Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/t6vuPXRRg03mksARrrkdMDUMXS4.roa
File: t6vuPXRRg03mksARrrkdMDUMXS4.roa (raw, json)
Hash identifier: nsqQp75W3aRfCNSDArkso4DrffvB+32gCPyh6TLyKrU=
Subject key identifier: B7:AB:EE:3D:74:51:83:4D:E6:92:C0:11:AE:B9:1D:30:35:0C:5D:2E
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/t6vuPXRRg03mksARrrkdMDUMXS4.roa
Signing time: Thu 15 Sep 2022 02:49:46 +0000
ROA not before: Thu 15 Sep 2022 02:49:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 61.61.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7ABEE3D7451834DE692C011AEB91D30350C5D2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:8d:76:b0:54:ec:ef:3a:67:16:ab:1a:60:
57:21:50:41:2e:c5:5e:ef:81:86:ba:e8:fe:56:0b:
c3:c7:b0:9c:42:2c:95:0f:ff:ea:03:ae:70:56:57:
e8:d1:78:63:99:37:d8:e6:ef:51:5c:d8:04:ba:b4:
62:a2:3b:3c:cc:b7:5b:02:50:35:97:ef:38:33:d7:
dc:7f:df:d0:0a:b3:a9:08:69:aa:0a:01:30:d4:3b:
e4:a5:1b:bb:94:2c:8f:16:30:95:bd:60:6b:d8:6e:
bc:61:a5:6d:12:d6:ca:1c:c7:02:5b:e6:f4:8e:e8:
44:cb:8e:76:33:d8:3c:d7:0b:97:2d:9e:f7:79:a5:
ab:88:9c:05:29:5a:ce:25:8e:87:62:06:48:33:91:
2a:ae:98:f4:da:9e:ad:fc:7c:b9:41:67:03:64:8a:
a8:70:64:32:03:f2:5b:b6:d3:55:e1:64:0c:d6:cc:
a4:b7:ba:ee:ff:3b:82:17:f8:3d:9c:ad:c3:f0:96:
80:e6:74:e0:83:9b:cd:41:f0:4c:01:6f:ca:28:55:
fe:49:5f:45:47:be:7a:ea:3b:02:1c:f6:9a:a0:3a:
90:15:ed:0d:bc:98:74:87:a9:71:f5:e0:84:4f:2a:
59:8b:d2:3b:34:45:bf:db:23:66:1c:2f:d1:8b:e8:
f2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:AB:EE:3D:74:51:83:4D:E6:92:C0:11:AE:B9:1D:30:35:0C:5D:2E
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/t6vuPXRRg03mksARrrkdMDUMXS4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.44.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:08:88:b8:a7:44:71:a0:47:b2:56:c5:04:2b:6e:03:45:6b:
ec:e5:e9:fd:1d:b0:9d:23:59:ef:8c:a3:e5:71:34:79:5c:f2:
0c:3b:10:fa:b9:51:be:8f:27:cf:17:56:13:a6:93:08:fc:1d:
66:1a:3c:95:15:91:7b:5e:b5:0f:09:43:bd:79:68:dc:e5:1d:
e6:09:05:35:dd:0f:61:29:4c:0e:da:9e:6c:b8:88:99:96:82:
fe:17:aa:3c:bf:6d:c8:f0:63:47:6f:96:21:94:09:01:8e:e3:
bb:33:a5:1d:10:9f:f7:40:c5:2e:a9:1b:bc:fb:d5:df:3a:a0:
76:c2:ee:a6:0f:f1:f0:74:7e:7d:a9:eb:e9:2c:67:df:46:55:
5a:04:f2:a2:ce:6f:0b:c6:09:d0:ae:44:87:9e:50:c6:10:2a:
37:71:92:fa:00:b4:03:69:4d:5c:0f:2c:cf:6f:ec:fa:87:2e:
60:48:7a:35:7a:5d:73:85:f0:77:24:4d:ad:cd:6d:85:22:2f:
cd:ba:0b:33:8a:4a:3b:fb:53:a1:76:3b:ea:a3:90:76:f1:d6:
72:51:30:e9:e0:5a:9d:e4:8c:30:e8:79:f6:1f:38:8b:2f:8f:
01:77:d3:70:3c:0a:17:87:3f:27:b6:95:a5:5f:1c:89:26:93:
0b:a4:18:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org