Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/iatdNaJpsd1RHE4LNF_Q1r8KALo.roa
File: iatdNaJpsd1RHE4LNF_Q1r8KALo.roa (raw, json)
Hash identifier: NSmU52YKXkpInceTNLjkoeSPu7b8t27okjUfYny3iN4=
Subject key identifier: 89:AB:5D:35:A2:69:B1:DD:51:1C:4E:0B:34:5F:D0:D6:BF:0A:00:BA
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 07AA
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/iatdNaJpsd1RHE4LNF_Q1r8KALo.roa
Signing time: Tue 29 Sep 2020 09:59:49 +0000
ROA not before: Tue 29 Sep 2020 09:59:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1962 (0x7aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=89AB5D35A269B1DD511C4E0B345FD0D6BF0A00BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:9f:03:34:f5:d3:42:2a:2a:59:e8:79:44:
73:88:1a:91:6e:e8:47:ec:02:b6:44:dd:1a:e4:1e:
87:e2:0f:df:2b:43:8d:12:d0:1d:e7:d6:86:3a:2d:
b3:0c:8a:c0:b7:d8:06:a9:3a:8c:b8:34:fc:7e:83:
e6:e2:32:17:46:d9:c0:47:f3:e5:7e:29:14:15:dc:
35:9e:85:23:47:43:2f:98:9d:eb:34:64:46:21:03:
b1:97:99:9a:0f:8a:ba:c2:72:0b:d5:a1:09:91:9c:
4a:e0:da:08:72:b2:2d:c4:01:71:9f:77:38:c2:d2:
32:43:99:33:c9:22:f6:1d:d3:7d:ad:a7:4a:4a:e6:
92:49:63:fa:40:41:b1:dd:ce:b6:9c:2c:24:52:82:
43:db:14:9b:06:96:83:72:1d:e1:e3:c8:8d:87:b0:
49:b5:f2:e2:9f:e3:d8:f5:98:c9:55:38:a7:7a:90:
02:82:c7:9a:db:76:b9:88:20:4f:5e:5f:1b:4e:6f:
d5:e5:b9:80:5f:e2:df:28:73:94:d9:1e:48:b8:7f:
a1:68:4c:25:44:5d:81:e6:5a:b2:f7:6f:05:98:a9:
5c:a5:0b:84:ed:25:5b:d8:9e:f4:ef:74:ae:c0:3a:
c3:b6:9d:a0:e0:20:d7:10:f3:ea:b1:e7:07:e2:9a:
16:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AB:5D:35:A2:69:B1:DD:51:1C:4E:0B:34:5F:D0:D6:BF:0A:00:BA
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/iatdNaJpsd1RHE4LNF_Q1r8KALo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7e:8f:29:0d:b1:eb:6d:9e:21:83:7a:07:29:95:e8:a0:5e:76:
2b:f1:a2:38:44:15:66:b4:94:74:c7:48:31:49:bf:a9:99:3a:
2c:ee:78:f8:fb:5b:6e:d7:b2:dc:5a:c3:15:9d:88:5b:a1:ec:
ed:89:31:e7:92:e1:a9:2d:6c:8f:89:3b:16:d3:b2:e0:a4:3d:
03:fb:66:78:4a:eb:0f:0f:7f:6e:a4:e5:6b:18:11:9f:11:f6:
7f:3a:c0:11:b0:f7:75:d5:47:d8:2d:25:26:99:a7:9b:a7:9d:
80:a3:80:e4:c1:09:59:ae:02:a0:53:f6:f9:3b:82:94:0c:4a:
28:1a:d7:ae:e2:ee:36:09:66:3f:70:73:35:86:e3:51:09:1b:
df:f6:12:bb:b7:63:9d:3d:8b:43:43:c8:51:bd:7d:83:37:cf:
b9:8a:68:de:f7:f2:20:02:d5:a1:07:fb:2c:54:74:9f:6c:8a:
64:b3:51:91:da:ff:c6:71:7f:e7:8e:52:9d:f1:63:52:17:97:
fb:ce:fa:d1:06:a4:a9:4b:62:ad:20:89:a5:3b:15:42:a8:c5:
c7:2b:71:1c:f9:f9:ef:57:dd:e9:7d:e8:54:86:ac:f4:db:46:
44:6d:e2:71:dc:eb:1a:14:e1:f7:82:f5:2b:8f:c4:77:c3:5f:
a2:8c:5c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:09 2025 by rpki-client