Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VLpMismKHWg2GDF51ItEbxWZ-GE.roa
File: VLpMismKHWg2GDF51ItEbxWZ-GE.roa (raw, json)
Hash identifier: KvBwvJbvwGb7OEmu1hF5dg4vWbGlOviYFshragf0Sy8=
Subject key identifier: 54:BA:4C:8A:C9:8A:1D:68:36:18:31:79:D4:8B:44:6F:15:99:F8:61
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 08F9
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VLpMismKHWg2GDF51ItEbxWZ-GE.roa
Signing time: Sun 07 Feb 2021 11:54:55 +0000
ROA not before: Sun 07 Feb 2021 11:54:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 101.0.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2297 (0x8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:54:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=54BA4C8AC98A1D6836183179D48B446F1599F861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e0:6d:a4:9f:80:46:cd:f1:33:23:f3:b6:b1:
9a:41:38:7b:44:c6:a8:c8:17:c0:f6:9d:59:4e:11:
d3:1f:2f:e0:1e:f7:51:e3:9c:96:f9:74:46:5c:de:
01:67:c9:1e:39:74:cd:b6:c7:42:67:2f:51:85:cc:
de:4b:d8:f1:1a:6e:18:c2:f0:28:20:70:92:9d:a7:
42:75:15:11:df:6f:0a:e6:b4:e6:fc:0a:67:29:36:
94:31:27:10:f7:d9:03:90:5d:63:b3:f1:67:3a:42:
96:5b:0e:15:ff:e9:49:ad:dd:57:db:51:17:64:3f:
27:08:23:99:bb:07:9c:49:ef:41:be:38:23:61:37:
2a:39:22:68:74:a7:3c:92:c7:a2:ef:d9:e7:8f:ee:
8d:34:ed:c2:3f:80:e6:3c:01:df:73:e0:10:26:59:
d9:e1:90:c0:77:43:66:0d:61:a7:13:98:6d:ba:8d:
fd:f2:7f:46:40:0c:34:8a:67:e3:02:d4:e7:68:8c:
fc:3c:a5:67:3f:68:19:15:14:3b:77:25:3d:7e:45:
01:fa:8d:bc:db:25:ff:56:0d:95:14:eb:2f:99:c2:
88:55:33:9c:3f:ed:40:01:6b:2f:f8:dd:d6:6e:60:
57:4b:c8:a9:45:01:e8:1c:31:db:76:7b:f0:dc:75:
b8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BA:4C:8A:C9:8A:1D:68:36:18:31:79:D4:8B:44:6F:15:99:F8:61
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/VLpMismKHWg2GDF51ItEbxWZ-GE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.128.0/18
Signature Algorithm: sha256WithRSAEncryption
05:60:10:10:20:25:93:67:b7:d3:25:7d:2c:b0:1e:a3:fe:c6:
43:81:80:39:6a:e9:d8:4f:3b:ff:26:e8:fd:98:99:1d:10:7a:
1b:52:35:06:e4:28:52:bd:98:b2:cf:48:95:36:d5:7e:d2:48:
dd:3e:a0:34:70:58:28:6a:6c:1c:84:f0:42:81:fc:85:a8:6c:
ba:c0:25:01:5d:5a:49:34:20:d0:6a:3d:5d:e0:8f:ff:90:76:
76:d8:a4:64:d2:30:0c:a0:47:14:c5:24:b8:85:2d:db:de:67:
da:dc:6e:90:4b:46:18:38:37:e2:42:c8:90:af:32:0d:cb:05:
00:85:03:63:31:2f:7e:0f:93:48:57:ea:73:65:1e:ce:ca:fc:
39:d5:f4:0a:d3:28:70:5b:f0:6a:f2:4f:f2:e2:a2:56:7d:1d:
c8:55:85:45:a3:c8:b3:64:f2:38:b9:e0:37:38:7e:55:79:f7:
bb:62:f7:a2:ec:82:7d:15:75:2f:53:01:9c:2a:3b:77:ef:aa:
8c:cc:86:8e:3a:a9:6f:8b:74:3d:24:da:6f:b1:8a:08:2c:3c:
b1:e8:f8:49:58:0c:3a:64:78:fd:36:aa:74:0d:fc:e6:da:f2:
01:c3:a2:ff:83:85:8c:06:22:79:e6:91:65:af:63:d7:e4:0d:
3f:32:50:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org