Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/w9HXde-CaAk-NRAhusbUcGJwr8A.roa
File: w9HXde-CaAk-NRAhusbUcGJwr8A.roa (raw, json)
Hash identifier: IccOqAOVTHVaQNAxePkxadvKbXaXkmub1ftrbWsiMUs=
Subject key identifier: C3:D1:D7:75:EF:82:68:09:3E:35:10:21:BA:C6:D4:70:62:70:AF:C0
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 079E
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/w9HXde-CaAk-NRAhusbUcGJwr8A.roa
Signing time: Tue 29 Sep 2020 09:59:46 +0000
ROA not before: Tue 29 Sep 2020 09:59:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 61.61.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1950 (0x79e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 29 09:59:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C3D1D775EF8268093E351021BAC6D4706270AFC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:4d:de:e4:db:8e:6b:d2:06:47:37:3e:57:
df:55:f4:14:cc:29:55:af:e0:62:c2:af:81:1f:99:
39:29:34:ca:7d:be:3d:bd:56:59:3d:29:16:c6:f8:
f0:52:f7:f4:1d:51:a9:ab:41:eb:fe:b8:1a:c9:51:
c2:b3:0e:d3:ac:a0:19:4f:83:6d:52:3d:6f:4e:fe:
98:f9:23:68:d8:46:98:c7:b8:f7:66:db:9d:09:6c:
4f:33:e1:bb:48:47:3a:f6:81:7e:87:9f:6a:f8:4c:
d7:40:51:8b:57:24:b5:5b:f6:ad:09:72:a6:18:52:
ef:cb:d8:b9:ff:70:f4:cf:86:f6:3c:8e:2b:4a:76:
42:65:bf:b4:67:59:ab:ed:cc:02:7b:a5:16:78:b9:
52:85:84:f3:28:5a:a8:6a:ac:6e:c0:52:ae:da:c4:
bb:42:42:67:35:3c:75:3b:ea:f8:c2:ac:f4:ee:31:
f6:b3:29:41:c8:a8:21:7f:61:32:9d:b9:cd:f5:cf:
40:c6:80:9e:78:6a:f3:06:47:38:6b:5a:b5:1b:c5:
b1:46:28:30:45:a9:85:6c:31:33:99:f0:c9:c4:bb:
35:3c:55:57:9d:fe:51:70:13:ee:09:3f:ed:a1:da:
de:64:1f:61:57:2f:45:cb:d3:7e:9f:70:bd:6c:b5:
9d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:D1:D7:75:EF:82:68:09:3E:35:10:21:BA:C6:D4:70:62:70:AF:C0
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/w9HXde-CaAk-NRAhusbUcGJwr8A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.70.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:92:cd:8a:3c:07:b9:19:ec:3e:7a:77:a4:3c:34:db:bd:bb:
40:df:60:81:f2:46:28:0c:45:7b:58:71:4e:e0:cb:53:78:2e:
c4:e5:9e:5a:6f:fd:91:bd:79:51:cf:76:1a:37:f9:5e:64:cc:
ca:54:dc:5f:ce:f4:b5:a6:e8:c7:27:85:e3:a6:a1:4b:ca:23:
1d:be:e3:a5:6e:30:66:0e:87:34:7c:19:19:e0:f8:c4:4c:8e:
06:bc:fe:56:d2:20:91:02:2d:9a:33:66:42:01:d8:98:d8:3c:
a1:81:e6:ac:28:ce:71:f9:3b:bc:e5:63:1f:d1:c7:28:28:0c:
f3:8a:d4:3b:37:24:fd:a1:b6:36:65:37:b8:c4:f9:13:8e:f8:
e2:83:2e:66:52:9d:cf:80:cb:93:3d:39:84:29:44:6e:5c:f8:
d2:0e:ce:84:0c:89:6b:ab:94:1a:16:a5:71:b2:4b:7d:23:8f:
d0:6f:06:e4:11:7d:7a:38:de:f5:94:e1:b6:7c:57:62:97:80:
cd:8e:c8:74:3d:21:b6:d1:ef:48:ea:53:80:27:fa:c1:7c:92:
9c:1f:e8:14:44:5f:2b:7f:43:1e:91:62:7a:45:c2:8a:8c:be:
a6:48:74:ba:61:24:3a:79:0a:60:cc:67:d6:4c:2a:7d:f0:fb:
8a:d4:fa:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org