Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/s16RVon3WJfkD1X0IkL7YTlGdno.roa
File: s16RVon3WJfkD1X0IkL7YTlGdno.roa (raw, json)
Hash identifier: mxv9b66s+vdwe3EdrsLCyODdCml7K7r+yrWg3nrWauQ=
Subject key identifier: B3:5E:91:56:89:F7:58:97:E4:0F:55:F4:22:42:FB:61:39:46:76:7A
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 090E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s16RVon3WJfkD1X0IkL7YTlGdno.roa
Signing time: Sun 07 Feb 2021 06:52:46 +0000
ROA not before: Sun 07 Feb 2021 06:52:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2318 (0x90e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Feb 7 06:52:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B35E915689F75897E40F55F42242FB613946767A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:61:4f:dc:12:37:38:6b:c7:b0:8b:35:e2:
53:c7:ec:38:60:54:7a:21:e1:69:0e:2f:69:ee:9b:
c8:0e:9c:5c:9c:12:00:5c:77:eb:f0:e3:60:70:5f:
bc:1d:23:21:d1:62:a0:3a:1c:88:44:ed:c9:bf:45:
ef:21:00:a6:fb:28:6e:41:f7:b0:81:4c:de:07:17:
12:26:f7:09:5b:58:19:3e:52:04:a3:73:f8:30:03:
a3:36:ad:12:5e:e3:09:f9:c2:e7:44:2b:df:01:f3:
70:25:b6:24:8b:71:70:d6:80:1b:1e:bf:cf:74:2c:
60:35:7a:6c:47:3c:95:6e:c6:ed:83:d9:6b:6f:53:
ec:01:0a:68:1f:18:b1:75:fe:a1:66:8c:5c:ae:8d:
5d:fd:8b:ef:f0:a4:74:dc:94:f8:1c:f9:ef:21:25:
3b:9d:42:34:4c:af:aa:84:3b:dd:45:cf:c3:ff:3e:
39:7e:78:01:2d:21:d9:da:45:51:a2:76:08:9c:cb:
c2:a9:c0:32:48:3f:15:7c:85:2f:ea:30:7c:89:fe:
0c:2b:59:b9:2e:2a:6c:c8:4e:cb:4c:8b:65:d5:a4:
ac:12:ab:df:5b:a0:6e:a4:10:a9:61:15:04:27:1a:
6b:ff:a8:d8:7f:a9:42:67:4f:25:5f:2d:4c:d8:34:
d8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5E:91:56:89:F7:58:97:E4:0F:55:F4:22:42:FB:61:39:46:76:7A
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s16RVon3WJfkD1X0IkL7YTlGdno.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:75:49:3d:85:46:db:51:fb:8c:3d:7b:b4:25:d3:fc:5d:38:
66:c8:2d:73:ed:1e:10:a4:6e:8d:b6:7e:e8:19:56:14:21:c5:
a9:b2:b2:f7:2f:94:1a:65:1f:f1:47:8e:00:33:c3:b1:95:b0:
9b:de:3c:27:fc:4e:89:d5:c2:0d:5b:1c:0b:8b:8c:62:10:7b:
8d:50:73:ab:aa:e4:1d:61:4d:9b:28:75:4a:2b:38:3a:57:28:
3a:80:3f:b0:8d:34:6c:6c:38:8f:47:26:1a:73:8c:cb:f7:7f:
64:33:b6:19:c4:d0:f3:df:8a:4b:e4:52:54:6b:69:e4:d8:3a:
c3:14:88:4d:8b:1f:2d:7b:0b:4d:7e:29:70:33:9e:64:55:1e:
a9:67:3d:ad:32:f1:28:b1:83:bc:97:03:78:ec:93:84:4f:ba:
96:bd:f0:66:9b:73:70:07:f4:8f:84:05:37:6b:87:32:23:6f:
0e:66:2e:6d:59:41:aa:7a:09:98:1d:5c:40:ce:76:67:d1:54:
0e:26:02:a5:70:73:5c:65:ef:ba:8b:ef:c2:5a:78:58:8a:87:
dc:ae:a0:b9:4f:4e:ea:46:b6:06:ba:3c:36:7c:7c:46:bc:eb:
b3:a7:a5:39:f3:57:c0:79:30:fc:84:5c:db:c0:3c:9e:69:ad:
94:e8:a6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org