Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/f-oZdAeMoaFTS5-fjwjOVgGGoRw.roa
File: f-oZdAeMoaFTS5-fjwjOVgGGoRw.roa (raw, json)
Hash identifier: oxcR0Qz8P9foS5nbJGqTYISOZfuJYp2suQrh4g6vnfY=
Subject key identifier: 7F:EA:19:74:07:8C:A1:A1:53:4B:9F:9F:8F:08:CE:56:01:86:A1:1C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0926
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/f-oZdAeMoaFTS5-fjwjOVgGGoRw.roa
Signing time: Sun 07 Feb 2021 12:47:31 +0000
ROA not before: Sun 07 Feb 2021 12:47:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2342 (0x926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 12:47:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FEA1974078CA1A1534B9F9F8F08CE560186A11C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f1:39:e7:b7:44:11:b6:46:2c:68:40:ec:53:
f7:4d:f7:00:ef:a2:c0:cf:7a:f4:8a:79:3c:a0:ee:
d7:04:e9:1d:58:d2:8c:ce:db:cc:cc:05:72:fd:c5:
67:68:1c:d9:fa:a9:d3:0b:ba:c5:16:4d:7b:09:97:
eb:c3:45:6e:51:36:a7:d6:7d:2d:d8:40:4f:d6:d8:
ea:e8:cb:c9:1a:79:c2:36:65:a7:d9:ff:7b:fa:37:
87:d4:e2:76:6f:bc:d0:a8:07:72:e2:bf:ac:9a:0b:
6f:c4:12:a1:8f:f3:37:8d:e2:0c:94:5a:e9:3c:ae:
bd:50:43:10:e5:e1:d3:2a:b2:f7:ac:6f:9c:ea:2d:
93:16:63:3b:0c:20:93:8f:4d:7c:fd:68:11:40:5b:
e7:02:c9:23:ce:02:dd:0d:c1:22:60:6a:2f:d7:91:
dc:5b:4b:c1:47:db:cd:80:4c:e9:5e:91:34:23:76:
d3:e8:9f:35:58:07:39:0f:81:97:ce:9a:76:27:b6:
5c:20:3f:02:e0:00:f8:a8:d3:d5:52:35:fb:bc:5d:
18:37:73:ef:54:34:e2:ec:7c:1f:1a:e3:4d:6b:aa:
62:1d:b4:f6:bd:5e:25:81:2e:b3:eb:a4:fd:86:2b:
0a:36:26:40:92:47:5a:2f:cf:dc:2f:98:6e:34:c1:
dd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EA:19:74:07:8C:A1:A1:53:4B:9F:9F:8F:08:CE:56:01:86:A1:1C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/f-oZdAeMoaFTS5-fjwjOVgGGoRw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.96.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:52:91:dc:97:12:09:22:6c:f5:02:3a:74:02:02:3a:09:de:
b9:42:de:36:d5:d2:b4:82:44:74:8b:68:3a:f4:ff:b0:d1:9a:
60:e8:75:c5:86:cb:25:1c:63:61:07:07:e4:93:09:3e:7b:d8:
79:e3:b2:eb:0c:cf:b2:11:8a:c6:5f:84:33:c0:d6:da:e6:3d:
e3:1d:75:96:0e:a8:eb:fa:73:5d:f1:05:b1:51:6a:9e:53:54:
50:d3:0f:8b:a2:b7:d7:25:85:9c:0c:e7:b3:23:1f:70:d4:b6:
38:62:6a:2c:e5:10:ba:f5:dc:52:ed:4a:a7:55:cc:5b:e3:51:
b4:a2:6e:5e:9a:6c:b7:37:44:47:c9:04:bf:68:e2:95:07:36:
ff:67:9d:35:3f:69:bf:3d:83:52:a3:8c:76:4b:1a:cc:2e:17:
3a:8c:93:55:d0:93:36:15:9f:a6:e3:69:23:37:a0:c9:6c:9d:
a4:d1:d3:21:2b:db:30:f8:5d:c9:54:86:13:7d:fd:f5:98:48:
af:4a:e4:ed:54:85:ea:99:0d:f3:b9:b4:5d:55:11:1e:70:50:
3f:75:b6:1d:0b:0c:48:2d:e2:84:de:95:1f:6f:06:cb:9d:fa:
92:97:e9:62:b0:e1:01:4d:24:41:88:d7:51:f5:7c:3c:1c:8e:
4e:ac:8b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:38 2025 by rpki-client