Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/a0JGe9lTbclEOBhiNYbQlZVLWMQ.roa
File: a0JGe9lTbclEOBhiNYbQlZVLWMQ.roa (raw, json)
Hash identifier: +p+DSjfBk5n4qPqdMS7oE6Girk/J1JKXyr9lSCM+XIo=
Subject key identifier: 6B:42:46:7B:D9:53:6D:C9:44:38:18:62:35:86:D0:95:95:4B:58:C4
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 092E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/a0JGe9lTbclEOBhiNYbQlZVLWMQ.roa
Signing time: Sun 07 Feb 2021 13:06:21 +0000
ROA not before: Sun 07 Feb 2021 13:06:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 61.61.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2350 (0x92e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 13:06:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6B42467BD9536DC9443818623586D095954B58C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:8d:cf:64:91:10:8d:1e:7c:7a:1c:da:93:9a:
0d:63:9b:91:c0:30:eb:9c:5f:95:de:75:e2:b0:d4:
43:7c:4f:32:c9:99:cc:e2:ea:7f:cf:18:9f:66:c6:
10:3c:e5:4b:04:99:18:d6:f4:ee:93:ff:a1:6c:1e:
e6:cb:8b:14:4f:46:77:82:e5:23:90:93:5d:44:c2:
55:39:e7:f2:b3:12:52:7a:68:f6:3b:6c:5d:46:09:
0c:82:d9:6f:d6:80:11:cd:11:d1:f4:9a:1f:da:95:
34:18:49:fc:c2:27:21:5a:32:6e:31:69:f4:21:2a:
59:40:04:26:91:df:08:8e:d9:4c:63:c3:ea:0f:6e:
87:9d:72:21:aa:f3:16:e5:16:89:2a:aa:fb:10:18:
06:5b:86:2c:bd:7e:f0:c7:8f:bc:53:4d:74:15:e4:
42:be:b6:70:10:56:ae:23:7e:0c:d9:92:cd:39:50:
e4:92:ed:ed:d5:b6:b5:91:0e:d4:e4:a0:32:b4:14:
76:1d:df:a5:d6:42:49:4b:2c:23:22:b9:ef:dd:4f:
70:3e:5b:2c:62:66:53:bc:0b:48:c6:11:a3:47:ca:
c5:85:c5:85:56:3f:44:bb:4e:32:62:32:65:a1:10:
fe:a2:9c:61:2d:ac:69:fa:b6:c3:0a:a9:86:8d:30:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:42:46:7B:D9:53:6D:C9:44:38:18:62:35:86:D0:95:95:4B:58:C4
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/a0JGe9lTbclEOBhiNYbQlZVLWMQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:5c:c6:69:a0:d6:ca:55:07:f4:e2:cd:05:68:8e:ec:1d:38:
77:91:cd:0f:d0:b0:e7:30:13:20:45:d8:be:c4:7d:8c:d2:73:
f2:62:0d:06:89:91:70:a1:60:2d:9e:31:22:25:d3:8b:1b:74:
d1:cc:e2:a5:02:2a:4d:56:73:df:8a:53:ad:35:76:c9:a4:a5:
8a:cd:f7:27:d6:78:59:64:4d:01:b2:f3:d2:64:45:35:68:f0:
57:b5:38:40:f7:86:5e:b7:89:f5:61:f0:e4:02:f9:d5:45:72:
cf:88:a2:f7:8f:90:8f:47:3b:1d:16:dd:27:97:0a:be:6c:11:
68:56:8b:49:0b:d9:d1:1a:82:98:64:d0:69:34:e2:95:1c:39:
7d:4a:1c:3e:af:ed:a3:53:d2:39:19:7d:c5:e2:52:97:0f:9b:
55:86:e6:64:9a:05:25:0e:34:d4:ef:3c:d3:b3:25:93:c5:35:
e2:0a:d9:37:fe:b2:f2:2c:87:fa:64:e1:cd:f9:73:29:da:72:
ec:39:b6:86:ef:0d:e2:d9:a3:b2:c0:4f:5e:3a:d6:b0:7c:02:
f9:18:45:ba:7a:07:46:3c:96:04:6d:1c:8e:56:ee:61:21:fa:
cf:8c:ca:2e:08:5a:5f:4e:23:9d:59:b2:32:d5:33:9d:e3:35:
f6:82:52:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org