Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/0qbr7n2heY3IKMvk4pa3QV_5x7A.roa
File: 0qbr7n2heY3IKMvk4pa3QV_5x7A.roa (raw, json)
Hash identifier: LRfyRrgaUt35dCPib29Olglg+kNRxOgDFcsAEayH/XY=
Subject key identifier: D2:A6:EB:EE:7D:A1:79:8D:C8:28:CB:E4:E2:96:B7:41:5F:F9:C7:B0
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09CB
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/0qbr7n2heY3IKMvk4pa3QV_5x7A.roa
Signing time: Wed 29 Sep 2021 02:38:39 +0000
ROA not before: Wed 29 Sep 2021 02:38:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 2402:9c00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2507 (0x9cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D2A6EBEE7DA1798DC828CBE4E296B7415FF9C7B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ab:0b:73:0c:87:f5:1a:55:37:12:ea:9e:fb:
2d:d6:52:f8:8c:b0:06:7e:ae:e3:be:4a:df:d5:91:
4a:2f:a3:8c:b5:20:b2:bb:e0:e6:ff:04:d6:f2:92:
88:5e:60:30:e9:1a:41:b1:eb:c1:74:df:62:af:dd:
3d:59:6b:56:13:63:70:60:5c:7e:2d:20:6f:18:e7:
68:05:9f:c4:1b:3c:1e:01:b9:00:24:97:48:f3:91:
fc:38:d5:3a:df:28:3d:9c:f1:7b:f5:25:ec:2c:e8:
e0:3b:30:44:65:2d:64:cb:43:45:ab:65:6d:a4:08:
ad:7d:73:31:69:ab:dc:0c:e3:ee:03:1c:7d:a4:2e:
e3:8b:3f:0e:1f:dd:ab:7c:12:4b:24:47:fa:ca:d9:
a0:e1:5c:3d:80:31:51:8a:28:f4:7f:43:c8:3e:c8:
90:b6:e5:8e:52:8b:98:b8:0e:a5:6c:2f:4f:c6:c5:
0d:e3:0e:2a:fd:b7:1f:7b:33:6a:8a:26:22:18:ed:
e9:b8:90:4b:af:c2:b8:de:57:33:40:04:92:15:37:
37:af:39:9c:f6:0d:e9:d2:c3:03:ce:04:03:40:97:
5e:3f:75:e8:e2:22:53:81:c1:20:3a:19:ad:ad:2c:
76:10:a2:50:ea:de:e8:a3:b9:4d:14:3f:3f:d8:81:
b1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A6:EB:EE:7D:A1:79:8D:C8:28:CB:E4:E2:96:B7:41:5F:F9:C7:B0
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/0qbr7n2heY3IKMvk4pa3QV_5x7A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:9c00::/32
Signature Algorithm: sha256WithRSAEncryption
63:ad:cc:f0:72:05:9b:84:52:d4:57:36:da:ef:d8:7f:d4:34:
bc:e4:c4:2f:92:15:48:25:89:2b:d6:56:07:a5:dc:9f:d0:22:
77:67:c1:c9:0d:17:00:85:74:88:c9:6f:08:26:3e:8e:ba:6f:
ef:c9:43:ed:98:35:67:a0:27:37:9c:a6:fd:5c:12:03:e3:c5:
e1:29:39:80:bd:64:8d:02:06:e3:1c:a6:51:8f:1e:47:04:e3:
c2:0f:6a:76:b9:e4:4e:13:83:a9:d0:cd:a2:8b:a7:c8:9b:df:
75:db:57:b2:ec:da:d5:8b:4a:d1:a1:b4:83:c2:c4:ad:08:fc:
2c:35:77:96:d2:5f:aa:07:29:09:8d:33:91:2d:84:ae:9a:2b:
71:b7:12:54:bd:ea:7c:d4:d4:04:97:3d:83:d3:6a:a3:e9:4f:
07:da:25:dc:eb:f2:5f:9a:7d:0b:12:17:ed:8f:07:3d:49:41:
81:1a:a8:d4:a1:34:b3:c5:9f:9c:23:f8:ab:d6:06:60:a4:1e:
7a:9d:14:c1:b4:93:0c:df:44:2d:46:17:6d:8a:b4:5d:62:4d:
70:94:c2:87:86:6b:06:e3:df:51:6a:ce:82:90:49:58:d2:0e:
e9:09:89:eb:1c:b7:8e:ff:ef:a7:8f:61:4e:0b:df:2d:6a:c2:
4d:b4:f8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org