Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/bmszvMUT_JzO749LgTTPn1woamA.roa
File: bmszvMUT_JzO749LgTTPn1woamA.roa (raw, json)
Hash identifier: kn+mLCR+Kmf7W523D8C4h9kOgql+GoTmoIksHX/+SuU=
Subject key identifier: 6E:6B:33:BC:C5:13:FC:9C:CE:EF:8F:4B:81:34:CF:9F:5C:28:6A:60
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0798
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/bmszvMUT_JzO749LgTTPn1woamA.roa
Signing time: Tue 29 Sep 2020 10:05:46 +0000
ROA not before: Tue 29 Sep 2020 10:05:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 103.224.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1944 (0x798)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E6B33BCC513FC9CCEEF8F4B8134CF9F5C286A60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:16:98:e5:0f:a4:45:07:23:6e:74:d7:2e:12:
7d:73:dd:af:74:ea:de:7c:fd:42:b1:40:fc:f0:e8:
64:6e:d5:7f:49:6b:22:68:8d:4a:09:91:81:e4:3d:
91:43:a4:37:e6:9d:e5:7a:05:1f:0a:d9:33:86:6b:
2e:1a:50:75:93:26:65:a1:c1:5f:bc:ec:06:72:bc:
4a:f9:2f:ef:a6:d7:d4:1e:bc:5d:58:d1:3d:84:8e:
4e:5d:49:18:a5:03:ac:fb:db:44:b3:e9:42:48:58:
b7:b3:ae:fc:9e:de:ff:e4:01:fa:3b:54:34:fb:2e:
93:06:36:9c:91:c7:9d:d1:fd:03:13:8f:1e:b9:58:
3f:bd:d4:49:aa:9b:11:08:0b:5a:6e:bc:ef:d0:cd:
1d:0e:ea:69:4a:b4:81:6d:58:1d:3b:a4:c0:ab:63:
46:13:9a:af:7d:6e:24:96:60:18:53:38:e1:05:fb:
29:52:38:6e:f2:be:54:bd:cd:38:6a:0d:e2:f5:7e:
da:90:df:36:a1:b2:cb:2b:1e:f1:d2:fa:b3:55:85:
5f:43:47:26:d7:61:86:8d:a9:a0:75:7d:12:3b:57:
06:7b:f4:9a:87:ae:22:57:ee:10:ba:03:a0:d0:22:
72:6e:8b:5d:b4:a5:df:e9:99:fa:a7:b3:47:b3:4a:
4c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:6B:33:BC:C5:13:FC:9C:CE:EF:8F:4B:81:34:CF:9F:5C:28:6A:60
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/bmszvMUT_JzO749LgTTPn1woamA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.204.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:f0:ef:86:00:c4:17:07:d9:9c:71:71:71:67:0b:59:ed:fa:
54:be:2b:a5:56:3c:21:dd:c7:2e:f1:63:bc:e2:34:81:a1:87:
d0:80:4e:f5:f7:21:d5:28:bb:d5:c5:ab:a7:d0:57:c0:5e:33:
98:60:63:d8:9d:d6:8b:79:07:46:dd:8f:23:15:36:c4:c7:c6:
34:6b:dc:d7:61:ea:0d:3d:30:50:e4:8e:24:21:f7:27:18:ce:
8a:86:e7:21:45:c2:c3:0d:c8:c8:83:3f:00:21:1b:db:9c:ca:
b3:06:ae:68:7e:d0:45:36:4a:4b:e7:34:ee:e4:6f:53:97:e3:
0e:bc:4a:17:7e:85:eb:d6:c0:f7:af:b7:25:b1:c7:2b:f7:df:
3d:fe:e7:4b:30:07:77:43:53:43:28:16:75:94:95:af:3f:45:
ba:7c:ae:8a:49:0a:ff:8f:96:ed:5b:fb:d8:be:d6:f6:39:61:
30:22:71:07:5a:23:c7:9a:bf:b8:af:67:90:6d:57:63:b4:48:
73:09:c7:f7:39:4b:12:41:40:39:84:56:36:91:12:b3:0b:61:
2f:0a:37:b0:0d:8a:59:64:15:44:bf:7b:ec:74:e4:00:98:46:
ab:a4:d1:22:84:e6:9e:ea:60:7e:f3:c5:73:de:fa:a1:f3:63:
1b:65:d0:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org