Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a6BNDfwNW3WceBIYAnivgpKdJDY.roa
File: a6BNDfwNW3WceBIYAnivgpKdJDY.roa (raw, json)
Hash identifier: OM66fpei281EMAbQtOLxgdeNaNQcI7Bu5c9VbJY5PpM=
Subject key identifier: 6B:A0:4D:0D:FC:0D:5B:75:9C:78:12:18:02:78:AF:82:92:9D:24:36
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09CE
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a6BNDfwNW3WceBIYAnivgpKdJDY.roa
Signing time: Thu 30 Sep 2021 13:23:38 +0000
ROA not before: Thu 30 Sep 2021 13:23:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 101.0.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2510 (0x9ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 30 13:23:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6BA04D0DFC0D5B759C7812180278AF82929D2436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:b4:0c:35:62:ed:82:74:f6:c3:69:0d:cf:
2c:b4:5d:25:99:42:cf:4d:c2:a8:7c:5a:1e:c6:d2:
a6:71:9d:27:16:ce:d3:fc:0c:e3:45:77:eb:1b:fe:
24:cf:f0:af:b0:7c:f4:06:d5:0a:9f:0c:02:14:3f:
ce:06:53:70:42:95:8a:31:17:20:8e:3e:84:36:f2:
30:91:47:f5:95:da:31:e1:0d:b0:90:ae:d1:e2:5a:
2e:b3:0f:e8:9a:3a:34:b4:8a:5d:8c:ce:1c:eb:91:
0f:69:df:18:6c:51:52:41:f4:5b:cf:b4:a7:3b:ea:
3c:6d:e1:bf:b5:ec:40:27:6a:99:57:2c:b9:40:54:
31:44:91:04:86:be:7c:8c:56:da:e3:3c:84:2e:65:
cd:7b:af:7f:af:5e:76:b7:0c:86:f8:0c:96:47:30:
a0:41:b5:bb:28:e4:8a:df:34:97:c9:96:c7:24:eb:
6b:bc:6a:93:08:af:54:5c:a8:2a:9f:33:e0:97:9e:
51:e7:52:5e:44:54:13:9d:82:20:51:c7:e1:50:20:
8a:a3:c4:15:06:a3:f1:3e:8e:29:e4:9b:ae:b3:44:
56:07:5c:35:25:f1:85:bc:f6:b0:0a:6e:88:b0:3e:
ae:b2:c2:83:5c:9b:0d:88:1a:32:31:f0:9b:5a:89:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A0:4D:0D:FC:0D:5B:75:9C:78:12:18:02:78:AF:82:92:9D:24:36
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a6BNDfwNW3WceBIYAnivgpKdJDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.128.0/18
Signature Algorithm: sha256WithRSAEncryption
bd:ad:7d:03:59:6e:62:ac:91:c9:7f:00:14:e0:ef:cb:97:40:
82:13:95:53:21:3f:5a:67:36:9a:fa:6f:78:c6:2a:53:b7:ad:
9a:c5:aa:79:53:34:58:16:03:2a:b9:a5:cf:dc:cc:1a:5d:3a:
e6:67:26:93:7f:f9:43:50:16:60:2d:d5:e0:73:a8:cf:14:b5:
19:30:11:83:f5:10:f4:4b:c9:56:ab:63:6c:a4:da:a3:4b:40:
68:17:e4:e2:eb:35:60:a1:a9:6f:6a:90:9b:7d:00:77:8e:a8:
a3:12:cb:52:3b:98:44:e0:a9:7a:7d:f5:7a:cf:82:78:4e:9c:
f0:2b:1d:1d:0f:52:25:50:c1:56:04:80:d9:44:46:09:ea:41:
85:d4:0b:6d:1c:74:85:95:e7:0e:66:cb:58:2e:d4:c1:ad:e2:
e1:1d:e6:c0:73:6f:57:ee:5a:8f:7b:32:7e:e7:07:c1:c1:e7:
71:a2:05:97:e4:d1:a6:85:98:1f:f1:5c:85:d4:b7:7f:ad:01:
c5:8b:d8:81:2d:d7:e6:fc:b0:f0:37:4f:0b:b9:7d:3b:3d:98:
a3:02:92:81:7d:2b:30:00:88:ae:82:63:0d:73:da:34:d3:ce:
af:6d:a7:85:f8:2d:62:16:27:8c:8d:de:ed:3d:78:e5:b8:ca:
df:79:9c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org