Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/X0JOM1qlUUWlD7fjl9Cj1BsB3ys.roa
File: X0JOM1qlUUWlD7fjl9Cj1BsB3ys.roa (raw, json)
Hash identifier: CVa8juKLssOWhUNK7UuTEpQb4t4mmujzsiFXJ0h4aDc=
Subject key identifier: 5F:42:4E:33:5A:A5:51:45:A5:0F:B7:E3:97:D0:A3:D4:1B:01:DF:2B
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 090F
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/X0JOM1qlUUWlD7fjl9Cj1BsB3ys.roa
Signing time: Sun 07 Feb 2021 11:55:09 +0000
ROA not before: Sun 07 Feb 2021 11:55:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.60.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5F424E335AA55145A50FB7E397D0A3D41B01DF2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f0:62:df:ef:0d:ff:78:96:83:00:45:f2:c3:
98:0a:93:03:da:3d:a8:9f:19:2a:db:4e:1e:ac:19:
3b:28:e2:e5:89:7b:e5:8a:bc:e4:4d:3d:f2:a4:d9:
27:0d:d0:1c:a4:60:c6:cf:d2:43:0a:0c:c3:73:6d:
66:0b:ed:2e:23:87:87:3f:db:9a:89:df:a2:af:b5:
b8:13:e1:09:fd:b1:62:4c:fe:4c:ed:f6:f5:2c:b7:
45:c9:7b:c2:01:cb:3c:88:ec:99:70:4c:d4:a0:1c:
7c:3c:85:44:28:2c:29:39:f1:19:33:3f:dd:06:70:
7b:44:2a:d5:eb:de:27:fb:33:9d:6a:6a:7e:33:f5:
23:6a:01:0c:73:f7:c2:06:76:9f:5b:6e:66:c6:a3:
97:56:e0:55:74:25:67:7e:1f:c7:d7:50:fa:a6:e5:
0a:fa:07:65:b9:f0:f0:0c:c3:af:ad:94:9c:96:a1:
c8:59:dd:f6:00:d0:c5:23:50:88:85:95:8b:ff:92:
a1:e6:e1:01:39:18:d4:32:8c:92:28:93:c5:4e:f8:
4c:df:a4:f7:0e:66:69:5c:34:70:f3:59:3e:b6:a5:
2f:4a:f6:94:94:d3:ce:55:55:8d:57:f1:b9:d6:72:
03:dc:8d:3c:fc:58:18:2d:51:b5:72:19:6e:2c:8a:
ba:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:42:4E:33:5A:A5:51:45:A5:0F:B7:E3:97:D0:A3:D4:1B:01:DF:2B
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/X0JOM1qlUUWlD7fjl9Cj1BsB3ys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
33:6a:93:02:ab:e8:70:b7:73:ce:3c:84:5a:38:77:f4:6b:30:
71:6b:09:3d:02:55:38:2c:ed:d3:fa:f1:49:a6:a0:46:69:46:
e1:4c:cc:58:c8:4f:2f:9c:81:2c:4c:89:b4:7d:09:5a:77:ca:
39:c2:57:39:01:3d:bf:8d:fa:a4:89:1a:c6:47:2e:45:13:e5:
8b:2d:d5:02:68:4a:06:cb:c4:cb:bd:bb:b2:35:54:4d:c9:7f:
7e:97:c2:18:71:fe:e5:29:53:49:d9:0e:6e:a8:39:c0:17:16:
43:33:8b:a3:68:e8:32:cb:30:b2:2c:d6:fb:27:85:5d:dd:59:
a3:de:1e:df:67:1e:9c:a6:6b:cf:cf:85:bd:6c:85:d3:e2:d3:
e1:ca:1d:a8:0b:1c:4f:4d:ca:9b:0b:4d:95:87:46:90:7c:8f:
d4:1a:85:04:e9:11:32:1a:96:92:f5:56:a5:24:0e:40:70:af:
56:1b:f4:66:53:c9:d4:48:02:9f:f3:3f:c1:87:e7:0f:ba:0f:
87:e8:b2:12:35:a1:25:7c:0b:2b:4f:21:c7:a7:ef:5e:42:68:
60:9c:19:4b:b7:2f:cc:ae:5e:a8:f1:aa:a0:1a:b8:fc:44:ca:
f2:64:89:27:25:c0:2b:9e:96:86:f8:db:23:fb:3a:65:9a:b7:
c0:de:dd:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org