Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Iu6nZNW0ffObCm4Lbk5SNCe7eV8.roa
File: Iu6nZNW0ffObCm4Lbk5SNCe7eV8.roa (raw, json)
Hash identifier: fnA1nnVUrGLlnKa/bi0quwwvOUHgNfNELdTe2R4DnVQ=
Subject key identifier: 22:EE:A7:64:D5:B4:7D:F3:9B:0A:6E:0B:6E:4E:52:34:27:BB:79:5F
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0913
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Iu6nZNW0ffObCm4Lbk5SNCe7eV8.roa
Signing time: Sun 07 Feb 2021 11:55:12 +0000
ROA not before: Sun 07 Feb 2021 11:55:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.63.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2323 (0x913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=22EEA764D5B47DF39B0A6E0B6E4E523427BB795F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:52:c5:4b:f9:e2:80:9e:76:75:ef:7e:37:64:
c6:16:76:08:97:e1:3b:b8:4c:77:03:22:8a:1f:fc:
e9:ab:1a:b4:84:91:47:f6:bb:22:0d:44:2c:92:df:
0d:f0:d0:59:4c:3a:e4:1e:37:34:82:7e:9c:9f:d1:
23:21:73:0b:cb:3b:66:5e:37:cd:1e:66:e7:33:e2:
da:0a:fc:25:5c:5e:42:3e:9c:df:eb:c2:89:16:eb:
ea:bc:72:01:c6:47:f9:74:85:1c:b4:46:e5:18:5f:
77:1c:db:d5:28:d6:6b:b6:2e:27:3b:ab:2b:c5:d2:
fc:fe:07:17:68:e9:4f:ce:ce:42:d5:de:cb:b8:d4:
bf:5c:0c:8a:3b:e9:f8:95:10:16:25:73:07:dd:75:
46:4b:ee:ae:1f:eb:5c:be:4f:08:1d:27:09:57:5a:
13:2b:db:58:64:5b:8f:7b:0d:20:f5:02:48:dd:ae:
ab:6d:fd:23:8d:e6:7c:a3:c3:d8:99:12:cd:8d:25:
13:1c:f5:1f:02:90:68:96:4e:cd:16:e1:2d:10:f9:
a1:eb:1f:3b:b7:bc:f6:c5:2b:f8:4f:45:f2:97:dd:
86:55:c5:a8:ec:fc:22:d5:a3:df:10:e7:52:9a:bb:
f1:90:4a:74:6f:73:8e:05:08:b4:27:14:dd:33:f3:
4b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EE:A7:64:D5:B4:7D:F3:9B:0A:6E:0B:6E:4E:52:34:27:BB:79:5F
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Iu6nZNW0ffObCm4Lbk5SNCe7eV8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
70:28:90:2d:19:07:0d:2f:dd:f7:5a:8b:86:97:11:11:0d:8f:
66:75:69:7f:49:3b:1e:52:46:ab:d6:93:94:db:b4:bb:82:2d:
f5:12:8c:2b:7b:17:70:05:de:af:0a:ba:10:3b:e3:2a:84:93:
5e:9d:f8:38:da:6a:15:16:c3:d3:ac:b1:30:07:b1:f5:03:21:
14:61:28:57:a9:39:0c:21:3c:ab:e1:95:86:d7:91:5c:2c:8c:
5c:11:90:36:46:94:9d:7f:9d:25:8a:2f:06:92:8b:ce:56:a3:
61:23:94:cd:5c:bc:15:ec:c8:ad:fd:53:b3:9e:4e:b9:a6:8d:
5b:3a:40:12:cc:ed:e3:ca:2e:80:65:4d:5c:ad:37:eb:de:a5:
1c:8f:cc:53:b1:9b:c4:c4:f7:ff:99:d8:00:aa:83:94:1c:35:
5c:6d:a1:fa:5b:07:d9:f6:72:81:12:27:6e:2c:53:7c:0d:1c:
b1:56:df:79:4a:3c:6e:cc:e5:05:4a:d4:7c:c5:56:1d:3d:a8:
da:10:22:a3:4a:80:09:97:bd:ca:52:ff:0e:30:78:55:23:bf:
fb:55:cd:ad:c2:da:e3:60:c4:8f:9a:b8:9f:bc:fa:53:1c:e8:
1c:6e:43:82:f3:2d:9e:17:9d:f4:86:9c:5d:1b:11:8c:26:7d:
c6:e0:05:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org