Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/nGJBrjRFnzRbtSCScMt9Yo8IBUM.roa
File: nGJBrjRFnzRbtSCScMt9Yo8IBUM.roa (raw, json)
Hash identifier: +2PkbJaDQNf8M5ps5c6zyEtbkdFu4AUFlL9DTxGT3GY=
Subject key identifier: 9C:62:41:AE:34:45:9F:34:5B:B5:20:92:70:CB:7D:62:8F:08:05:43
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nGJBrjRFnzRbtSCScMt9Yo8IBUM.roa
Signing time: Thu 15 Sep 2022 02:49:50 +0000
ROA not before: Thu 15 Sep 2022 02:49:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C6241AE34459F345BB5209270CB7D628F080543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6c:73:11:f5:10:95:c9:00:19:82:a8:03:e6:
0d:42:e1:23:12:f4:fd:85:bd:38:f2:ff:48:cb:d1:
fc:71:4c:fe:7d:cd:52:33:ba:c9:c2:19:3f:e3:e9:
aa:85:dc:cd:da:96:b8:c5:14:e7:93:f9:9c:9a:94:
32:b1:36:7b:42:66:f3:9f:bd:8c:a3:34:0e:a8:b7:
df:80:8a:98:ea:55:0b:46:d7:06:60:80:2d:c0:3e:
c0:1f:b4:6d:81:4e:fe:ce:97:7c:1f:16:76:57:c9:
b8:c9:52:71:3e:ad:9d:0c:bb:e6:d9:55:1e:9e:0e:
8c:28:1e:d9:f5:a7:31:6b:9b:4c:5b:56:d1:be:05:
91:40:bb:02:b9:8b:d0:1f:83:05:ce:6c:fa:b1:21:
ff:2d:c2:eb:0b:dc:35:18:74:6a:6e:cf:6f:82:ba:
b5:4f:45:4b:bc:39:69:39:71:ef:88:35:f9:e6:bd:
c4:47:bb:75:95:48:94:37:bc:7d:9e:a7:eb:2f:a4:
61:63:ce:29:b7:d4:e0:86:29:94:40:fe:19:b7:82:
c9:a8:dc:a6:98:ed:b6:97:f6:3e:d5:76:7b:a9:a5:
c4:e8:81:d3:a9:d3:50:66:af:be:8d:0b:d7:f6:05:
8d:c1:78:a7:7d:27:e7:f4:fb:c8:36:65:cd:8a:8a:
e5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:62:41:AE:34:45:9F:34:5B:B5:20:92:70:CB:7D:62:8F:08:05:43
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nGJBrjRFnzRbtSCScMt9Yo8IBUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.56.0/22
Signature Algorithm: sha256WithRSAEncryption
63:c7:70:75:6f:03:a8:c7:1d:41:98:64:29:23:3b:12:a7:e5:
12:a5:c0:dc:8e:f5:75:2c:1e:12:75:b2:e1:9b:2e:a7:aa:37:
46:84:71:ef:cf:23:51:e3:c1:a0:44:bb:b0:7d:28:ec:a1:30:
15:c1:3a:28:12:3f:26:b4:a8:1d:44:9b:ca:f7:df:2d:61:2e:
a3:68:10:19:07:c7:1d:17:2d:c7:ac:f8:07:8e:78:82:94:10:
10:2b:2b:6c:e0:89:a3:e9:c7:fa:40:46:d0:21:e0:61:77:8a:
3f:08:f2:09:07:46:18:3f:b0:cb:18:08:be:72:cb:6f:02:da:
d9:41:d9:95:d4:3f:84:69:54:22:fd:26:4d:9e:ed:5f:27:4c:
d3:b5:54:df:7f:30:04:b4:8b:6c:9a:aa:39:db:5c:0d:00:c9:
7c:ba:8a:05:43:c9:9b:72:e5:20:74:36:d6:c6:de:7c:de:19:
6c:2f:f3:ec:98:63:63:5e:33:d0:90:fa:ca:71:4d:2e:8a:57:
f2:4a:78:3f:ab:97:bf:66:61:df:38:ab:07:d4:f2:22:41:24:
22:4e:69:93:dc:88:20:91:d9:fa:d5:eb:75:80:ea:af:ed:d7:
5c:ef:1f:35:c8:ac:bc:2d:b9:64:4e:c7:3e:6d:6c:d0:46:e1:
f9:c3:dd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org