ea:65:fe:6f:b0:4b:c3:a3:07:42:35:9c:e9:
04:ad:ae:b9:9c:25:fc:3f:bb:9a:d3:b8:d0:1b:1f:
02:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DD:F8:2E:46:C5:C2:A2:BF:70:B1:88:F2:5A:7B:AE:7A:E9:0B:A6
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Pd34LkbFwqK_cLGI8lp7rnrpC6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:38:9a:90:95:a4:89:5f:f3:8b:2e:a8:38:33:b5:c4:ba:00:
83:1c:a5:4e:97:c4:24:52:a9:10:f5:1e:67:26:f4:11:17:0a:
f2:89:48:15:1b:75:ea:2e:4c:ae:01:6d:bb:89:cf:97:c3:e3:
ca:e3:06:86:b2:76:45:fb:7b:62:6c:94:39:0a:17:a4:82:59:
76:12:ee:ff:05:bd:0b:dc:f2:ef:75:96:99:84:f3:5d:4e:ff:
dc:0e:36:6f:1e:28:90:36:0c:a3:d2:10:2c:e9:a3:af:a5:b0:
1a:e4:f3:22:2c:e1:d9:cf:59:af:8d:a5:f0:00:e6:31:31:ef:
8c:9a:ad:2d:15:7e:b7:29:57:92:a4:1f:21:24:19:b0:ce:4c:
8b:81:8c:8d:81:87:0b:76:ea:bb:3a:81:52:8f:b1:26:bb:84:
b2:17:af:08:d3:f0:07:9d:e3:a4:7a:69:44:a7:53:39:07:30:
4c:22:1c:57:a7:b6:51:2e:86:e4:b3:33:fb:17:4a:96:5d:a6:
2c:fb:52:67:48:8f:e6:48:24:a4:93:31:89:9c:c1:cf:33:24:
dd:1d:8c:e0:dd:5f:17:e9:01:51:38:fc:46:82:36:5c:ed:ad:
45:9c:96:23:0d:cd:6c:60:00:a1:01:83:37:c7:ea:0c:a2:4c:
b2:4a:dc:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org