Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/_F7bnWHzHeT3tVNHIEGg5Df2kp0.roa
File: _F7bnWHzHeT3tVNHIEGg5Df2kp0.roa (raw, json)
Hash identifier: i/QGIKnsibuYUe1zz3wdBvxC9bB/xxojkS1N4A6VogA=
Subject key identifier: FC:5E:DB:9D:61:F3:1D:E4:F7:B5:53:47:20:41:A0:E4:37:F6:92:9D
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 079F
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/_F7bnWHzHeT3tVNHIEGg5Df2kp0.roa
Signing time: Tue 29 Sep 2020 09:59:47 +0000
ROA not before: Tue 29 Sep 2020 09:59:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 211.78.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1951 (0x79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC5EDB9D61F31DE4F7B553472041A0E437F6929D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:b4:67:e7:cc:5a:cb:a0:a6:6f:6c:22:47:
49:ff:1a:ea:53:01:2d:87:4b:c2:2b:96:5a:cf:bb:
1a:d4:be:96:cf:bf:5e:9e:a4:23:d3:e8:5f:54:d9:
46:d0:c7:fc:31:1a:d2:c4:2a:e0:a9:0f:ac:6c:f2:
6b:6d:69:19:36:40:4b:54:05:ac:5a:49:6f:40:b5:
fa:58:fa:cc:b5:57:38:95:cf:b8:27:f1:8d:85:a8:
b2:ae:6f:ea:0b:2a:de:fa:c1:98:a8:60:17:67:e3:
e4:5c:cc:84:9c:1d:d8:7a:a7:ae:95:38:ca:27:5b:
40:32:72:07:64:f3:57:7c:be:41:e2:10:c8:74:e4:
ff:5b:94:05:11:ea:8b:c2:b0:ee:65:31:89:a3:8d:
ff:2c:31:c4:41:d0:9c:90:1e:64:7e:d8:67:cf:8b:
85:eb:48:b6:f5:e5:4a:e5:39:65:dc:81:92:82:5c:
79:2c:57:9c:da:99:23:da:06:e8:21:12:9d:02:54:
8e:62:6c:9a:ee:7e:2f:63:18:c2:c3:ea:a8:23:6b:
b1:9c:c6:0f:43:98:9b:42:f3:b0:93:b2:4f:08:f0:
15:f2:d3:6f:3b:6e:4d:20:12:a4:0f:c6:32:8d:f4:
8b:f9:a3:a8:0e:83:b9:00:6e:94:b9:c0:49:93:84:
ec:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5E:DB:9D:61:F3:1D:E4:F7:B5:53:47:20:41:A0:E4:37:F6:92:9D
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/_F7bnWHzHeT3tVNHIEGg5Df2kp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.32.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:74:fb:20:d0:ca:4f:c1:e0:66:98:c1:41:1f:ed:d4:1a:34:
80:c8:2d:55:f8:ad:f4:c8:33:3e:25:f2:29:ba:b0:0f:a6:5b:
47:7e:8e:79:7c:44:7c:b1:bc:4f:78:50:8f:bb:31:95:16:67:
69:15:08:4f:72:b4:5f:57:d0:42:f4:ad:5e:c0:0b:c4:0b:e6:
66:d7:36:06:6e:93:ac:9d:0a:4f:47:0e:97:d3:21:f6:38:b7:
fc:25:a1:6b:87:7b:29:08:f2:55:20:88:10:5b:16:5f:e8:6e:
7f:27:56:19:33:35:6b:15:90:02:c8:d8:e7:bc:a8:eb:ea:f3:
76:c5:fd:f5:9e:a9:4e:47:97:bb:0f:84:10:a2:91:11:e0:a1:
a0:b1:0c:8b:c9:80:89:e3:eb:af:c9:db:0e:c2:62:a9:84:2d:
d0:a4:d2:c2:27:a7:29:fc:aa:67:46:c3:8f:09:6c:6f:58:a2:
af:51:ce:c6:a6:7e:ba:6b:c1:8d:e0:17:af:5b:2d:f4:73:08:
7c:1c:4b:be:1b:27:cc:52:db:a7:59:96:29:ba:f6:9e:13:86:
32:b0:d0:7c:c7:df:43:30:86:0a:06:61:f4:80:dd:69:bd:d7:
86:b7:c5:9e:a9:f8:35:1f:0f:bc:cc:3e:ba:20:b4:dd:2c:09:
70:42:e8:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org