Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ZGFEVChxlzU1uUP5LjfYhZBCMr8.roa
File: ZGFEVChxlzU1uUP5LjfYhZBCMr8.roa (raw, json)
Hash identifier: y9jB+4Rg97ZauZq8BUWeVKLHLqaTEWiw2alrY18i/FE=
Subject key identifier: 64:61:44:54:28:71:97:35:35:B9:43:F9:2E:37:D8:85:90:42:32:BF
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 090C
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ZGFEVChxlzU1uUP5LjfYhZBCMr8.roa
Signing time: Sun 07 Feb 2021 06:52:09 +0000
ROA not before: Sun 07 Feb 2021 06:52:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9918
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316 (0x90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:52:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=646144542871973535B943F92E37D885904232BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3a:36:1d:74:e2:cb:c6:5f:f8:a6:55:55:84:
e9:dc:db:d2:76:db:76:c6:7d:6a:14:5d:0b:e4:df:
b0:4c:72:be:a9:e2:e8:23:f8:61:38:b0:27:fa:f2:
72:6c:b6:5f:2a:84:08:5a:af:78:c2:f0:8d:f4:ca:
98:06:fb:d7:b2:c7:f8:3b:4a:ec:68:d4:3b:1f:a1:
7a:15:24:e9:fa:96:eb:4e:e0:86:52:05:e7:13:51:
b1:e0:43:95:90:f1:25:1b:5e:91:79:8b:e5:05:9e:
33:18:10:d6:e3:8e:76:4b:22:36:96:18:90:8e:2b:
e2:ef:8d:b4:5e:5c:15:10:0f:1d:7f:d9:ca:53:67:
1b:ca:10:8d:f9:12:89:d9:8f:15:77:55:87:53:29:
dc:f5:8f:0b:30:b5:6c:85:86:bf:e5:0e:49:cd:a0:
78:86:4d:3a:d5:84:50:68:96:f8:16:19:e8:b3:fb:
8e:9f:0a:84:ca:1c:51:7b:1a:ea:da:e9:74:b2:69:
ba:8a:f6:ea:6c:63:fb:c5:a3:bc:20:53:d0:22:69:
66:38:e6:6a:9f:5d:05:88:ce:c8:99:fe:7e:b6:61:
93:b3:28:29:7f:17:93:ad:67:cc:10:76:3d:b2:f4:
05:ed:e3:39:17:f9:d2:8d:49:92:4c:ca:d1:6c:64:
1e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:61:44:54:28:71:97:35:35:B9:43:F9:2E:37:D8:85:90:42:32:BF
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ZGFEVChxlzU1uUP5LjfYhZBCMr8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
99:22:a0:34:a9:9e:41:6d:f6:8d:56:d6:89:07:d7:d8:15:ba:
a3:9d:67:94:45:d2:ee:10:05:cb:f2:35:76:fc:7a:36:64:f3:
cc:c5:e6:5d:c0:6c:bf:dd:be:84:87:ef:51:cb:b3:1e:9b:28:
14:f2:71:ee:1b:c9:63:57:66:f4:8f:4a:20:c9:b4:84:4a:ff:
15:fd:8e:1a:e7:b5:19:ce:38:42:59:e6:c3:f6:a0:20:25:6a:
9e:51:fc:77:da:b9:98:f5:b1:1e:cb:04:e9:22:bd:fe:95:f5:
31:78:f0:9f:f4:c4:e9:f1:0e:53:37:0b:7e:c2:3e:c8:20:bf:
8b:d8:74:74:65:05:8a:97:c1:e1:79:8c:7b:57:c6:78:5f:69:
41:a7:cd:61:86:99:3b:03:b5:80:f1:9b:40:e5:86:9a:d0:b1:
de:2b:15:f1:da:7a:f1:4c:5a:ac:70:13:f2:f2:83:20:f0:12:
de:6d:86:4d:8a:4e:77:36:e1:a9:55:90:22:ef:53:b3:3b:a1:
7c:5c:1d:1f:03:5a:88:b7:fc:19:0e:5a:0d:95:09:e9:85:e3:
73:e8:14:f0:24:27:09:f7:12:2c:0b:64:85:78:dd:53:ad:49:
f3:ca:6d:66:a8:47:e1:c0:37:5a:47:d2:42:e4:f1:ce:d3:fc:
c8:74:c7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org