Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/h1JhmaJRHV1DSnUi6qybVAKEUXo.roa
File: h1JhmaJRHV1DSnUi6qybVAKEUXo.roa (raw, json)
Hash identifier: p9/cm+aFtdrltBf8Oyy+ZEVWHbz18BWNA81nmBzLTZU=
Subject key identifier: 87:52:61:99:A2:51:1D:5D:43:4A:75:22:EA:AC:9B:54:02:84:51:7A
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0903
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/h1JhmaJRHV1DSnUi6qybVAKEUXo.roa
Signing time: Sun 07 Feb 2021 11:55:01 +0000
ROA not before: Sun 07 Feb 2021 11:55:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 150.107.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2307 (0x903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=87526199A2511D5D434A7522EAAC9B540284517A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:96:c5:32:4d:08:95:93:99:37:f5:a0:cc:b8:
e1:c8:58:1e:8f:7f:59:9f:6b:17:52:ae:1a:65:4e:
ba:8b:e9:f0:96:94:26:24:82:a4:b4:b5:12:46:87:
63:7a:2f:8b:0d:ff:cb:9b:e4:de:b4:9f:73:5f:ce:
ae:ec:c6:eb:c5:83:a1:f3:14:15:7b:46:aa:21:7e:
28:d2:15:98:e0:11:85:33:2d:98:b6:c8:21:12:31:
0f:ab:dc:50:72:f7:9b:1f:c5:ac:9e:a7:f4:2f:d5:
fb:d6:2b:23:81:e0:af:16:52:c5:df:4b:3d:24:c2:
e4:b5:b3:1d:c3:d3:2a:24:67:ec:b1:44:59:54:8a:
3b:ba:af:4f:61:cc:ea:be:3a:30:c2:c2:8c:20:0e:
63:91:dc:bd:1f:b8:a8:9b:85:16:43:ae:25:3c:cd:
8b:ee:fa:ba:91:10:32:b0:bd:02:ba:b6:0f:5d:7d:
62:58:14:8b:d0:15:49:6f:a5:22:d4:4a:9b:e2:cc:
66:79:a6:17:6f:91:8d:20:18:a9:3f:4a:7d:af:a0:
75:f2:c3:ee:35:ca:f9:45:fa:6b:bc:9d:66:50:ad:
5d:d1:77:88:90:f7:a1:2e:29:c1:1b:23:d7:1a:19:
a2:fd:27:3a:d6:31:bd:7d:4e:7c:e4:33:c7:ff:b0:
0a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:52:61:99:A2:51:1D:5D:43:4A:75:22:EA:AC:9B:54:02:84:51:7A
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/h1JhmaJRHV1DSnUi6qybVAKEUXo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.60.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:39:e0:2c:96:b1:45:a2:9f:d9:a7:0b:93:0c:2a:9b:13:a0:
de:55:7e:04:b9:92:0e:f8:8c:72:53:25:6c:4c:c4:45:92:6e:
5f:a9:bf:98:b4:93:c7:3f:ea:8a:8b:7d:ca:b9:5a:82:7e:80:
8e:2e:24:f5:1a:3d:fa:cb:83:8e:1f:dd:03:fa:33:a3:cb:d2:
f4:e5:48:fb:88:03:ce:fa:f2:cd:63:8c:5d:84:01:f3:3a:d6:
4a:b6:ab:38:61:4a:a7:7e:21:45:a2:9e:7b:7e:33:17:6a:c9:
00:ae:e5:ea:98:08:0d:b6:d1:38:fb:9e:83:b0:a1:66:69:3b:
b3:bb:c0:7f:44:89:e5:94:e2:98:82:37:58:02:87:b5:77:1f:
49:25:4d:2b:e4:6d:31:31:2c:65:fb:4a:94:7e:86:90:4b:58:
b1:a0:cd:9d:27:99:9a:ed:c6:62:99:ae:94:cf:8e:4e:ee:d6:
38:01:cf:ab:2e:41:f0:90:87:b0:e4:8d:6e:05:89:6e:6d:e3:
d6:97:fc:9e:28:a0:75:22:d3:d0:15:42:c7:a8:54:ce:ad:fc:
2f:ce:07:f2:68:0b:5e:5f:76:50:fc:86:bc:f1:66:f3:c9:d8:
b5:22:7d:d5:27:50:4c:7b:b5:c8:96:9c:5e:a2:1d:ac:37:fa:
96:70:d0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org