Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/RStUMqimwFo6aqf5ReHEB-XZ4dc.roa
File: RStUMqimwFo6aqf5ReHEB-XZ4dc.roa (raw, json)
Hash identifier: c8lTGssGR5KYnurzG9lEcmG9O7y+EEEuExev+qYrEns=
Subject key identifier: 45:2B:54:32:A8:A6:C0:5A:3A:6A:A7:F9:45:E1:C4:07:E5:D9:E1:D7
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0799
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/RStUMqimwFo6aqf5ReHEB-XZ4dc.roa
Signing time: Tue 29 Sep 2020 09:59:45 +0000
ROA not before: Tue 29 Sep 2020 09:59:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 61.61.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1945 (0x799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=452B5432A8A6C05A3A6AA7F945E1C407E5D9E1D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:e2:36:be:b1:4e:f7:6a:f1:de:e7:a1:2a:
45:bf:45:da:b3:4b:a1:36:75:29:88:42:aa:60:90:
ce:2a:75:0f:f0:33:88:92:cb:12:70:41:60:49:4f:
83:f4:26:b9:cc:17:b3:5a:01:cf:2b:cf:38:02:ce:
6a:83:96:30:9e:50:e8:c8:a5:f7:f5:81:d0:04:db:
1c:b1:6c:1a:22:41:e7:76:46:00:b3:46:d9:f1:40:
4d:95:bb:80:1d:bd:87:54:fa:d3:7e:8c:bf:f2:70:
14:f0:84:e3:97:2d:61:1c:da:37:19:ec:6e:a5:57:
d0:71:c3:94:e1:3d:3f:25:f4:04:61:65:bd:fe:e4:
f9:f3:de:c8:9c:4d:02:0a:b9:a8:48:13:5b:77:69:
e7:8a:bd:97:84:c0:fc:ca:c7:5b:4d:b0:e3:bf:9b:
39:07:c4:aa:42:c1:3c:23:75:d4:79:47:db:59:e3:
67:36:75:5a:0b:05:76:38:51:e7:de:e8:86:c4:e0:
3e:80:f0:52:46:b4:95:7f:bc:55:4b:8d:be:7b:af:
b4:a9:b8:e9:26:3f:e1:83:c1:7a:f1:11:1c:74:3a:
a2:f9:6a:f8:3a:01:8d:2d:f0:cf:90:50:1e:22:1f:
cd:0b:38:94:4d:d9:f7:16:32:40:51:43:56:c3:db:
2a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2B:54:32:A8:A6:C0:5A:3A:6A:A7:F9:45:E1:C4:07:E5:D9:E1:D7
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/RStUMqimwFo6aqf5ReHEB-XZ4dc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:89:63:13:49:10:0e:37:3c:0e:75:33:78:11:8d:60:da:bb:
17:a2:a2:5f:6b:ae:b4:c2:45:ac:27:87:d0:70:2d:63:f9:fd:
86:1b:83:b7:a8:b1:7b:e6:b6:1a:28:c5:61:6f:59:74:18:9a:
23:d1:12:3e:db:75:a5:4a:a3:c6:ca:0d:7b:90:e1:d2:c2:0e:
1a:5e:7a:2c:4f:21:7c:08:03:a2:2f:f9:dd:da:9a:27:72:74:
28:34:28:ac:ed:be:dc:1f:86:3c:bc:ca:88:fb:50:d3:5d:2f:
6c:e3:e8:3c:bb:eb:c1:ff:ec:08:04:70:60:c2:fb:90:c3:7c:
46:06:3f:0d:cf:1e:4a:09:5c:90:36:63:6e:92:7d:a6:33:da:
0b:a6:d6:2f:9b:e8:c4:60:e2:a4:1b:f6:29:38:e0:2b:ed:78:
a5:b0:7b:14:3f:b7:f4:79:38:31:6d:54:5c:fd:c4:79:c6:7f:
3f:da:e4:8e:b3:59:57:f6:df:82:af:d4:76:1a:a7:ee:7f:4f:
4c:3a:2f:d9:99:db:69:69:90:ba:54:2b:ea:c0:58:03:f2:ad:
0e:05:9d:b2:df:4b:d5:c4:bc:83:a5:9b:cb:fb:fe:08:f6:72:
51:aa:6c:55:c6:bf:04:36:3f:b8:fb:b5:be:ac:2a:6f:d8:04:
1f:3e:cc:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org