Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/tO7iiZev2dqScTd3ELTrRvHc5u8.roa
File: tO7iiZev2dqScTd3ELTrRvHc5u8.roa (raw, json)
Hash identifier: HIo/dNA1F67wZDJGsThKQ7Q+OyazTbhAt7JyHk2eB44=
Subject key identifier: B4:EE:E2:89:97:AF:D9:DA:92:71:37:77:10:B4:EB:46:F1:DC:E6:EF
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0A61
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/tO7iiZev2dqScTd3ELTrRvHc5u8.roa
Signing time: Thu 17 Mar 2022 01:39:08 +0000
ROA not before: Thu 17 Mar 2022 01:39:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.61.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2657 (0xa61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Mar 17 01:39:08 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B4EEE28997AFD9DA9271377710B4EB46F1DCE6EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:fc:91:e0:82:2b:7f:c4:19:c3:46:cc:00:27:
35:af:21:d8:23:7c:32:92:53:9c:55:6c:7b:af:da:
05:d4:f8:f3:d8:17:22:11:3a:10:12:44:1e:fa:59:
9c:e2:8b:9f:c8:63:6d:2a:60:29:33:f2:3c:66:69:
0b:db:48:fd:4d:a5:db:c4:68:d8:08:dd:12:0c:1e:
ac:72:8b:13:30:f3:74:e4:06:e9:6d:e9:42:94:fb:
d8:7b:f2:f3:0b:a9:8d:b5:bd:31:6c:89:ca:54:d2:
80:f9:d1:b6:a3:f7:0c:d1:29:ed:6b:12:67:5c:6d:
62:49:e3:e9:91:0f:ca:53:66:f0:e7:4d:bc:36:56:
71:7c:dd:e5:b1:5d:02:ca:91:55:45:91:4b:4d:58:
80:93:c3:a3:52:9d:4d:2d:ba:76:a1:20:99:94:93:
e8:33:4d:08:34:61:96:b7:49:3e:5a:82:da:7f:4c:
94:83:26:b4:85:dc:54:f4:38:83:33:29:51:64:e7:
d9:92:9c:db:51:e6:33:0c:28:91:68:08:15:47:78:
c7:82:93:07:55:50:a5:5b:62:0f:19:f7:2e:71:61:
54:e8:7c:bb:d2:1e:eb:06:77:09:14:cd:2c:5d:49:
d1:d7:e7:21:c3:2a:8e:c3:06:9c:e7:12:67:7c:75:
5b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EE:E2:89:97:AF:D9:DA:92:71:37:77:10:B4:EB:46:F1:DC:E6:EF
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/tO7iiZev2dqScTd3ELTrRvHc5u8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a6:63:58:10:66:ed:44:f1:db:95:6a:58:d3:c9:d8:fd:f1:
76:2c:2b:f7:c3:ee:11:8e:36:6f:d6:cc:9e:e6:48:81:f9:11:
f9:e7:a3:c1:57:81:d8:0f:37:8b:10:c9:7a:b4:89:97:93:64:
c1:f8:61:58:2f:b1:fa:7c:e9:48:74:3a:d1:7d:00:58:92:86:
bd:90:58:49:5c:d3:00:78:a9:99:90:04:97:52:bb:1f:bf:7f:
ce:97:97:00:a1:40:5a:1c:df:9f:10:00:43:72:23:8f:5f:09:
e7:1a:f4:cf:26:93:4f:0d:48:0a:b6:3d:16:7e:1e:83:e4:94:
6e:42:9a:f8:c0:2f:4b:69:b4:41:c6:0f:cd:e7:a4:31:80:1a:
37:51:b0:14:79:4d:41:73:7e:68:5f:7f:6a:75:36:6c:d9:95:
ce:55:5a:dc:27:64:30:c8:12:f8:46:46:ed:6a:c9:52:c0:ab:
dc:fd:df:9d:f2:3c:46:ac:d8:3b:a4:1d:ee:ea:58:58:ca:86:
dc:b8:44:cb:0a:3d:76:28:25:8e:7f:2c:f6:f3:da:47:df:6b:
bd:b0:63:37:84:09:c7:cf:6b:03:92:75:b6:cd:32:b0:8f:42:
2e:95:f5:46:11:24:e5:17:bb:6b:c2:80:00:93:b2:a9:f2:28:
f4:67:4d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org