Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jiIZyNTq68jhi7CevXI1gzS_uso.roa
File: jiIZyNTq68jhi7CevXI1gzS_uso.roa (raw, json)
Hash identifier: jNjGzjIFiz5/y468gVz08novnJHRw6wHJ6B4Ip0Rm9Q=
Subject key identifier: 8E:22:19:C8:D4:EA:EB:C8:E1:8B:B0:9E:BD:72:35:83:34:BF:BA:CA
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0A32
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jiIZyNTq68jhi7CevXI1gzS_uso.roa
Signing time: Thu 13 Jan 2022 08:35:23 +0000
ROA not before: Thu 13 Jan 2022 08:35:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 211.78.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2610 (0xa32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jan 13 08:35:23 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8E2219C8D4EAEBC8E18BB09EBD72358334BFBACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:72:66:92:a1:8a:61:96:fd:16:2a:00:c6:
5b:6a:d8:6d:7f:87:de:de:87:2e:39:e0:91:95:63:
70:ca:74:b0:9a:20:de:83:9a:a9:95:81:2d:92:14:
d2:6c:9b:96:d2:f9:f3:72:15:2e:c7:70:20:cb:27:
ba:e3:02:b6:38:25:87:55:f7:64:74:0a:62:d7:93:
20:38:43:62:94:40:5e:65:c4:15:5a:68:3c:d7:cc:
80:3e:07:4a:e2:db:bb:e0:66:b6:a4:40:bf:18:07:
3a:2f:76:52:4d:d4:78:27:51:4d:21:be:09:b5:38:
62:de:5b:65:82:94:76:e1:9e:2a:24:03:5b:db:3e:
05:63:95:d2:35:d9:73:6d:78:b8:a6:b9:a4:ee:10:
2a:d1:15:1a:9d:76:c1:88:34:a6:74:e1:7a:a8:27:
ee:11:63:80:bc:23:e9:9b:0e:d5:a9:a8:2f:41:72:
64:dd:48:c2:e1:dc:60:38:66:df:57:6c:2d:be:c2:
f3:ac:09:31:24:bd:d4:79:de:a5:19:57:1a:09:5d:
22:57:ba:9f:6b:95:c3:ef:d0:d5:1c:01:1c:a9:1a:
51:65:b8:5d:67:d4:d1:33:a7:dc:eb:e1:25:19:b3:
ef:46:f8:95:b9:e6:4d:fb:c8:bf:39:fc:13:8e:88:
bb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:22:19:C8:D4:EA:EB:C8:E1:8B:B0:9E:BD:72:35:83:34:BF:BA:CA
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jiIZyNTq68jhi7CevXI1gzS_uso.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.4.0/22
Signature Algorithm: sha256WithRSAEncryption
83:16:da:d5:d9:f9:1f:ee:3d:ae:f5:d6:22:51:3c:e6:9c:b9:
eb:5d:42:03:d6:76:33:af:1a:97:28:08:00:c4:08:f3:6c:ce:
d0:86:b7:c8:83:0c:f1:7c:06:16:d4:0c:de:63:4c:83:ab:e6:
1c:91:ad:30:14:24:f7:24:25:e3:70:a3:40:78:1c:b2:5f:34:
c7:04:40:18:c6:31:ed:7e:c5:d2:85:70:1c:5f:79:9e:0b:03:
e9:22:7d:1d:ab:bc:16:94:db:b1:ac:4c:b3:05:0e:02:c4:42:
a0:97:33:6f:06:3c:f9:f9:b1:35:1b:59:9e:18:23:29:d7:af:
60:0e:5d:57:24:ef:3e:e4:9d:f1:f1:7e:ff:40:cc:82:50:60:
ab:69:5f:14:ef:a2:1b:24:4d:d6:ac:bc:ab:85:db:23:57:04:
d0:bf:f4:b3:24:81:96:c7:39:ea:70:33:a1:d5:77:5a:26:e7:
85:83:f9:98:82:32:98:0a:79:3c:90:07:f9:2d:a6:4c:02:54:
0a:c0:57:35:86:fd:8a:1a:e5:5b:38:0b:ea:c3:70:3c:87:bc:
5c:03:83:1f:a7:3a:a8:85:37:59:b7:18:bb:cb:d9:1e:07:16:
f3:ef:53:2a:f0:39:e1:24:3e:2c:8d:de:92:3d:88:47:0e:d9:
7d:ba:9d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org