Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/nnCx7Ou61RKiOsE4i9xIcXxub8E.roa
File: nnCx7Ou61RKiOsE4i9xIcXxub8E.roa (raw, json)
Hash identifier: c55FgFBOiR+mO4KLoIHJk276Ype04Ya9XYvD39QTyMI=
Subject key identifier: 9E:70:B1:EC:EB:BA:D5:12:A2:3A:C1:38:8B:DC:48:71:7C:6E:6F:C1
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C2E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nnCx7Ou61RKiOsE4i9xIcXxub8E.roa
Signing time: Fri 01 Sep 2023 09:14:03 +0000
ROA not before: Fri 01 Sep 2023 09:14:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3118 (0xc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9E70B1ECEBBAD512A23AC1388BDC48717C6E6FC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4e:e8:8b:62:57:12:8e:15:62:56:ce:56:0b:
4d:32:7c:f5:9d:23:45:41:1d:52:ad:63:f5:20:17:
dd:59:d0:a9:90:59:97:e1:26:c2:7d:af:73:19:ff:
3a:0f:41:41:24:e8:7e:d5:7a:e7:74:74:4a:0b:1e:
12:2e:33:0c:40:60:af:96:49:8f:db:e0:a1:d5:1c:
f1:06:aa:37:dc:c0:92:42:30:cd:6f:07:dc:44:d9:
95:95:d8:68:8b:a9:36:8a:72:5f:d7:cb:9d:bd:a4:
28:52:a0:bb:72:1a:17:9d:20:1f:91:be:aa:20:a0:
0d:e9:05:24:49:bf:5a:5e:4c:f4:91:27:9c:b9:59:
38:39:ce:72:4c:82:0d:81:59:44:fd:3b:29:78:bb:
19:05:6b:cf:db:b1:ca:33:0b:93:39:e6:eb:d6:0b:
e4:6c:05:7f:e4:05:5c:22:1a:d1:47:4c:a7:15:54:
d9:e3:42:46:05:98:c6:60:a7:a5:58:f1:fb:f7:1a:
be:63:3c:49:75:db:2a:45:09:1b:22:b1:42:16:6e:
7e:a2:24:71:1d:64:04:8b:c0:d7:cf:49:1d:92:fc:
16:51:75:cf:de:dd:dd:ca:c7:b5:e9:10:92:50:ef:
3a:a6:b3:cc:38:44:b1:d6:56:8d:f0:b7:70:32:37:
51:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:70:B1:EC:EB:BA:D5:12:A2:3A:C1:38:8B:DC:48:71:7C:6E:6F:C1
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/nnCx7Ou61RKiOsE4i9xIcXxub8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
59:4d:1e:31:96:47:6c:d9:f6:85:e3:46:22:26:76:fb:b1:17:
71:9c:1a:10:26:52:ac:4c:67:ea:83:f9:41:92:e7:6e:f8:f9:
e1:b3:5d:0f:89:85:3e:b8:15:74:32:70:a0:39:ca:6f:16:48:
82:2f:75:c5:7e:5f:15:46:3e:e0:5d:08:37:9d:03:9b:73:32:
84:b2:f3:81:13:f3:66:cd:dc:29:52:02:43:78:fb:2a:fa:71:
4d:92:01:ac:8b:8d:df:7b:6c:dd:22:94:02:f5:7f:4b:a5:ad:
c6:96:ec:ec:8a:f8:52:a9:e5:b9:03:9c:cc:eb:6c:90:44:50:
00:f7:cb:d1:11:e1:ce:60:12:a6:2f:bb:16:b0:16:06:e6:4a:
b2:f8:f5:d0:cb:7b:0e:fb:96:de:b9:33:f7:8e:1d:ea:34:23:
88:4f:21:e1:a7:6c:1b:f2:37:5a:09:2f:84:94:ba:51:64:36:
1e:20:e4:9b:bf:f7:89:33:20:23:29:3f:ba:4e:f6:e4:67:a7:
d7:bf:fe:bc:b6:5e:fb:e8:08:67:5e:3e:44:4d:2c:7e:ba:1c:
1d:ee:cc:ec:6c:04:3a:18:2a:98:79:5a:11:93:e2:60:c9:77:
94:2d:a2:57:39:7b:63:7a:27:5d:3f:5b:ac:89:fc:66:c6:be:
13:1d:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:10 2025 by rpki-client