Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/vCBgqfRV2regCIUG6D4Ukdi7rjw.roa
File: vCBgqfRV2regCIUG6D4Ukdi7rjw.roa (raw, json)
Hash identifier: MNNS7zHSmG/jk7RNfp2HcxxoCLtu+BO+lWdV4+mrweE=
Subject key identifier: BC:20:60:A9:F4:55:DA:B7:A0:08:85:06:E8:3E:14:91:D8:BB:AE:3C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/vCBgqfRV2regCIUG6D4Ukdi7rjw.roa
Signing time: Thu 15 Sep 2022 02:49:52 +0000
ROA not before: Thu 15 Sep 2022 02:49:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 61.61.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC2060A9F455DAB7A0088506E83E1491D8BBAE3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:d8:ff:74:f3:32:c6:59:c2:07:82:f6:bc:
21:a4:14:99:c0:bf:62:47:e2:bf:c6:dc:73:d5:ba:
ed:99:8f:b8:7c:3d:67:fc:e2:07:1c:e5:63:58:18:
3b:1f:1b:5a:17:24:73:33:b4:5f:10:e0:8e:a5:4a:
01:76:1c:72:2b:2c:7f:c7:1c:92:ca:dc:24:bf:34:
fc:6b:ad:ec:28:6d:a4:f0:03:3d:d8:dd:6e:97:f4:
e5:7d:0d:6a:4e:03:fd:dc:96:d4:98:b0:14:12:d2:
d8:4e:fd:cb:4f:c4:79:24:df:f3:62:78:41:49:31:
13:9f:a5:9d:48:e3:10:fe:30:83:0d:17:67:2c:63:
4e:4b:30:27:03:6e:80:b1:38:db:4f:8a:8b:71:60:
64:72:72:ff:23:ed:b1:86:9f:f9:01:43:f4:30:ce:
88:f8:f2:12:87:8f:62:49:8d:5c:65:2d:58:0c:52:
df:31:a0:6c:a0:c9:fe:23:08:55:d4:02:ab:f3:9e:
4e:21:2b:82:08:c9:44:17:34:c7:c4:91:39:9d:47:
bb:88:6c:b6:40:c3:25:44:f9:c4:27:44:ee:5c:0b:
57:59:a4:c3:bc:d7:41:10:d3:70:1a:08:99:1e:5b:
b0:2c:c7:51:82:66:e5:a5:67:be:b4:71:ae:63:ab:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:20:60:A9:F4:55:DA:B7:A0:08:85:06:E8:3E:14:91:D8:BB:AE:3C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/vCBgqfRV2regCIUG6D4Ukdi7rjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.76.0/22
Signature Algorithm: sha256WithRSAEncryption
30:ae:42:8a:8e:28:9d:83:62:d9:c0:27:b5:75:ad:4f:b7:81:
ed:cc:e7:ff:97:d4:be:b4:63:70:0d:5d:21:53:4f:c0:18:af:
49:bb:b0:e8:00:a5:44:46:83:c9:d9:06:be:b7:d1:25:97:9c:
08:52:0e:78:f9:22:c1:ee:7f:2d:02:30:42:c2:70:be:c9:d7:
63:54:7e:75:e2:40:3e:b5:e2:98:a5:3a:4f:ea:9a:ca:39:bb:
7a:d6:37:e2:0b:3a:1d:36:83:7c:24:9c:be:47:46:c5:59:c0:
14:4e:e6:b4:93:19:8e:a7:1c:63:a9:cd:4c:83:11:d3:45:a5:
3a:12:29:cf:17:f3:8e:ad:ec:61:1b:30:41:86:a9:0a:71:ef:
5a:6e:78:75:05:12:ea:ff:23:35:29:e5:41:e1:86:bb:b4:1c:
e6:06:cf:59:1f:47:a7:c8:66:3e:57:34:11:8a:52:0d:ee:8e:
46:da:06:b9:3a:d7:3b:37:4c:22:5b:aa:03:29:dc:97:fb:37:
84:46:8a:0e:e9:fe:a6:ae:cc:3e:c4:9d:74:47:35:b1:f5:cd:
02:6e:87:3e:8c:3f:1a:af:67:17:f0:a4:14:c1:cb:15:95:99:
66:44:e9:47:87:7b:16:94:bf:4d:d8:4f:43:64:2a:9a:3e:8e:
d1:be:cb:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org