Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Y4y9QJTw_WLLfGCBznrTJx7_4u0.roa
File: Y4y9QJTw_WLLfGCBznrTJx7_4u0.roa (raw, json)
Hash identifier: XYojP57tyEJvVRyZdVU9S/r00ojUWox0IKAT30q7E7w=
Subject key identifier: 63:8C:BD:40:94:F0:FD:62:CB:7C:60:81:CE:7A:D3:27:1E:FF:E2:ED
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09C1
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Y4y9QJTw_WLLfGCBznrTJx7_4u0.roa
Signing time: Wed 29 Sep 2021 02:38:36 +0000
ROA not before: Wed 29 Sep 2021 02:38:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 60.245.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2497 (0x9c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=638CBD4094F0FD62CB7C6081CE7AD3271EFFE2ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:f5:04:ee:ea:b5:ec:87:b2:e0:34:1a:18:
0e:29:86:ca:77:c5:1d:33:6d:bd:3b:55:5e:5e:25:
35:3d:86:d5:ec:d4:e2:79:71:2f:19:1a:52:76:4f:
c0:57:9f:52:c0:98:1c:7a:49:06:3e:26:1e:99:91:
d8:07:57:43:df:61:f9:2b:f4:86:4f:4c:ce:61:ed:
97:0e:a2:95:b8:ac:c9:ae:61:3e:5b:c5:77:5a:46:
05:6a:f2:e4:0c:a6:0b:4e:18:23:a9:db:e2:3f:d7:
9c:f4:25:7e:59:f4:73:f8:0d:39:63:b1:e1:9e:ec:
28:74:de:04:b8:87:a8:6f:2a:a9:9d:0b:29:32:09:
4f:0a:51:be:ca:92:44:54:75:1a:ff:5c:0e:bf:cb:
a9:4a:7e:f0:84:30:c7:f2:4b:28:37:6a:f9:ef:ac:
84:be:7d:52:ea:9e:a6:f0:75:8a:a5:1b:bc:25:b6:
77:df:c5:ed:19:5e:d7:91:8d:bd:53:6c:fd:ca:72:
de:3d:a3:fd:3b:2d:46:69:e9:3a:de:e9:33:f1:9d:
1a:e1:54:2c:9d:94:c4:71:94:4f:a2:f1:75:fa:fc:
22:a8:5b:d1:e8:9b:0b:4c:1a:57:4d:6a:ae:15:09:
20:4b:c5:a3:41:ba:af:b3:a5:6b:54:59:cb:c5:2c:
63:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8C:BD:40:94:F0:FD:62:CB:7C:60:81:CE:7A:D3:27:1E:FF:E2:ED
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Y4y9QJTw_WLLfGCBznrTJx7_4u0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:70:76:30:66:15:6e:c8:f4:c6:96:3b:39:c4:4d:f6:c5:c4:
3d:f9:4d:3b:19:1b:57:73:65:f5:98:ab:6f:ca:84:f8:f4:a8:
17:3b:bb:48:0e:4b:62:82:4e:4e:2a:c2:47:f6:e3:16:f6:18:
5b:ef:0b:15:52:a0:fd:ed:3f:70:49:eb:88:ca:1a:14:d0:d2:
5e:28:9c:2b:3f:83:ed:26:1e:8c:c0:b4:b0:a2:da:3b:43:a8:
1d:dd:04:ca:56:76:9d:71:37:b1:a6:19:1f:18:63:e6:4f:54:
ca:75:c1:f4:dd:0f:1c:cf:f3:54:3e:d3:a1:59:1c:09:27:fe:
14:8f:0b:20:f8:4b:3f:3e:7f:d0:93:87:02:ee:31:56:17:4f:
44:02:ed:6e:1f:91:6b:9f:3c:72:2f:bb:13:c0:8f:3b:f2:8e:
ba:c5:95:07:ce:43:a4:d2:65:4e:73:a4:30:bc:7e:65:a2:50:
e0:67:fe:de:6c:a1:12:41:dc:e6:64:f3:4b:c7:91:77:71:54:
9f:98:1e:c5:15:7a:2a:d8:0f:06:f7:54:dc:b9:78:17:1f:a7:
8d:bf:59:9e:c1:67:6d:f6:fb:63:58:79:3b:a2:82:b5:77:fe:
3a:9b:ff:57:1f:b0:96:53:ad:c5:68:2e:e9:39:9b:37:a4:e7:
28:74:1c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org