Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HdFGnIXE6neLrypFyEqQVBFvR-4.roa
File: HdFGnIXE6neLrypFyEqQVBFvR-4.roa (raw, json)
Hash identifier: Ys7J5p2LiZZGH7PNCq/NVFsik9SRuoMy1xUOZPJXtrk=
Subject key identifier: 1D:D1:46:9C:85:C4:EA:77:8B:AF:2A:45:C8:4A:90:54:11:6F:47:EE
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HdFGnIXE6neLrypFyEqQVBFvR-4.roa
Signing time: Thu 15 Sep 2022 02:39:33 +0000
ROA not before: Thu 15 Sep 2022 02:39:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 101.0.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1DD1469C85C4EA778BAF2A45C84A9054116F47EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:27:ea:a2:96:45:86:53:ab:0d:a5:0b:68:0a:
a8:2e:38:7c:8f:fa:a8:8f:99:2b:d3:c2:5a:8a:17:
61:ff:ca:c5:43:ab:a1:30:1c:83:00:cd:91:6f:50:
6e:ba:51:87:b7:8f:c1:b9:62:e2:de:24:ed:b6:64:
dc:8c:13:5d:a2:51:dd:44:c1:a5:a9:7c:be:7e:69:
21:33:32:66:85:2a:a8:8e:94:76:9c:75:71:6c:0f:
54:61:1e:3e:24:3c:d1:15:d7:f8:f6:31:b1:4d:36:
d8:ed:6f:93:f5:9a:03:93:93:3c:2a:c9:bb:60:8d:
85:a3:e2:ac:89:c5:c9:c4:70:3a:22:73:c0:c2:a9:
23:76:60:e3:75:29:84:ac:75:fc:b6:42:5d:81:76:
9e:64:0c:ee:1b:9d:03:03:58:0c:18:90:68:96:02:
ec:5d:66:91:db:1a:1e:12:22:c1:e9:92:33:96:ba:
2b:4a:57:e1:8b:83:e5:37:93:57:57:5e:8b:9d:c9:
e4:a3:41:0d:7f:30:a9:6c:2f:ad:49:39:8a:a6:54:
68:c7:0d:8c:d9:80:60:aa:db:04:bf:90:81:b9:13:
92:18:14:01:28:f4:77:df:04:61:8f:3d:d7:6f:d8:
99:c4:3f:4b:7c:36:12:2d:98:13:c3:22:73:21:f7:
a1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D1:46:9C:85:C4:EA:77:8B:AF:2A:45:C8:4A:90:54:11:6F:47:EE
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HdFGnIXE6neLrypFyEqQVBFvR-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.128.0/18
Signature Algorithm: sha256WithRSAEncryption
43:b9:44:5b:12:24:a5:6a:d6:31:97:a9:02:75:04:fd:7e:b3:
94:e2:f0:b4:00:e4:04:63:4c:d4:9a:c2:51:04:6e:f1:89:31:
26:fc:9d:77:ea:41:6d:08:3f:54:cd:90:28:a7:9b:a3:6d:14:
52:bb:be:10:f6:22:f0:e1:f5:5a:30:e7:72:8e:d7:8e:6a:69:
10:1e:c9:8c:cf:e0:6e:cf:24:67:a9:96:cf:fd:b1:c8:b5:79:
dc:ef:70:0a:06:2f:ea:87:13:b8:0b:02:5a:b6:e3:a6:bd:e5:
02:3f:d6:b3:a4:5e:16:10:d0:82:1e:69:bc:7a:6b:d6:b5:23:
e6:11:9f:a3:77:d2:d2:d2:d8:92:2f:a8:06:83:e7:3b:79:64:
26:79:12:b2:26:8f:0a:5d:c8:93:83:07:62:97:e2:c4:2a:0e:
4b:1c:e9:ec:ca:f5:58:12:27:3e:72:db:1c:16:c3:99:4a:5f:
73:5b:37:fe:9a:1e:fc:5d:50:45:e8:6e:3b:39:6e:3f:95:91:
d2:f9:b1:ac:4f:aa:04:f2:4d:f6:2f:4d:e8:a7:34:00:c5:8c:
89:82:4f:03:f7:37:c3:71:de:cb:bc:84:2c:67:eb:56:17:21:
da:0d:7a:13:1d:93:92:1a:9e:b9:2b:01:74:15:f9:cd:2e:0b:
66:5e:52:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:51 2025 by rpki-client