Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ol5DKfbJvgL_vZzHlyIvoGOgIFc.roa
File: ol5DKfbJvgL_vZzHlyIvoGOgIFc.roa (raw, json)
Hash identifier: yJh3egNcICWRZ9rL0vjQaSv7oiL9m6NF9hnEpZeWEDM=
Subject key identifier: A2:5E:43:29:F6:C9:BE:02:FF:BD:9C:C7:97:22:2F:A0:63:A0:20:57
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 07A9
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ol5DKfbJvgL_vZzHlyIvoGOgIFc.roa
Signing time: Tue 29 Sep 2020 09:59:49 +0000
ROA not before: Tue 29 Sep 2020 09:59:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1961 (0x7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A25E4329F6C9BE02FFBD9CC797222FA063A02057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8e:ac:34:a4:f4:a7:1c:fe:80:47:21:00:f1:
6c:8c:d7:48:0d:4b:9e:dc:25:84:87:32:17:39:39:
b7:75:44:42:1b:01:63:87:ec:ba:64:45:9c:86:ed:
20:94:e0:d8:98:06:b4:84:ed:fb:7d:81:5f:35:ba:
ca:89:8a:80:2a:13:b2:16:09:30:d1:2b:fc:c5:6e:
44:e9:75:db:e5:87:ff:bd:5c:71:25:20:4a:61:6e:
1e:b3:7e:c3:4a:cc:c8:26:da:5c:cb:dd:73:e9:db:
54:5b:8c:b3:be:b1:75:50:95:74:78:db:8a:11:f1:
5f:8a:09:66:0a:57:40:e4:18:f0:de:bf:43:dd:fb:
00:09:46:7e:5c:cd:f3:88:5a:15:d7:8a:5b:d9:27:
ae:db:7c:65:65:12:3c:c2:24:b5:59:2f:7d:bf:63:
83:e7:eb:90:b9:46:64:e6:33:cf:ed:aa:24:02:b6:
1b:05:e1:5c:ee:4c:71:ed:e6:83:e9:48:90:a8:fc:
39:44:04:51:d8:aa:1b:8e:18:aa:20:32:a5:e6:86:
5b:20:78:34:78:73:c6:7a:62:d6:0e:ec:9e:51:3a:
0c:f8:ec:d2:ac:eb:5d:4d:42:8c:36:43:ee:8d:76:
e2:79:28:c1:0f:2e:b8:0c:20:6f:3e:77:26:4d:69:
34:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5E:43:29:F6:C9:BE:02:FF:BD:9C:C7:97:22:2F:A0:63:A0:20:57
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ol5DKfbJvgL_vZzHlyIvoGOgIFc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
59:72:ef:c0:83:19:47:42:a1:d2:16:cc:6a:ec:bf:d2:d9:f7:
cb:8a:b9:10:f8:95:30:c8:df:d6:11:44:00:cf:e3:79:73:6e:
a2:17:04:0c:05:db:bd:49:e8:0c:6e:4e:b3:8f:11:61:e5:fa:
20:09:cd:eb:ae:c7:27:fe:84:74:04:87:b5:a6:6d:d2:fa:bb:
34:35:51:02:e2:75:30:d9:36:86:a9:e2:ba:e0:ca:ac:79:9e:
5a:11:d7:e0:d5:04:6e:9a:3a:09:a2:6b:ce:bf:cc:29:07:bf:
86:53:51:05:cb:ad:12:d0:f9:f1:70:a1:96:ca:77:11:24:15:
0e:c9:6c:c9:50:6c:f0:8e:be:36:6f:b6:8a:39:27:48:18:0f:
e3:db:9b:e0:61:e0:60:20:73:95:3b:00:43:b9:ae:6c:eb:7f:
86:fa:cf:e5:d8:79:ce:2e:af:2d:fa:ca:a8:83:e1:96:c5:b3:
79:9a:61:88:66:78:da:85:b6:ba:4e:76:24:e3:c7:0e:85:87:
89:00:46:e6:e2:90:3a:54:86:1e:60:73:b3:25:5f:61:60:17:
93:8f:e5:eb:d1:2d:23:9f:3b:1f:b2:6d:14:4f:f0:6e:31:b0:
8f:c0:7c:d0:d1:fc:f1:5a:57:16:8e:21:84:12:a2:b0:a0:42:
bf:21:61:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org