Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/phOQhu3G1n1-P_2nb6QILWa3Y8k.roa
File: phOQhu3G1n1-P_2nb6QILWa3Y8k.roa (raw, json)
Hash identifier: y1MYgY3VU1Zd7dY9Z9gl//NglDmPHsYLx1WPDu28IqM=
Subject key identifier: A6:13:90:86:ED:C6:D6:7D:7E:3F:FD:A7:6F:A4:08:2D:66:B7:63:C9
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/phOQhu3G1n1-P_2nb6QILWa3Y8k.roa
Signing time: Thu 15 Sep 2022 02:49:53 +0000
ROA not before: Thu 15 Sep 2022 02:49:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A6139086EDC6D67D7E3FFDA76FA4082D66B763C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:97:da:19:43:2f:ca:72:e3:6e:9d:b1:3c:c3:
2b:fe:81:8c:c4:f7:ec:cb:03:dc:f9:5c:15:d3:e2:
85:d6:15:7f:60:f3:bf:1d:ae:09:45:9d:68:ce:d0:
a2:fb:3b:28:97:a4:f4:4e:60:2a:9e:58:1d:fd:35:
1d:47:ba:39:90:2d:12:a3:e8:9e:af:c0:94:54:93:
df:2c:2f:6d:f5:af:79:54:6e:c3:09:e2:dd:1b:da:
35:9d:89:8e:24:ee:2c:f2:82:a6:de:3a:fc:94:e1:
fc:2d:2c:57:1b:a5:ed:ef:76:f5:da:80:4f:68:3d:
74:d0:80:00:23:db:a4:65:b6:3a:ee:c3:b3:22:42:
e4:39:41:5a:fa:b0:f7:73:2a:1d:e8:15:7e:a1:55:
a5:e0:d2:19:4b:5e:b9:ea:65:c0:cf:d9:6f:8a:94:
20:ef:6b:fa:ff:d2:2b:f4:e3:be:1f:79:18:fc:4e:
16:0b:b4:37:73:15:c2:26:10:ca:7c:be:ef:e1:08:
89:bf:03:a9:23:d7:2c:0e:27:1e:64:86:8e:5f:eb:
f2:f2:3d:f5:f6:98:0c:3c:d4:40:0c:cd:d2:2f:d9:
3c:db:85:5d:8d:0d:04:1b:7a:21:b0:e0:21:fe:32:
0e:b1:17:7e:76:e5:10:63:6e:f7:1a:5c:63:dd:0f:
68:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:13:90:86:ED:C6:D6:7D:7E:3F:FD:A7:6F:A4:08:2D:66:B7:63:C9
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/phOQhu3G1n1-P_2nb6QILWa3Y8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.72.0/22
Signature Algorithm: sha256WithRSAEncryption
03:90:0a:b4:91:a0:d3:1e:5e:e4:74:bf:2c:b6:60:04:19:55:
12:03:a1:b5:38:87:59:9e:e9:13:2d:a6:fc:4b:6f:20:1d:33:
b8:4f:39:e2:5b:20:08:53:a1:c9:c8:c0:85:35:cb:c0:b2:8f:
ca:d8:a2:08:d7:08:be:e1:76:77:92:b5:27:78:8e:fa:1b:f2:
2a:c8:c2:f7:9b:4f:b6:b2:d0:eb:52:97:c1:e6:4a:1b:df:89:
bd:40:11:ab:1d:1b:61:9e:a0:21:be:b6:54:87:30:28:6b:8c:
f5:89:1d:a3:37:63:82:1a:85:69:a7:e1:3f:7e:c1:69:c6:84:
a2:c2:5a:f8:ba:b2:90:aa:1b:0a:e2:b0:1f:a8:92:ec:d7:f4:
23:5c:16:18:28:65:ba:9c:8e:09:33:40:cd:9f:d5:1e:b3:76:
b9:5c:e1:2e:f2:07:21:ff:cd:e0:7b:13:d8:68:2d:fc:b6:72:
7d:9f:01:24:03:bf:fd:7a:90:bb:b6:36:29:cf:eb:83:a4:8c:
c0:34:ec:2c:1b:41:73:40:2a:ff:f6:ce:7a:52:53:01:15:8c:
98:c7:f2:b2:00:08:15:24:9f:fa:1f:e5:c0:a1:0b:32:67:2e:
bc:eb:1a:d9:0b:ea:7b:a7:76:0e:ed:cd:8b:74:93:0f:38:6e:
18:5d:d4:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org