Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/56H2faeCCNNzTvvM0h48A_DGWXo.roa
File: 56H2faeCCNNzTvvM0h48A_DGWXo.roa (raw, json)
Hash identifier: 4N+FM2UvMWXJNJtF8g39le1ijasEjL13eVsh2FxlyR8=
Subject key identifier: E7:A1:F6:7D:A7:82:08:D3:73:4E:FB:CC:D2:1E:3C:03:F0:C6:59:7A
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09BA
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/56H2faeCCNNzTvvM0h48A_DGWXo.roa
Signing time: Wed 29 Sep 2021 02:38:35 +0000
ROA not before: Wed 29 Sep 2021 02:38:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 61.65.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2490 (0x9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E7A1F67DA78208D3734EFBCCD21E3C03F0C6597A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:98:a0:44:c3:46:6d:ec:21:ad:00:1f:40:75:
d0:51:84:20:8c:de:48:8d:0f:4a:0d:88:64:e1:37:
88:c5:39:fb:86:76:b1:82:78:a5:ae:f2:ae:83:6b:
ef:91:4e:e5:21:8b:04:5d:93:7e:90:f9:da:ae:ea:
53:26:77:e5:2d:0f:e2:56:19:ab:84:72:6f:f1:c8:
84:87:9b:bd:fe:a6:cc:3a:49:90:f5:9e:72:61:33:
43:37:13:af:9a:d2:be:09:35:74:7c:d8:18:9b:21:
e7:b8:ca:bb:51:24:eb:fa:aa:dd:38:f6:24:47:43:
39:16:08:ee:73:9d:73:8c:49:c0:91:75:28:59:26:
72:a0:3a:35:3e:f6:a0:e1:21:a0:07:53:60:80:c0:
01:01:bc:88:45:5c:8c:45:05:1d:32:63:6f:98:10:
16:28:e0:df:7b:c9:37:a7:58:07:4c:43:63:be:9f:
6a:84:ff:c8:c3:8c:9f:5a:87:c9:0c:10:3c:01:cf:
b8:65:1a:4f:1f:1f:ac:a1:d3:fb:1c:e7:c3:f3:34:
37:93:02:b9:59:d8:14:79:b3:8a:2c:d5:fb:5e:33:
b9:1c:36:09:ca:bb:ac:aa:35:e6:1b:a5:3d:58:08:
36:da:ca:7a:52:d6:6c:9b:b2:d3:6d:d5:de:49:f6:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A1:F6:7D:A7:82:08:D3:73:4E:FB:CC:D2:1E:3C:03:F0:C6:59:7A
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/56H2faeCCNNzTvvM0h48A_DGWXo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6c:28:3f:5a:c7:76:b1:82:b0:7c:fc:3a:cf:bb:01:79:4c:bc:
08:b8:12:fe:fc:c0:7c:13:17:34:49:08:5c:b0:ac:25:d8:09:
1c:2d:ff:83:17:e4:03:a7:06:93:9a:52:b7:8f:b8:ae:39:08:
a9:62:50:a2:6c:b3:e4:8d:81:1a:f9:28:19:00:dd:e0:66:1b:
e6:74:77:80:31:e8:28:70:d5:54:a9:b0:11:21:c3:15:64:e3:
82:3a:fc:f9:6a:14:9f:99:4b:58:5a:fe:4d:29:e1:14:4d:96:
64:98:93:3e:63:61:2b:58:e9:fb:70:a7:cd:d1:56:8d:bc:58:
28:47:09:da:4a:3f:3b:15:3d:fa:8e:ee:e4:52:93:9c:8d:a2:
b7:80:31:df:42:91:ec:ff:13:f1:fa:2e:00:01:3f:e2:ad:1a:
d9:05:5e:98:36:24:01:cf:61:ef:4b:e0:89:7d:6b:d8:1c:6b:
4d:4f:1c:d4:59:50:1e:75:75:75:8c:c4:a0:60:6f:d3:c5:58:
60:17:d9:0a:74:3d:f1:47:b5:ed:c0:a0:37:15:59:45:83:e1:
27:af:e2:cc:42:40:d0:5f:11:f2:84:e3:af:be:91:dd:43:00:
fa:52:15:60:35:99:0b:70:ff:a7:4d:34:88:ae:e4:aa:56:51:
b9:48:5f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org