Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jmKsxH1tv8xj3Q1OOMgcgHHhhEk.roa
File: jmKsxH1tv8xj3Q1OOMgcgHHhhEk.roa (raw, json)
Hash identifier: AvcVmtQLFp5/OVse2S1ipWmsrzsUJfDvt/5b7ym7AdU=
Subject key identifier: 8E:62:AC:C4:7D:6D:BF:CC:63:DD:0D:4E:38:C8:1C:80:71:E1:84:49
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09C2
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jmKsxH1tv8xj3Q1OOMgcgHHhhEk.roa
Signing time: Wed 29 Sep 2021 02:38:36 +0000
ROA not before: Wed 29 Sep 2021 02:38:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 211.79.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2498 (0x9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8E62ACC47D6DBFCC63DD0D4E38C81C8071E18449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:49:b7:a5:bb:a5:81:d2:11:bc:be:d9:5d:
be:56:d4:b4:d5:72:e0:a0:68:d9:c9:34:34:01:53:
23:1b:af:b4:40:86:34:84:ca:46:ca:74:0a:16:c3:
39:11:0b:5b:9f:b6:b0:38:83:17:d9:a2:ea:77:84:
9a:88:53:94:ee:d5:45:c5:74:67:31:a9:83:02:ac:
d8:8b:14:72:25:76:10:41:8f:7e:e0:b4:db:ab:90:
90:04:b2:86:07:86:70:3a:ba:68:60:60:c6:94:0f:
aa:b2:6b:0a:b2:f0:6d:c5:13:29:54:49:bb:83:bc:
86:97:36:89:ea:c1:ca:78:67:9e:0c:0b:3e:94:48:
5c:d9:60:5a:0e:8a:f2:89:a5:50:08:61:d1:12:be:
ac:af:ff:b5:88:b0:8c:49:40:a4:60:25:70:f2:92:
59:b9:c0:41:a6:13:84:00:ed:52:bd:30:2b:0d:1f:
76:c2:3f:90:a6:56:1e:18:84:ed:79:59:0e:5a:f6:
6b:f2:ad:b5:4e:cf:71:4e:40:c6:3d:e3:fa:db:cb:
0e:39:7c:67:c9:ff:ad:da:f8:48:66:5f:f6:1c:fe:
4f:75:c3:0c:f5:f8:af:53:04:25:a1:97:98:36:f7:
8e:e2:2f:c4:df:44:ac:64:b5:2d:a7:e4:e4:e4:db:
b1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:62:AC:C4:7D:6D:BF:CC:63:DD:0D:4E:38:C8:1C:80:71:E1:84:49
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jmKsxH1tv8xj3Q1OOMgcgHHhhEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.64.0/19
Signature Algorithm: sha256WithRSAEncryption
16:e7:37:43:09:d5:ba:2f:b1:cf:fc:d2:80:ec:a2:90:01:2c:
e7:cb:3f:ba:28:4f:ee:75:82:66:22:f1:21:62:e8:4f:1b:44:
58:81:2d:dc:54:37:92:fa:a8:3c:29:19:fe:5d:87:0b:cb:4a:
07:50:4d:f5:02:e1:97:af:df:9f:a2:7d:ed:79:b1:2c:82:b4:
1c:f7:27:31:f2:b9:af:30:56:60:c6:7d:23:eb:ee:25:e0:ca:
d9:68:b3:81:7d:2d:9e:3d:01:47:60:48:45:62:56:13:3b:17:
f0:a1:2c:99:71:18:f1:d5:e9:bc:a6:6e:d3:52:b1:1d:b9:2e:
75:ed:c9:43:48:e9:e4:83:f9:df:37:da:43:86:54:f6:86:a9:
54:e0:2d:15:90:21:f3:6e:cd:90:3d:03:25:2c:0f:75:27:13:
28:d8:97:5b:dc:a5:1a:c9:74:a7:c1:aa:ec:d6:93:07:26:a0:
21:cd:56:66:76:62:eb:1b:7d:d3:f2:db:60:c2:0f:a2:89:a7:
9d:c6:58:74:98:fd:23:36:73:9f:40:80:69:85:74:6d:24:bf:
4d:61:37:8e:a4:7b:71:4c:10:37:9b:7c:2c:45:e7:21:8e:9e:
9c:1c:77:9f:83:56:a5:3b:a3:71:14:b9:69:46:f7:9a:4a:14:
4d:24:bb:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org