Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/p7-RikvmP-rJWpkCevjFKMe25VA.roa
File: p7-RikvmP-rJWpkCevjFKMe25VA.roa (raw, json)
Hash identifier: QcXE5SJhJlSZ25SGf7ytAPTWjAvb/kRk/gIXV418rag=
Subject key identifier: A7:BF:91:8A:4B:E6:3F:EA:C9:5A:99:02:7A:F8:C5:28:C7:B6:E5:50
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 09E7
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/p7-RikvmP-rJWpkCevjFKMe25VA.roa
Signing time: Wed 29 Sep 2021 02:52:20 +0000
ROA not before: Wed 29 Sep 2021 02:52:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9918
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2535 (0x9e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 02:52:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A7BF918A4BE63FEAC95A99027AF8C528C7B6E550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:74:73:df:24:59:1a:47:9d:14:a7:38:70:99:
85:c9:70:48:df:78:01:17:79:c7:65:ac:cf:e7:91:
61:3a:1d:64:e7:c5:57:59:fc:ef:da:4f:eb:e5:dd:
73:4d:0d:dc:53:21:65:51:37:aa:14:ac:6e:f1:66:
39:89:c0:cf:1c:44:72:7e:45:43:6b:86:b2:c8:b9:
56:a1:54:66:2f:44:6b:db:98:3a:a1:6d:37:01:7b:
c2:62:76:ed:74:de:7e:cf:c6:a4:7f:aa:54:a6:f1:
88:5a:22:19:58:68:c9:9d:c2:52:38:d0:e5:cc:ef:
2d:3c:0b:89:3c:e9:8a:51:63:4e:69:65:05:2b:53:
28:4b:34:84:20:73:46:dd:93:01:97:e8:7a:d2:e5:
c4:53:4f:8d:48:9e:50:b1:1c:43:6a:7a:e7:b9:34:
ba:04:61:30:d4:8b:43:0d:46:ee:d8:c6:bf:41:96:
72:c9:1e:5c:77:e4:a4:c7:d7:5d:56:44:6b:fd:d7:
c2:04:a8:a5:0c:ee:ab:1c:34:d7:89:42:ff:59:0b:
56:21:f7:41:51:3c:92:dd:e0:d8:03:ab:f6:08:33:
2f:81:99:72:7b:cc:5b:ec:99:a5:e5:20:8e:f1:72:
0a:9a:ae:30:82:5b:8c:3e:56:9b:26:0e:7a:f9:f3:
02:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BF:91:8A:4B:E6:3F:EA:C9:5A:99:02:7A:F8:C5:28:C7:B6:E5:50
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/p7-RikvmP-rJWpkCevjFKMe25VA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6c:c1:f9:f7:01:2a:b6:03:09:87:07:30:12:95:dc:20:92:73:
fc:a2:48:86:49:75:69:3e:f6:c6:62:14:98:93:ed:ae:d8:0c:
c9:be:f0:bf:0b:19:a3:b0:93:dd:64:dc:e5:35:88:da:a2:13:
ee:31:e0:67:e0:05:97:f6:2c:2e:22:97:14:87:37:37:f0:99:
ea:47:8a:36:08:41:c6:0a:e4:af:72:37:31:91:d3:91:55:2c:
58:cf:55:7a:4a:dd:5d:ad:a4:a5:fe:22:12:48:c5:1b:a6:3e:
db:82:78:42:1c:d4:81:08:a7:91:47:a2:21:bb:6e:0b:4e:ff:
e4:be:54:fa:a0:c0:a8:79:eb:7f:71:28:17:8f:9a:06:b3:a7:
7f:c5:6c:13:be:cc:6b:77:7b:03:3b:68:e2:13:0a:72:2a:05:
b0:5d:29:4e:fe:ab:ce:f8:c4:93:26:1e:7c:0f:d9:bc:bd:86:
fd:a2:ac:15:ad:60:c1:2a:c4:16:9f:11:3c:39:32:9f:74:a3:
80:8d:05:09:3b:56:12:22:1a:58:bd:de:ad:bf:70:73:14:a3:
d3:80:f0:07:d7:36:60:a6:fe:bb:2c:4a:dc:8a:12:2c:71:35:
a5:99:98:19:ad:58:73:f0:de:50:d2:bd:fb:4c:d4:ed:b2:70:
c0:bc:16:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org