Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Zj1qm2Y24OVZAQoLLnPCmAxZjKU.roa
File: Zj1qm2Y24OVZAQoLLnPCmAxZjKU.roa (raw, json)
Hash identifier: M7V77TcP0bXWFQMiyNCjfEB39cswEsd20NBDpk8uS6I=
Subject key identifier: 66:3D:6A:9B:66:36:E0:E5:59:01:0A:0B:2E:73:C2:98:0C:59:8C:A5
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0901
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Zj1qm2Y24OVZAQoLLnPCmAxZjKU.roa
Signing time: Sun 07 Feb 2021 11:55:00 +0000
ROA not before: Sun 07 Feb 2021 11:55:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305 (0x901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=663D6A9B6636E0E559010A0B2E73C2980C598CA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6a:a8:45:03:93:af:0e:01:42:b9:d3:5d:6f:
ae:f2:26:f7:29:21:e8:9d:08:a0:a8:77:bf:8f:fc:
be:d1:b1:c4:8b:8b:e9:76:f9:dd:43:87:06:ab:c8:
3e:ff:63:93:d4:b9:4f:54:f5:56:56:ed:58:d7:ef:
fc:75:0e:0d:d0:a4:ee:74:ae:24:1e:27:b1:f8:64:
59:aa:8b:53:a1:cc:64:d7:c2:e5:47:a4:03:74:5a:
3a:8d:cc:aa:a7:ea:0f:d8:64:77:20:44:95:25:a2:
d2:21:3f:f0:1a:c8:fc:c1:64:b6:7a:16:d0:27:10:
18:a0:05:95:90:6f:d8:31:f2:68:5d:43:f1:90:f5:
8a:10:d2:b4:77:2a:52:f1:21:d7:9b:35:eb:14:39:
c5:07:63:05:ba:77:c0:ca:08:ff:9e:36:0d:78:33:
17:d4:e4:71:1a:a7:8a:10:42:f9:d3:34:bd:69:e6:
8c:75:8a:b9:9b:2f:68:9a:5a:3e:f2:26:41:f9:34:
82:94:c0:e3:5d:c3:8e:2b:fa:2d:9e:55:a6:a0:44:
64:5e:f9:49:c9:19:1f:d4:45:51:81:7b:ee:ce:7a:
88:18:4b:1f:5f:f1:41:7e:af:2e:13:d1:b9:65:fd:
ed:3c:5e:97:c2:a9:72:5b:51:93:b4:0f:19:32:c1:
f6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3D:6A:9B:66:36:E0:E5:59:01:0A:0B:2E:73:C2:98:0C:59:8C:A5
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/Zj1qm2Y24OVZAQoLLnPCmAxZjKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0b:cb:81:37:98:84:6b:80:30:d4:d9:e7:f1:bb:95:d1:75:2b:
a5:63:30:73:0b:11:ca:5a:26:03:85:00:2c:ed:8b:f2:f9:61:
ed:ab:72:48:6e:37:b2:c4:b1:36:77:a1:9b:20:19:de:dc:9b:
f4:c4:f4:1e:86:59:b0:d9:9f:6a:7a:f0:c5:51:3c:65:d9:96:
cd:5d:fa:34:98:c9:a8:7b:85:28:65:f0:2c:54:eb:8a:52:7e:
aa:d1:40:19:80:b8:08:93:c4:5b:12:86:ce:12:6b:89:63:45:
dc:f4:4e:15:40:b1:da:ae:ab:d9:4c:50:49:ef:c6:32:5e:13:
6a:7f:2b:f3:d5:37:78:25:19:4d:28:5b:39:ae:e1:da:37:c1:
66:05:9e:c4:96:ae:a9:de:2f:b1:07:66:46:53:37:83:2f:d0:
58:65:76:32:61:b0:12:de:5c:70:27:87:4a:04:41:f0:60:2d:
bc:45:ba:53:b4:e5:31:0c:86:85:c5:50:75:a2:d6:f0:d8:4d:
89:80:e0:69:d0:55:7e:2d:d1:5b:e6:e6:05:9b:41:be:f3:a5:
ab:1a:4d:c4:0f:c2:23:d8:b4:71:03:b4:a9:c6:4a:0a:66:47:
1e:04:4a:1e:c3:0b:87:d4:b0:ce:d6:d5:2e:90:5e:33:b6:2c:
95:1a:8d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org