Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/J0TJrPCalM6nxIifcv3n29dvfME.roa
File: J0TJrPCalM6nxIifcv3n29dvfME.roa (raw, json)
Hash identifier: QoQJIM7tpWbSXSi7XxHRgNlwBl6MAQGRmMXkF0Dyw3k=
Subject key identifier: 27:44:C9:AC:F0:9A:94:CE:A7:C4:88:9F:72:FD:E7:DB:D7:6F:7C:C1
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/J0TJrPCalM6nxIifcv3n29dvfME.roa
Signing time: Thu 15 Sep 2022 02:39:35 +0000
ROA not before: Thu 15 Sep 2022 02:39:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 61.65.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2744C9ACF09A94CEA7C4889F72FDE7DBD76F7CC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:97:76:a2:e8:8b:69:1d:72:82:c3:a7:8b:6c:
8c:b7:7c:40:2c:08:ca:af:da:81:fa:28:d0:fd:f5:
8a:e5:8d:bf:d9:44:e2:c6:4e:da:c0:3d:0c:56:c4:
06:65:10:56:16:62:08:3f:f1:ac:10:6f:9e:ae:d3:
73:f3:7a:ad:64:17:0e:7c:b3:b2:69:13:49:cf:fe:
5c:c9:44:3c:4b:d8:30:9d:4f:7e:75:21:bd:f4:6a:
4d:5d:7f:dd:86:51:0b:00:2e:9e:5f:9a:4e:2b:3d:
88:6f:01:78:ae:e9:a7:1f:11:a3:f7:17:d1:8f:57:
59:8f:0e:e1:55:ff:5b:f8:d3:2f:e1:84:a6:7c:55:
b4:62:c2:57:06:a4:2c:e4:85:63:d8:c1:f3:1d:d9:
14:8e:1f:0c:95:b1:ed:50:57:9f:6b:9e:ef:5d:22:
24:fe:3d:70:97:c5:1b:d3:3d:0f:41:f5:d5:78:dc:
6d:0d:fb:52:09:2b:41:81:0f:d2:35:43:71:2e:19:
f5:d6:18:50:36:3d:06:7c:5a:8c:a7:14:c2:c7:1c:
e1:40:84:48:f3:5c:4f:e4:ee:a5:b1:7b:11:5d:1a:
e5:ea:ab:4b:9a:75:c3:98:18:5a:7c:f7:89:90:f5:
93:b1:49:e9:57:00:63:4e:28:c8:bb:3d:c2:0f:90:
18:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:44:C9:AC:F0:9A:94:CE:A7:C4:88:9F:72:FD:E7:DB:D7:6F:7C:C1
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/J0TJrPCalM6nxIifcv3n29dvfME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.0.0/17
Signature Algorithm: sha256WithRSAEncryption
04:dd:8e:55:6b:21:24:e8:b3:28:c5:bd:3a:76:68:c3:66:a9:
5c:39:8e:21:df:d2:e5:9f:df:c8:ea:02:7a:77:a1:70:78:0a:
85:67:e9:48:f1:42:08:b1:bb:05:9f:ad:eb:e7:d0:03:27:11:
ad:34:87:cb:53:9d:32:cf:11:52:a8:c7:fe:44:65:9a:56:dd:
e7:82:a1:b6:ca:99:33:75:f1:c9:a4:9c:13:d6:ac:9a:a2:c1:
6e:47:f5:e6:1b:b8:5a:ef:05:41:a1:fe:ca:67:d9:ad:c7:1f:
18:91:52:87:49:da:87:99:d5:6b:a3:5c:fd:ea:14:78:35:63:
ac:fd:ba:0f:11:14:64:91:a1:df:53:aa:eb:d6:5c:10:22:b4:
f8:30:a3:15:bb:97:cc:19:cd:bd:58:66:16:45:74:d7:dc:33:
a9:c7:5d:6f:a0:b8:fb:ee:cb:4e:57:97:df:e6:0b:b2:5b:05:
4e:ba:d8:9a:8d:54:57:1b:50:a8:ae:08:c4:c1:61:f5:e5:b2:
ed:9a:dc:82:00:05:e0:53:a2:c8:87:cd:8a:18:f0:3e:3b:b3:
b4:ee:e4:b0:cd:9d:66:86:eb:6a:67:d5:74:05:0c:db:b0:af:
7d:a0:42:ee:92:da:8f:a1:98:8a:41:83:80:c0:2a:75:d6:bb:
95:60:ec:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org