Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/QMZuZjpUiVI53BoODBADyM6qO94.roa
File: QMZuZjpUiVI53BoODBADyM6qO94.roa (raw, json)
Hash identifier: W6dClq/vP70g+lQDHWMptR9EgURRezFWqMmaBX32w+8=
Subject key identifier: 40:C6:6E:66:3A:54:89:52:39:DC:1A:0E:0C:10:03:C8:CE:AA:3B:DE
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/QMZuZjpUiVI53BoODBADyM6qO94.roa
Signing time: Thu 15 Sep 2022 02:39:35 +0000
ROA not before: Thu 15 Sep 2022 02:39:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 210.62.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40C66E663A54895239DC1A0E0C1003C8CEAA3BDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d0:41:ae:e9:d3:06:6a:04:98:ad:c2:25:6f:
28:2e:ba:65:3f:9b:26:28:bd:8b:9e:2c:45:09:d9:
64:00:54:fb:00:4b:67:36:d7:30:a9:87:26:d6:51:
6c:35:64:6c:79:fd:b5:15:c0:6e:7c:aa:0b:39:b8:
4d:b6:6a:90:3d:8b:26:64:fa:57:61:b5:03:b0:21:
0e:80:8f:e7:cf:65:39:0b:32:8c:8a:3c:ab:3d:70:
fc:84:57:f0:bf:98:b0:a0:b3:96:d6:81:7a:b4:4b:
0b:84:42:f2:89:da:fa:e0:02:e4:da:cb:fe:e9:82:
9a:6b:2f:a3:57:e3:55:23:0a:f3:eb:aa:d6:47:86:
0c:5e:dd:86:2c:8b:0b:3c:41:e2:8f:db:f1:87:4e:
51:4e:56:87:98:7d:9d:a2:da:10:70:28:a5:1c:34:
d3:0c:f2:9c:7b:cb:95:a3:ca:6b:cf:2e:79:c7:33:
45:a4:a2:7b:0c:c1:10:e9:1f:0d:d0:50:8b:66:f9:
12:c9:83:90:e8:39:66:77:96:83:75:a5:af:10:53:
53:48:25:a9:43:ff:fe:46:28:f2:b7:ef:76:fb:f5:
37:09:05:78:d7:80:e7:fd:87:c3:b0:96:c5:33:ec:
ac:7e:72:0f:4c:a6:1d:00:9d:3a:ee:04:e8:d4:4e:
b4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C6:6E:66:3A:54:89:52:39:DC:1A:0E:0C:10:03:C8:CE:AA:3B:DE
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/QMZuZjpUiVI53BoODBADyM6qO94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.176.0/20
Signature Algorithm: sha256WithRSAEncryption
16:74:ff:f4:80:30:58:f5:77:8f:88:b8:69:c3:aa:b8:e8:69:
65:4c:8e:46:ef:41:0a:af:ec:3c:77:e1:1d:49:3d:2e:1e:78:
bb:80:a1:81:94:14:cc:85:bc:c2:24:04:35:0a:76:30:a3:7f:
58:09:d7:d2:ad:b4:66:6e:60:50:32:4b:8a:86:88:6a:10:69:
20:29:a3:53:0d:0e:46:73:70:32:78:89:65:ab:4e:98:bc:46:
f0:e0:3d:54:bb:e5:ae:7e:e5:4f:39:7c:7e:20:b3:f2:c4:18:
14:fc:ba:7c:e2:bf:5c:5d:df:ce:bb:99:a7:7b:68:1a:21:e3:
9e:89:3a:a3:54:78:23:b7:de:a1:62:4f:22:1e:cf:9a:4e:a0:
c6:56:73:28:19:4e:08:57:31:04:2d:ac:95:d4:a0:52:40:dc:
26:bd:4b:aa:82:cc:c7:4e:b8:4c:8e:9b:6e:91:97:b3:7d:df:
1b:5d:e6:81:24:80:8b:fb:26:eb:59:26:1d:ac:6b:8d:a6:eb:
e4:65:ec:bb:2f:ee:97:61:23:9e:97:bf:09:cf:53:8a:6e:dc:
6b:36:9b:38:89:72:71:eb:36:f5:ac:13:e2:9b:6c:9b:2d:2f:
6b:1e:37:8d:c5:63:7f:7c:32:5f:99:c5:96:88:f9:b7:ad:7b:
68:be:53:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org