Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jIduPxczM6Z_JpkIaCmFfaBg8Nk.roa
File: jIduPxczM6Z_JpkIaCmFfaBg8Nk.roa (raw, json)
Hash identifier: JsY75bDH3PLy5cbW912+hEjO1E7LQr5uEcq52bao1hU=
Subject key identifier: 8C:87:6E:3F:17:33:33:A6:7F:26:99:08:68:29:85:7D:A0:60:F0:D9
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0902
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jIduPxczM6Z_JpkIaCmFfaBg8Nk.roa
Signing time: Sun 07 Feb 2021 06:49:50 +0000
ROA not before: Sun 07 Feb 2021 06:49:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2306 (0x902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:49:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8C876E3F173333A67F2699086829857DA060F0D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:35:ef:cc:8f:6f:68:b7:07:5e:01:26:5b:
75:b7:99:67:e1:ff:09:1b:79:f1:b7:39:32:6f:aa:
d7:8e:c9:e5:9e:0e:ce:f6:1e:b4:71:f0:c9:2a:c1:
a9:d1:14:cf:2c:ce:58:92:7c:cb:93:89:fe:dd:f6:
3c:73:70:ae:2e:73:95:c4:08:59:d3:5d:25:8e:4c:
b2:87:bf:d8:1b:6b:d1:29:6e:da:72:e7:af:31:de:
4b:4a:ee:6a:8c:79:91:2f:82:23:df:4c:bc:bd:0f:
25:7d:7b:e0:5c:b2:e8:f1:bd:9d:7d:8c:0b:d6:30:
9a:01:88:00:9a:0e:61:fe:bd:61:9c:44:e0:a0:4c:
5c:57:e9:60:92:1a:5e:5f:6c:e3:20:0b:dc:b9:bd:
6e:e3:27:a3:1c:65:1f:c4:9a:8f:2b:a4:55:f2:aa:
f3:18:37:b7:26:8a:22:cb:a6:fb:a3:e0:bf:c4:16:
21:49:ac:68:80:6a:c2:2d:a4:f1:a1:3c:2b:91:a1:
2b:83:a1:02:ac:5b:e6:51:92:ce:c1:3f:5c:a0:44:
73:93:dd:ce:b1:32:05:54:3e:7e:a9:5b:49:db:d5:
43:6d:91:f8:37:ae:03:63:c5:18:85:f5:6c:d1:0e:
ea:8e:53:d8:ad:e3:dc:8f:a0:e2:57:d9:89:93:3f:
ad:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:87:6E:3F:17:33:33:A6:7F:26:99:08:68:29:85:7D:A0:60:F0:D9
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jIduPxczM6Z_JpkIaCmFfaBg8Nk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4a:cc:fc:d6:93:dc:ad:a3:b0:d0:94:b7:61:40:a0:85:54:43:
3d:37:b0:24:46:65:3d:50:87:58:8e:c0:55:7b:09:3f:4b:77:
f7:71:6d:d7:08:2c:98:10:83:be:59:15:8b:12:7d:91:b7:9d:
e1:bc:6d:11:87:63:2c:16:15:aa:51:a4:f8:de:54:35:b7:d0:
33:ce:53:2b:aa:a0:06:99:e9:b9:3b:03:d6:4d:67:aa:08:72:
29:8f:15:6b:e4:23:af:3b:ad:7e:2d:08:0d:b5:6d:8d:ee:54:
b6:43:00:63:83:a4:c9:90:ee:fd:7d:40:71:b1:e4:ec:22:2e:
f9:41:c5:1e:f5:7d:3c:50:8b:aa:ec:d8:7f:fd:2c:35:7e:51:
7d:65:73:8e:f7:c6:ef:00:2b:77:fb:94:7a:db:f0:f6:b8:b9:
d3:96:a0:dd:1d:4a:f8:94:67:d0:0f:21:9f:19:7b:16:9a:31:
55:a9:40:d1:8d:f1:35:99:c0:d0:ad:d2:8d:28:90:97:ca:a9:
e6:6e:1e:89:55:df:7e:77:31:91:c3:97:34:01:16:84:b1:e8:
9d:e0:fe:6a:9d:fa:16:fd:3f:ca:04:0b:95:43:48:67:fd:6b:
d4:56:e8:5e:e3:ee:ce:57:74:08:7b:76:c8:9b:08:89:0e:c3:
f7:71:18:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org