Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/aiaDvtLddVVlxype6m4vYfLeaEM.roa
File: aiaDvtLddVVlxype6m4vYfLeaEM.roa (raw, json)
Hash identifier: 3BnRjN5YMIDHvmPFWxUExC+zw9mBkuq6tNlGS5iQTKc=
Subject key identifier: 6A:26:83:BE:D2:DD:75:55:65:C7:2A:5E:EA:6E:2F:61:F2:DE:68:43
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09C7
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/aiaDvtLddVVlxype6m4vYfLeaEM.roa
Signing time: Wed 29 Sep 2021 02:38:38 +0000
ROA not before: Wed 29 Sep 2021 02:38:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 118.99.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2503 (0x9c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6A2683BED2DD755565C72A5EEA6E2F61F2DE6843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:a3:7e:66:54:ec:4f:9a:42:e2:b4:4a:ae:
21:79:9c:d8:eb:80:49:4d:e0:5e:89:7b:72:da:92:
a7:8f:53:64:ab:c9:f3:07:5d:f4:a8:a2:66:a5:f1:
79:0d:76:85:69:fc:d2:f8:a3:16:63:f2:9f:03:ca:
f6:ba:1d:47:27:04:cc:a8:17:8f:cb:b2:2c:83:84:
7f:ff:9a:4e:ce:09:78:6f:51:3a:5f:61:34:de:20:
15:b6:c4:38:3c:bc:a7:ec:f6:04:7f:12:fb:5b:14:
55:05:64:3b:00:00:d8:f9:81:91:e6:3c:6e:7a:8e:
67:27:86:4d:44:16:e1:dd:5c:a1:aa:70:89:1d:0e:
a1:d5:e8:ab:f8:a4:a5:6d:b7:ad:60:f2:4e:c8:10:
69:31:b1:30:b9:b7:69:c1:22:ea:57:72:4d:a0:58:
9b:fd:19:84:eb:f8:75:a8:2d:08:08:bd:e5:97:1c:
17:0f:a9:2f:5c:50:1c:ab:63:3b:9f:9d:9c:9b:03:
d0:05:f5:a3:db:92:ac:dd:c5:27:94:9c:4c:ae:1b:
a1:ae:ec:03:0c:8d:3b:6c:6d:58:5b:05:c6:d8:d0:
98:54:ba:b3:f5:ff:30:dd:b0:75:cd:d5:ca:08:ec:
a2:0c:d5:02:47:bb:fd:27:f5:bd:ff:46:75:ce:63:
af:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:26:83:BE:D2:DD:75:55:65:C7:2A:5E:EA:6E:2F:61:F2:DE:68:43
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/aiaDvtLddVVlxype6m4vYfLeaEM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.99.128.0/17
Signature Algorithm: sha256WithRSAEncryption
66:3c:e3:d2:89:63:00:cc:cb:ef:25:08:d9:74:ef:88:19:d5:
25:2a:3e:36:64:53:b5:0f:88:9d:11:23:e5:62:75:cb:bb:53:
b7:07:f2:2a:31:b3:b0:71:8e:94:a5:5d:ca:e8:c4:3d:56:0c:
88:e8:0d:44:df:0c:af:72:a0:e6:98:61:3c:fb:db:0d:b4:c0:
bd:39:19:9a:51:c5:02:83:2a:94:90:38:e1:40:c0:ee:36:f8:
46:28:a8:31:11:99:31:77:23:52:f0:df:72:16:c9:8b:f5:7c:
82:48:55:4e:9b:93:38:a2:a0:88:3c:2a:82:3c:cb:db:75:89:
ba:99:94:78:82:cc:53:85:c1:ac:56:46:43:fd:a9:fa:1b:e5:
05:b9:02:5a:9a:79:70:4e:4a:1c:95:b0:c3:5e:81:ad:3e:57:
bb:c1:50:13:9c:f2:aa:5a:04:82:5a:84:a2:1a:d6:4f:c3:c5:
4b:80:32:ef:0b:47:42:5e:2a:37:68:69:34:97:01:45:4b:7b:
81:2c:b5:23:69:72:5b:5a:ab:86:73:e7:d8:59:72:2a:f4:9a:
a2:ef:27:62:95:02:62:92:fb:08:c0:df:f5:e2:64:fb:88:b7:
c2:1c:3e:5d:31:ef:df:90:71:4f:c2:40:6e:70:56:bc:ba:1d:
79:0b:a4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org