Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VL83H-7iJxA3aR0fsIfSHUZnPLQ.roa
File: VL83H-7iJxA3aR0fsIfSHUZnPLQ.roa (raw, json)
Hash identifier: w6QQ0SR9jWIRCrqm0yFYjHFZnqodKl9XoZA6SDdd6LE=
Subject key identifier: 54:BF:37:1F:EE:E2:27:10:37:69:1D:1F:B0:87:D2:1D:46:67:3C:B4
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 079D
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VL83H-7iJxA3aR0fsIfSHUZnPLQ.roa
Signing time: Tue 29 Sep 2020 10:05:48 +0000
ROA not before: Tue 29 Sep 2020 10:05:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 211.73.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=54BF371FEEE2271037691D1FB087D21D46673CB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:0d:a6:69:76:72:9a:41:12:06:87:ab:99:b9:
4e:70:54:64:04:d6:06:c3:fd:a5:96:6d:fc:ce:73:
78:9e:ec:0e:be:ba:ac:f4:18:d9:c5:97:c4:86:2a:
38:06:02:d8:4a:b2:8b:cf:9e:c3:24:a7:34:40:d5:
18:8c:f0:05:76:e2:14:c4:fd:88:8e:d0:6d:5e:a7:
8d:98:46:3c:92:14:04:84:2f:a1:93:30:5f:ab:23:
12:b5:5b:0e:38:c6:5f:f1:1f:47:1c:14:d6:cd:6b:
97:7c:77:ea:56:4c:4a:82:69:a3:ce:06:05:f9:69:
44:25:1a:83:a7:9b:72:c4:4c:6b:6d:e2:88:64:e7:
7e:07:3e:3c:f2:27:e6:26:22:64:4b:29:4e:90:47:
e0:4c:6b:91:f9:d6:b0:7f:e9:0a:ce:ac:89:ab:9b:
e8:27:b3:56:54:70:7c:56:ed:d6:23:5a:0f:18:f8:
18:d8:d2:38:20:f2:67:ab:de:da:c1:cb:d3:7a:72:
66:bd:4d:b3:89:df:59:53:25:a4:3c:2c:2b:8e:93:
2b:46:75:e9:1e:4c:97:ec:d3:63:85:69:ed:85:4d:
ce:5e:c7:e5:6a:88:df:af:d8:f5:85:c5:5e:e6:80:
a7:ea:88:c8:9a:b6:b4:90:e2:fb:fa:e8:d2:5d:8d:
f0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BF:37:1F:EE:E2:27:10:37:69:1D:1F:B0:87:D2:1D:46:67:3C:B4
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VL83H-7iJxA3aR0fsIfSHUZnPLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.0.0/19
Signature Algorithm: sha256WithRSAEncryption
20:df:24:13:2e:ec:6a:c0:40:2d:e8:0a:43:50:ba:14:9b:41:
b8:34:e1:e4:9a:33:d6:32:dd:52:84:1c:9f:85:d8:c6:b1:2a:
99:f8:60:2c:e3:3b:87:1f:50:65:db:84:93:90:7c:6b:01:88:
12:1b:bc:4b:ef:aa:65:97:b4:8e:d2:4d:39:6d:ff:d2:f4:a6:
f9:bb:9e:01:c3:db:b1:d7:44:48:97:45:16:4e:9c:83:8e:d2:
b8:da:21:70:33:ae:52:f8:b1:55:a5:1f:4d:52:a2:a8:00:21:
47:ee:19:c8:6d:ad:97:de:f6:bf:a7:66:89:f3:b9:df:a7:73:
e5:40:4b:7d:2d:f7:56:c7:59:00:13:0d:80:37:f9:34:1c:87:
fb:25:dc:e9:18:18:d7:2c:c6:58:b3:3d:d0:d2:47:73:0a:c7:
62:f6:a5:50:08:e9:e0:26:63:cd:47:7c:20:f8:ff:ac:ee:82:
53:e5:e9:8d:23:54:32:a0:e5:a3:92:e3:80:66:6d:c5:92:b3:
c0:ce:60:4c:23:bc:20:67:04:0a:4d:3d:59:da:84:66:13:16:
67:e9:47:06:8b:8e:dc:85:f5:77:d1:c2:c0:13:58:30:63:bc:
44:83:55:87:bb:70:15:ca:ed:a6:1d:be:c2:7e:7f:41:36:f5:
b4:a4:e3:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org