Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/lb3vGXynAgaQeLxJcUkNE9MRsCg.roa
File: lb3vGXynAgaQeLxJcUkNE9MRsCg.roa (raw, json)
Hash identifier: /7TbPGQnxFNm4pO4F2vcnQJ8RRiKYu+bGwaMZIt/QK8=
Subject key identifier: 95:BD:EF:19:7C:A7:02:06:90:78:BC:49:71:49:0D:13:D3:11:B0:28
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0A36
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lb3vGXynAgaQeLxJcUkNE9MRsCg.roa
Signing time: Thu 13 Jan 2022 08:36:20 +0000
ROA not before: Thu 13 Jan 2022 08:36:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 211.78.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2614 (0xa36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Jan 13 08:36:20 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=95BDEF197CA702069078BC4971490D13D311B028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:17:36:7a:d0:fc:63:ee:a0:ae:b0:27:29:89:
ff:cb:2a:f2:76:fb:7d:1b:35:d2:dd:f6:90:5b:39:
20:a2:21:b8:55:22:06:98:d1:6b:ce:7c:c2:4f:35:
0a:5c:31:c4:3f:aa:1b:ec:8b:eb:eb:49:ec:1b:e2:
7c:f2:1a:ad:a5:a0:4f:54:30:f9:0c:0b:f0:0a:67:
0b:75:bc:c5:2b:d6:8c:4a:ee:70:09:90:ad:54:66:
83:94:9b:08:c8:44:6b:e5:50:62:18:8d:8f:3d:2e:
f7:8f:95:5b:ab:d6:23:b0:1f:45:46:c8:8b:25:30:
0a:1d:c6:e4:3b:ec:0e:96:5f:15:65:d2:84:aa:cf:
17:8e:e2:e3:96:0e:85:49:e9:fb:fe:f5:5d:11:7e:
59:a6:65:d0:f0:78:93:61:98:d8:71:40:7d:1b:01:
94:dd:ae:49:6c:33:72:99:3b:61:12:dd:26:dc:73:
8a:d9:b1:b7:60:a3:17:9c:8a:b5:da:3d:9e:cb:6d:
70:44:16:d3:93:78:16:fb:29:a2:a8:85:24:8c:d0:
06:6e:20:07:30:6b:7e:b9:dc:37:2b:a9:1c:56:0c:
fb:a5:13:58:1f:5f:07:02:3c:e9:23:38:fa:97:b5:
5e:d0:21:71:a8:06:09:9c:f9:f6:81:43:bd:fd:fb:
a4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BD:EF:19:7C:A7:02:06:90:78:BC:49:71:49:0D:13:D3:11:B0:28
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/lb3vGXynAgaQeLxJcUkNE9MRsCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.24.0/21
Signature Algorithm: sha256WithRSAEncryption
76:f7:e1:07:21:cd:98:21:61:05:c0:55:46:0a:fb:41:cb:e1:
c6:51:78:48:0d:79:ff:dc:02:e0:6b:33:7f:7d:44:39:bb:76:
54:d6:9c:13:71:54:44:01:51:44:b8:10:f7:af:c4:5b:43:ad:
1e:96:6f:0e:ab:5e:88:35:b1:06:ed:6d:f4:31:cb:46:4a:36:
88:4e:6b:5e:2c:07:11:11:6c:df:45:1a:1a:db:86:0e:9f:9f:
23:c4:79:df:f5:d2:b9:8d:c7:d3:b2:42:33:8b:29:bc:74:ff:
3f:6f:84:0d:16:72:47:4a:f6:93:15:8a:39:af:0f:bd:63:d0:
6e:dc:60:82:e0:d7:2a:71:1b:c3:3b:20:05:79:f9:2b:28:32:
d8:ad:cd:49:30:46:b7:49:81:f9:e4:e8:bb:61:7f:db:e0:c3:
8b:4b:1a:9e:b0:b7:c4:29:7c:1b:a9:de:44:b2:4f:40:46:7a:
56:ce:18:a5:fc:38:11:6e:00:22:48:af:b4:ab:b5:70:93:cb:
c2:b2:fc:83:fc:8b:b4:fc:c0:c2:24:9d:ff:2c:3a:aa:b7:fa:
9a:32:fd:84:f4:24:9f:75:73:c0:e0:f0:cf:38:74:d4:2f:98:
9b:8b:32:a9:a7:72:b5:a9:8b:80:1d:0d:ac:e9:d4:04:61:c8:
e1:04:7a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:47 2025 by rpki-client