Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/sIjPxmFIJh9Bz-Y9QhC7ruH2V_s.roa
File: sIjPxmFIJh9Bz-Y9QhC7ruH2V_s.roa (raw, json)
Hash identifier: fPfFlOFoh4fJDx5MVKWAWSY0aF7aVH/ozjS4mtboFwQ=
Subject key identifier: B0:88:CF:C6:61:48:26:1F:41:CF:E6:3D:42:10:BB:AE:E1:F6:57:FB
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0B78
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/sIjPxmFIJh9Bz-Y9QhC7ruH2V_s.roa
Signing time: Tue 11 Apr 2023 08:36:54 +0000
ROA not before: Tue 11 Apr 2023 08:36:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 54994
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2936 (0xb78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Apr 11 08:36:54 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B088CFC66148261F41CFE63D4210BBAEE1F657FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c8:0b:d2:96:12:05:19:49:73:15:43:cc:c9:
54:e3:eb:a9:00:da:05:31:61:0a:9d:59:cb:f2:be:
8c:2e:0b:21:05:08:4f:d3:32:d7:e9:92:f7:14:d8:
f9:a3:dc:bd:71:c8:7e:64:d1:cb:6d:e2:6c:88:49:
a3:d6:b0:a9:de:f5:1b:d4:06:97:99:55:08:91:21:
37:21:74:f0:69:6f:08:45:38:60:cb:11:e1:57:69:
c0:68:00:21:c0:76:de:58:c8:01:9a:81:29:30:ff:
98:96:0e:60:79:82:43:84:c9:d6:86:ff:6f:96:f9:
17:c1:c8:8a:9a:0a:03:96:61:5f:ff:1e:a0:20:9b:
63:0c:03:d9:a7:14:97:49:91:bc:a8:9f:de:e7:7e:
2a:61:cf:fa:3e:f4:54:6f:65:e5:e6:c5:ba:6d:85:
fb:7e:f7:ea:c3:10:1a:45:21:4e:3e:de:6c:ba:3b:
e9:00:2b:39:ee:2b:6a:44:aa:2e:30:37:75:5f:fc:
1a:1d:46:1e:35:c3:1c:55:0b:34:02:27:88:7c:2b:
7a:b4:30:df:35:5a:cb:33:38:86:f4:35:92:8a:81:
29:81:95:81:4b:26:ff:e1:4b:51:81:25:1f:58:ee:
ed:a6:ff:ab:da:38:61:09:c6:41:e6:87:d2:02:d6:
7a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:88:CF:C6:61:48:26:1F:41:CF:E6:3D:42:10:BB:AE:E1:F6:57:FB
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/sIjPxmFIJh9Bz-Y9QhC7ruH2V_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:80:3b:98:ff:2d:a9:eb:ff:8b:43:e7:2f:b7:af:c7:f6:54:
e4:d5:db:0b:bc:a4:84:c6:8c:9c:17:57:bd:78:c2:da:85:c6:
e9:85:55:a6:77:21:ef:3f:3d:6f:89:41:c5:b3:62:10:55:99:
85:a4:a7:34:19:9a:44:32:17:4f:b3:a6:37:e9:cf:26:aa:b1:
aa:cc:e1:7f:4e:b3:b6:17:e4:b6:65:2c:be:87:63:b7:4a:f4:
ab:d1:2e:96:db:95:0a:84:b7:43:2b:d2:ea:f7:2f:1d:fa:71:
da:11:91:b0:b4:2c:8b:f5:db:bc:ae:db:98:62:d0:80:41:82:
a2:1b:78:34:a8:9d:c0:bd:04:2f:b0:01:19:68:b0:ef:ee:73:
2f:a6:0f:14:7c:09:86:77:b6:c9:98:b4:d8:77:48:56:0f:c2:
ec:03:6c:4c:bb:48:6e:17:6b:1f:9e:6d:9d:c7:23:ab:96:09:
52:a8:e6:2c:a0:96:35:a0:b1:1c:84:51:47:af:a9:b2:32:f8:
ae:88:d5:5c:80:fd:c5:2f:8d:a9:f2:f4:59:3d:ec:8b:40:71:
f1:d8:f4:da:07:97:86:49:df:19:37:60:fa:2c:af:52:62:c6:
ec:9a:6e:02:25:9e:47:b9:c2:ad:f7:b7:33:72:e1:5a:22:7e:
c7:42:4f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org