Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iRjpRQNn24znLqH16lLdU99rbdg.roa
File: iRjpRQNn24znLqH16lLdU99rbdg.roa (raw, json)
Hash identifier: euuJz6sPz885xu4/ZTHF7whsUkwswbRIFeBO9Q8EXco=
Subject key identifier: 89:18:E9:45:03:67:DB:8C:E7:2E:A1:F5:EA:52:DD:53:DF:6B:6D:D8
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 08FF
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iRjpRQNn24znLqH16lLdU99rbdg.roa
Signing time: Sun 07 Feb 2021 11:54:59 +0000
ROA not before: Sun 07 Feb 2021 11:54:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 118.99.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:54:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8918E9450367DB8CE72EA1F5EA52DD53DF6B6DD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:0c:f9:2d:51:09:ed:2b:f2:cb:0d:28:8e:
ad:e9:3d:65:e7:e7:69:92:09:93:c2:d9:b2:48:0a:
3d:5d:c4:7e:c0:9d:8e:40:3a:d1:6e:fc:30:ed:e7:
31:a0:42:e8:73:83:b3:cb:d8:39:84:cc:6d:ee:18:
22:e8:81:3d:49:4a:45:9b:f6:64:37:1d:1e:af:66:
53:ea:8e:38:e0:2d:62:ad:b0:f7:84:be:55:53:9e:
5c:d4:ce:09:67:9a:90:9c:50:d1:d1:a0:2a:54:52:
47:dd:6f:27:d1:f2:59:17:23:82:4c:ff:e8:cf:2f:
84:20:18:66:46:6e:d7:1a:b8:23:34:18:67:31:6e:
2b:70:1d:33:05:37:af:3a:ef:e4:1c:c9:7f:c0:0d:
93:fb:f3:78:29:01:55:7a:b3:8d:ca:37:60:77:b1:
42:82:5b:99:5a:89:cb:72:98:77:92:39:4e:b4:1f:
8a:8b:7f:10:ec:29:40:bb:52:48:8b:56:72:a1:a2:
5d:85:25:ec:0e:7c:0a:96:c9:8b:10:c0:f4:38:a0:
98:53:dd:9a:d7:d6:9d:0d:58:bc:3c:44:bc:3c:64:
81:e7:17:6f:af:36:cb:ce:f6:63:cd:4f:72:78:0e:
9c:bc:94:48:3a:a2:2a:76:81:a1:79:e5:cf:44:10:
b5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:18:E9:45:03:67:DB:8C:E7:2E:A1:F5:EA:52:DD:53:DF:6B:6D:D8
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/iRjpRQNn24znLqH16lLdU99rbdg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.99.128.0/17
Signature Algorithm: sha256WithRSAEncryption
92:4f:d1:78:32:26:a0:b4:99:bc:e8:10:23:67:63:68:91:98:
c8:ed:b0:d8:8e:27:06:67:98:09:30:5b:53:ba:f9:f3:a4:3b:
9d:1d:cd:b8:e8:41:6d:d3:2e:3f:46:15:1e:43:72:5f:c6:46:
5e:d8:ca:57:65:53:b3:87:49:98:13:67:e4:1b:e6:11:10:3d:
c1:d2:c1:c3:8d:19:af:46:f9:0e:11:61:30:49:ae:d4:16:9f:
9e:dd:6d:71:65:24:59:f6:11:7b:e4:ac:64:4e:2e:77:25:cb:
41:05:fb:2e:b2:a0:8d:e3:5c:21:f9:31:da:c4:b6:55:73:e5:
39:17:fa:46:41:86:bb:90:f2:17:15:db:b3:9a:c6:d1:7c:a0:
bd:76:ec:8c:87:eb:3b:39:f3:de:1c:81:1e:81:ff:43:92:13:
23:27:29:ea:4f:47:41:49:00:82:bc:99:e5:a9:ac:74:f1:b4:
61:9e:4a:84:b9:47:0c:95:be:00:d5:01:7e:e2:b4:6e:2f:59:
ca:c6:83:c2:5d:71:6f:7d:4d:b4:9c:49:07:b9:af:5d:5c:8a:
95:da:25:3f:6f:4a:0c:39:21:a6:b2:21:d4:21:45:ac:03:1f:
1d:e5:e9:d3:f1:15:50:e5:b3:6b:ba:8f:ec:0d:f5:fe:47:53:
d2:d1:50:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org