Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/fEihpYKuj-AdFUCa5I80zNEP0O0.roa
File: fEihpYKuj-AdFUCa5I80zNEP0O0.roa (raw, json)
Hash identifier: sMbmsrh/VugdaMm9Yp6SPYA/AEunBwcd7yTroCYWOVs=
Subject key identifier: 7C:48:A1:A5:82:AE:8F:E0:1D:15:40:9A:E4:8F:34:CC:D1:0F:D0:ED
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0904
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/fEihpYKuj-AdFUCa5I80zNEP0O0.roa
Signing time: Sun 07 Feb 2021 06:50:03 +0000
ROA not before: Sun 07 Feb 2021 06:50:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308 (0x904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:50:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C48A1A582AE8FE01D15409AE48F34CCD10FD0ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4a:d2:8b:0b:c0:c5:55:16:9d:84:42:2b:99:
4c:aa:a1:1f:ba:8e:a4:4d:b8:5e:c2:b0:ac:ef:6d:
c5:67:e8:4c:01:44:56:62:a8:1e:a8:1b:a0:00:dd:
63:c7:63:aa:87:c5:37:e0:09:08:b9:22:d2:51:39:
a3:9d:4f:42:b9:21:54:0e:48:90:05:49:18:55:14:
af:d2:c4:a9:0f:18:b5:a7:7e:17:fe:6a:d9:3f:e0:
d0:f0:e8:11:15:78:d0:40:9c:6b:20:20:47:c9:27:
43:59:a7:cc:4d:15:a7:6a:7f:fb:d9:21:f0:7d:dd:
9b:2c:7e:67:d9:9b:15:d5:9a:6f:95:9a:e0:94:87:
21:33:7e:0c:37:f4:b1:27:1c:69:e4:17:13:9d:ee:
33:dc:b5:1e:6e:b6:ca:21:f3:d3:0f:7f:ca:1d:f8:
84:38:ee:ec:d3:40:ca:d0:04:87:c7:67:d2:f3:8c:
2d:34:6b:d9:15:b0:19:01:41:3b:a1:89:f2:40:59:
a4:f8:93:2d:b9:12:a7:5e:f5:b5:fe:03:34:23:8b:
8b:38:18:8e:70:ec:9b:4a:c1:30:dd:2e:59:49:ca:
d2:23:1f:40:df:f7:b5:bf:b6:e8:ba:e0:8b:eb:38:
c1:46:74:e7:53:37:17:24:23:64:a9:1b:d6:37:d9:
74:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:48:A1:A5:82:AE:8F:E0:1D:15:40:9A:E4:8F:34:CC:D1:0F:D0:ED
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/fEihpYKuj-AdFUCa5I80zNEP0O0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3d:47:bf:32:26:d6:9e:05:39:a5:ee:47:f0:57:fb:0d:ba:46:
46:42:24:09:8e:17:9d:a0:aa:83:b1:76:50:1f:33:2a:f5:ca:
1a:47:0e:47:2c:30:9f:42:fb:2c:ab:e3:47:98:bd:69:66:b5:
bc:27:7a:50:87:ee:a1:69:54:1b:53:48:c6:c0:2c:97:b7:0e:
8f:7e:ac:52:a6:08:53:75:18:73:36:7b:4b:d1:bd:a1:eb:80:
50:44:07:df:91:df:05:29:6e:17:85:2f:32:e3:e9:65:81:3a:
d2:36:7c:fe:f9:2f:31:a0:2d:d0:7e:c4:22:0f:65:d6:78:fc:
73:aa:1a:bc:f8:9d:3f:45:ac:56:e8:67:8e:b8:8e:68:6e:be:
aa:e2:a2:bf:62:57:16:55:c2:1a:f1:0f:80:8d:1e:70:47:e1:
64:9d:f1:26:09:68:6c:8a:8a:43:07:a7:b3:56:34:8b:f8:3b:
a5:2e:fc:dd:ef:7a:35:5e:bf:7d:ad:87:dd:4f:4f:be:93:2a:
36:a8:32:26:0c:b2:c8:fc:65:ce:93:0b:f5:42:7d:ae:ed:ff:
eb:9e:19:af:de:91:03:8b:53:8d:2f:16:69:a2:69:9f:5c:ae:
92:5b:77:ca:f7:d6:9e:e6:29:62:df:92:bc:ff:ec:be:f7:00:
6d:39:fa:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org