Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/XR-bgrKo9e5vX8-tL6DaPhZIhOY.roa
File: XR-bgrKo9e5vX8-tL6DaPhZIhOY.roa (raw, json)
Hash identifier: gW3VGrkNhnRpHCXLGYVuV0r3SufjmnNUKwQm92urDAk=
Subject key identifier: 5D:1F:9B:82:B2:A8:F5:EE:6F:5F:CF:AD:2F:A0:DA:3E:16:48:84:E6
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 091C
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/XR-bgrKo9e5vX8-tL6DaPhZIhOY.roa
Signing time: Sun 07 Feb 2021 11:42:41 +0000
ROA not before: Sun 07 Feb 2021 11:42:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2332 (0x91c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D1F9B82B2A8F5EE6F5FCFAD2FA0DA3E164884E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:20:f6:88:8b:9e:79:fe:f2:a6:20:f0:29:
9e:82:ea:24:1e:5e:9a:fb:2d:dc:a8:49:f1:2d:6c:
b0:f6:30:1a:97:27:a2:66:3d:2d:e6:44:78:e5:58:
5b:e3:97:e2:28:a5:89:dc:47:1b:40:9a:fb:7d:5c:
0e:94:48:0c:7b:b2:b1:0b:2c:84:67:2e:9f:84:08:
66:e4:6f:4e:d0:17:32:ba:17:70:8e:2b:59:47:ae:
92:cb:46:d4:39:d8:c9:6b:86:e0:9f:7f:63:0f:b7:
f0:49:b7:90:32:6a:52:7d:06:2f:58:1e:5a:b9:76:
ab:49:5c:3e:63:e6:c6:6b:90:96:f1:8b:63:76:dc:
f8:0d:37:ee:f6:ba:e4:18:6e:da:f2:70:f1:d0:ce:
d9:b2:e1:8e:73:f2:6b:e6:9b:d7:05:58:3f:08:58:
21:2c:df:31:fb:78:36:13:27:4d:ab:dc:51:58:13:
56:95:53:91:91:22:59:7c:f2:35:cc:d6:14:93:83:
75:04:29:cf:ea:10:6a:6f:a0:43:ab:7d:da:41:85:
a0:7f:23:14:b6:30:34:cb:47:d9:db:78:66:b4:c5:
4e:59:03:cc:48:b5:a6:54:c1:67:8e:27:bf:5e:ca:
6a:bf:cf:d1:50:c3:05:2a:e9:ff:16:c0:1f:5b:c1:
8b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:1F:9B:82:B2:A8:F5:EE:6F:5F:CF:AD:2F:A0:DA:3E:16:48:84:E6
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/XR-bgrKo9e5vX8-tL6DaPhZIhOY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:df:e2:52:b3:d0:ee:44:58:3c:f3:6e:7e:fc:d9:bc:70:12:
e3:17:08:43:bc:3d:6c:e2:33:82:ad:cb:df:f6:84:fc:c3:9f:
b0:58:da:c6:4b:b8:10:d2:76:85:7c:34:8c:dd:a9:c7:87:9b:
7c:e9:77:2d:c7:8f:fb:54:8b:ff:ff:e7:18:89:35:77:26:ae:
c7:c5:c6:f2:69:fc:66:20:89:ff:22:cf:38:f5:ac:2c:22:dc:
5d:e5:88:3a:f7:66:a5:27:91:b1:7d:ec:4c:0f:33:e1:f3:ef:
1b:22:e5:bc:e4:c4:0f:04:0d:77:05:2b:02:fb:d6:75:f9:e7:
84:6c:61:c3:f3:dc:01:7f:ee:f7:13:90:8f:cc:4e:64:4c:13:
9f:51:24:fb:e0:bf:98:1e:37:f3:ac:21:d8:df:bb:46:3b:ed:
42:f6:6f:e7:01:83:30:6d:aa:81:b7:cd:0e:61:c2:71:04:83:
97:13:d2:18:00:df:0c:dd:5b:37:46:c0:a0:8f:ea:e7:02:d4:
8a:6a:72:32:9d:3e:1a:ca:d6:33:26:c3:f0:e5:c5:95:b8:f9:
53:fe:d4:88:b5:52:d8:f0:2f:79:4d:30:d2:25:56:cb:25:37:
c2:c6:c7:e4:53:f4:2c:93:8e:68:46:ed:85:bb:97:f4:9f:57:
08:62:27:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org