Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/cgqNK1qsi3UkKtVezxK50FRv29A.roa
File: cgqNK1qsi3UkKtVezxK50FRv29A.roa (raw, json)
Hash identifier: EkXi1CEYAXzaXML908x+0Zq7l88ewQNRF+GTFiPsXGY=
Subject key identifier: 72:0A:8D:2B:5A:AC:8B:75:24:2A:D5:5E:CF:12:B9:D0:54:6F:DB:D0
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 092A
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/cgqNK1qsi3UkKtVezxK50FRv29A.roa
Signing time: Sun 07 Feb 2021 13:02:57 +0000
ROA not before: Sun 07 Feb 2021 13:02:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 61.61.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2346 (0x92a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 13:02:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=720A8D2B5AAC8B75242AD55ECF12B9D0546FDBD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:18:18:52:48:f9:97:46:43:2a:1b:0b:e4:24:
16:9b:fc:08:e4:0c:d6:c9:9e:56:f1:37:b7:ee:d3:
c2:17:07:e4:82:d8:4c:d5:e8:63:3a:16:ad:83:b1:
f2:54:ab:e0:86:c5:1b:ea:5e:47:c3:0d:17:98:24:
41:70:96:04:c7:ad:39:f1:08:48:68:4e:8a:1e:c6:
5e:c5:15:2d:af:37:7b:36:78:58:9e:36:10:75:9d:
b0:72:ab:cd:59:8a:a6:6f:29:16:f7:ed:f3:fb:96:
f9:01:26:d0:67:14:58:1b:bd:93:66:ca:78:bd:35:
c5:05:1c:a6:99:14:ad:8e:0e:b0:16:a2:30:a3:13:
20:75:34:a6:5d:cb:67:40:23:92:9b:ba:a7:7d:80:
d6:9f:80:4d:8c:56:10:67:47:05:6e:d0:49:42:81:
8c:89:07:a1:19:c1:e4:58:b4:54:ad:70:e5:91:6e:
63:0d:37:3f:13:75:fb:cb:7a:7b:e4:24:5e:f7:24:
bf:78:2c:74:3f:08:b6:72:ae:52:c4:7a:10:c8:19:
35:bd:e4:59:a9:a7:c8:f1:40:a5:7f:a2:5b:fc:59:
d0:16:f0:9d:f5:a0:fa:ba:57:64:ed:88:1f:5d:ec:
9a:ea:27:45:94:d6:6e:f8:5a:d0:59:b9:ed:99:9e:
c9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0A:8D:2B:5A:AC:8B:75:24:2A:D5:5E:CF:12:B9:D0:54:6F:DB:D0
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/cgqNK1qsi3UkKtVezxK50FRv29A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.60.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:36:d0:a9:32:4c:36:e3:c5:f6:91:4e:e2:92:b8:fe:7d:27:
97:53:7c:7c:55:8d:74:9c:10:b0:61:94:c9:bb:ed:0c:f2:ac:
2a:44:3d:d2:6d:70:9c:30:b1:7b:e0:96:96:55:69:c9:a1:82:
2c:6f:cc:74:69:79:b9:8c:e0:d6:07:a9:a0:fc:d6:d3:62:e9:
88:c4:64:2f:cf:fd:b4:8b:49:91:ee:a5:b6:e0:0f:2a:9a:ef:
2d:a4:b1:64:47:21:a9:3e:ee:79:5b:ad:7c:20:96:49:44:a6:
09:d2:d6:f1:96:70:a3:2f:51:ee:5c:62:ab:cc:7b:8b:19:ad:
cc:a0:c4:c3:2e:8e:38:01:6a:de:b9:20:5b:cd:94:21:53:cd:
8b:e9:e2:7c:c2:12:31:57:ea:c3:f4:b9:8f:1c:8e:6d:6a:c4:
a0:b7:e0:59:36:80:e0:cb:64:0d:26:b0:11:d8:cf:04:6a:a4:
b8:da:33:73:b0:b7:a4:fb:ff:e4:73:6d:35:33:4f:99:e9:41:
bb:34:5f:54:48:9b:9f:8e:d1:38:a9:76:08:ae:57:c7:86:5a:
04:4a:7e:32:21:03:dd:e4:99:93:36:c3:27:f3:1a:8b:fe:33:
d3:00:48:59:af:92:e4:2b:3b:da:b5:9e:9b:32:fe:d5:33:84:
cc:8f:f2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org