Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gH7SYaRt7oucBepOKBLRlEepazU.roa
File: gH7SYaRt7oucBepOKBLRlEepazU.roa (raw, json)
Hash identifier: 3+qPuk9Avtr5q9u2RrSFBwEd+OSr4E4ANaSAxoQJhsA=
Subject key identifier: 80:7E:D2:61:A4:6D:EE:8B:9C:05:EA:4E:28:12:D1:94:47:A9:6B:35
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0793
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gH7SYaRt7oucBepOKBLRlEepazU.roa
Signing time: Tue 29 Sep 2020 10:05:45 +0000
ROA not before: Tue 29 Sep 2020 10:05:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.63.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939 (0x793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=807ED261A46DEE8B9C05EA4E2812D19447A96B35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0d:b4:91:e5:72:82:f4:e1:cd:31:dd:17:90:
4f:aa:be:ba:2b:09:22:2c:25:06:5f:e6:a5:f3:9a:
2c:31:c8:c7:03:dc:dd:34:36:0f:97:cf:ea:d7:f8:
c5:3a:05:46:9b:b8:da:0c:aa:80:28:04:63:7d:12:
b4:e2:a1:94:de:53:98:30:96:97:58:35:dc:f1:97:
fb:f0:1f:65:9e:22:dd:21:2a:b7:a5:ea:ca:79:1c:
e9:47:98:44:7f:e7:18:dc:49:11:78:f1:bb:0c:fd:
68:b4:0c:3b:29:6e:ae:d1:0d:c1:33:f9:85:a2:2f:
47:2a:89:9f:87:eb:dc:b9:41:df:19:25:6f:08:51:
1b:35:37:17:a8:d5:d2:9d:11:ba:e4:f3:f7:0d:94:
33:dd:8a:9e:31:32:07:f8:e3:89:00:86:5e:74:b3:
3c:08:ff:e0:52:16:5c:5c:b2:69:35:d1:a9:52:99:
fc:1a:19:d1:e3:2b:ca:67:eb:23:1c:95:b7:ab:c6:
5b:1a:37:ff:43:6f:3d:aa:f0:37:f3:e2:1e:63:55:
24:1a:77:58:ae:32:16:e8:e0:cd:78:29:93:4d:39:
ef:64:fc:a4:11:2a:c4:76:ca:89:fa:93:52:62:03:
37:a0:bf:a6:dd:48:ef:de:b1:cd:24:49:5c:4e:22:
9d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:D2:61:A4:6D:EE:8B:9C:05:EA:4E:28:12:D1:94:47:A9:6B:35
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/gH7SYaRt7oucBepOKBLRlEepazU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.160.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:cb:ea:2f:39:75:ee:05:db:15:eb:f2:e6:fc:b5:9f:1a:89:
09:e1:5d:e4:74:de:b6:92:56:a1:d1:73:bb:83:04:3d:c2:f3:
9e:9a:f8:5c:ac:7d:9f:80:41:46:32:b0:df:38:74:c1:df:98:
aa:7d:05:3c:28:48:7c:0a:b4:10:7f:7f:c6:f2:a3:87:72:be:
8e:ac:8a:a7:ef:34:f2:90:4e:09:56:26:c3:48:b8:29:bb:87:
40:2e:05:69:b5:dc:6b:b9:5c:73:f4:23:f5:6a:88:3e:03:61:
a9:1d:5c:e4:7b:e5:a5:70:1c:eb:76:2e:16:6d:d2:fe:a1:b3:
d9:79:55:b0:95:d8:2b:82:2a:53:da:fa:b8:e2:c1:37:f0:b3:
a9:83:52:db:e2:8b:42:e5:6b:f1:83:37:e2:1e:5c:5a:8e:e4:
26:f5:84:97:99:b3:18:e5:c6:ba:26:25:17:15:dc:31:85:f7:
fa:35:cb:3d:0b:37:df:42:03:bd:5f:72:1c:ae:57:12:cc:8b:
08:f8:8e:19:f4:47:00:b7:bd:31:21:be:f9:43:43:e2:ae:0b:
5f:72:d2:94:b7:94:f2:b2:00:73:f8:4e:b0:0b:a7:dd:ea:43:
cd:4c:8c:3a:06:d6:bf:3d:12:0b:14:97:df:f0:79:ef:43:33:
f4:f1:c8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org