Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/lU3U2w4UnK2Jbb1b7TobwoFgoEg.roa
File: lU3U2w4UnK2Jbb1b7TobwoFgoEg.roa (raw, json)
Hash identifier: y0tsKxs69E7Dil41OLxF+9P2GgxqtJBFvAdoTTFUL3k=
Subject key identifier: 95:4D:D4:DB:0E:14:9C:AD:89:6D:BD:5B:ED:3A:1B:C2:81:60:A0:48
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0912
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lU3U2w4UnK2Jbb1b7TobwoFgoEg.roa
Signing time: Sun 07 Feb 2021 11:42:35 +0000
ROA not before: Sun 07 Feb 2021 11:42:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9922
IP address blocks: 61.61.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2322 (0x912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 11:42:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=954DD4DB0E149CAD896DBD5BED3A1BC28160A048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:36:00:5b:58:b7:5b:5f:d8:c9:a6:2b:40:
87:cb:d2:93:78:3b:16:44:78:34:e7:40:a8:71:26:
70:a2:34:f1:ff:7e:b1:bb:6e:87:7f:3f:75:6c:22:
2c:c1:53:6f:cf:05:81:96:c0:70:d1:a0:cf:c1:9c:
09:55:46:7b:ef:a3:a0:58:1c:47:99:e5:41:08:77:
bd:b3:f2:0b:db:e7:8d:b1:88:25:ec:71:06:bf:57:
09:c6:3d:4d:ce:e6:dd:77:30:5d:03:8f:4e:e0:84:
98:18:b4:b4:5e:1b:b2:ed:0d:e9:90:a9:58:88:a8:
ec:f7:0b:d4:0f:65:02:19:d1:d0:33:ab:90:5b:e7:
36:9c:3a:a3:93:82:73:70:2d:90:b2:f7:6b:7d:4e:
d8:ae:96:71:cf:59:ee:d1:c6:8a:c6:de:70:42:bb:
b1:da:eb:6b:84:67:5b:04:2c:11:18:35:80:16:50:
ee:6d:3f:21:8f:43:5b:e3:4c:b9:cb:2a:50:9f:30:
40:c4:4d:7f:4e:3b:bc:74:f3:36:5f:5c:0b:b8:39:
98:4d:de:6d:8c:0b:74:6b:5b:21:8c:7d:7b:e5:54:
99:fb:a3:bb:f1:bd:75:8d:e9:52:97:96:38:13:6c:
68:71:2a:f0:78:e2:66:d7:37:b5:d5:4a:e2:15:2d:
65:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4D:D4:DB:0E:14:9C:AD:89:6D:BD:5B:ED:3A:1B:C2:81:60:A0:48
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lU3U2w4UnK2Jbb1b7TobwoFgoEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.80.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:84:61:fb:16:04:11:e4:24:94:83:9e:fb:e0:7d:33:96:99:
86:f7:49:5d:08:9d:f4:c8:61:7e:44:09:3c:41:95:5f:13:e3:
9e:54:cf:a3:e8:c0:b1:fd:23:08:b7:2b:6e:00:33:6b:24:3d:
eb:8d:6d:43:46:1c:35:ae:38:9d:6b:50:7e:21:50:ff:57:8d:
a9:06:d6:aa:60:0d:cd:fd:d6:02:13:3b:f1:3a:e3:c0:fb:e1:
6a:f2:69:82:dd:78:ba:40:0a:de:67:8c:1c:57:bb:3b:91:31:
13:e1:35:19:d1:53:a2:73:09:72:82:02:05:60:af:b6:ce:93:
34:39:fb:47:c0:a0:52:de:b0:8d:d6:7e:d3:1a:18:a0:08:c2:
d7:7f:33:86:36:46:76:3e:be:aa:3e:ce:02:7f:29:31:62:c5:
95:46:af:b2:ac:4a:6c:0d:3f:5a:02:60:d6:ed:e5:41:4d:8e:
b4:eb:9c:eb:04:9a:15:fb:7a:0f:1d:18:7f:a6:ab:9f:f6:d5:
6e:e7:bb:17:67:dc:d0:4f:03:6e:b6:15:9d:f4:a5:9d:18:2b:
51:20:f4:79:7a:c9:b2:c4:30:e0:ef:3c:66:94:8e:67:81:0c:
50:54:d0:b0:e6:59:4a:4d:0a:22:e5:cb:d3:80:da:66:5b:04:
8b:e2:c9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:47 2025 by rpki-client