Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HUz3-HRY6KOWGAcvDph0rAVDdok.roa
File: HUz3-HRY6KOWGAcvDph0rAVDdok.roa (raw, json)
Hash identifier: Ze7H6uJTcdJnt5/8gNTDJN+QBz6lkDW96ooYcd04AyA=
Subject key identifier: 1D:4C:F7:F8:74:58:E8:A3:96:18:07:2F:0E:98:74:AC:05:43:76:89
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 090B
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HUz3-HRY6KOWGAcvDph0rAVDdok.roa
Signing time: Sun 07 Feb 2021 11:55:07 +0000
ROA not before: Sun 07 Feb 2021 11:55:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 60.245.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2315 (0x90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D4CF7F87458E8A39618072F0E9874AC05437689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c9:b7:f8:e5:a6:cb:76:de:e7:4b:17:34:45:
ce:e5:e3:df:63:c5:7b:df:a2:91:2b:40:bc:a5:d0:
04:b3:29:10:2a:19:68:cf:8d:6f:83:74:b9:6f:09:
e3:ff:57:5f:b5:8f:4e:f9:0d:f1:9c:13:e2:80:ca:
10:83:af:17:94:30:2b:0b:59:82:49:70:1b:f4:e5:
d2:18:5b:2a:2e:e8:52:ce:12:41:ca:57:74:22:15:
7a:d2:fb:78:c9:53:e1:4f:66:97:b0:6e:36:08:44:
30:44:21:ac:03:90:fd:72:9d:9c:d9:4f:b9:b5:22:
db:13:ff:ee:00:94:3e:a5:45:9c:7c:80:b9:5d:13:
3e:ec:e7:04:7f:53:84:a7:63:6e:bc:ba:34:83:2e:
a6:d5:64:ca:02:fb:1b:6e:53:d6:3a:86:29:7d:f0:
d1:fe:91:64:9a:6e:d6:e5:3e:50:c2:11:89:93:8e:
cb:e6:04:89:7d:38:af:f8:5f:b4:93:df:64:19:be:
c9:76:47:17:83:d8:56:db:80:d1:79:c9:ee:0f:b3:
23:83:6a:74:b4:62:e5:9b:53:96:b3:d4:5d:11:39:
fb:0b:bc:3f:a3:7e:0e:f9:00:43:18:2a:e7:7f:7f:
aa:cc:4c:fd:8f:9e:83:c0:0c:41:5b:44:6d:fe:8d:
66:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4C:F7:F8:74:58:E8:A3:96:18:07:2F:0E:98:74:AC:05:43:76:89
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HUz3-HRY6KOWGAcvDph0rAVDdok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.0.0/18
Signature Algorithm: sha256WithRSAEncryption
15:6d:f6:2b:52:7e:be:e1:ab:6e:9c:33:df:6c:21:cf:33:d6:
35:2a:f5:c6:a0:77:90:97:d0:be:d9:fb:1e:40:88:65:84:6a:
3e:ae:07:b2:e3:df:05:11:6f:8f:ad:a6:a0:de:d7:fc:74:52:
94:d6:8e:59:93:36:a9:60:71:ea:73:46:b7:ea:51:3a:fa:60:
8e:3b:83:3e:e1:47:8b:e2:be:af:f6:a2:50:5f:42:f3:87:eb:
7a:26:77:25:8a:a8:35:06:07:2a:b6:30:66:a0:3a:6a:11:ae:
b6:ca:91:70:0b:a6:b5:e0:e6:3c:fa:94:78:e7:c1:27:3c:93:
5b:1b:b3:4e:99:6d:4d:a1:7b:68:21:e0:7a:fe:97:a2:d1:9b:
87:a0:75:3a:c9:e5:6d:74:8f:df:03:e2:1c:fc:5d:c8:13:2f:
7d:51:e0:0e:a0:72:e7:6d:3b:28:50:68:22:18:17:69:3c:33:
74:41:d7:c9:7a:b8:66:7e:e1:6e:27:8f:63:4d:6f:76:1f:3a:
50:46:3a:66:e0:38:1b:47:4e:86:7f:db:27:21:df:03:73:e4:
84:d2:99:28:0a:a5:5f:32:80:7a:dd:55:ac:fe:01:2a:28:23:
d4:cb:4c:33:4f:08:7e:9e:ea:66:98:c8:5d:88:5b:17:6f:e4:
b5:9d:ab:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org