Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/kpTXY3DTqkMrDezcI0F21an-txg.roa
File: kpTXY3DTqkMrDezcI0F21an-txg.roa (raw, json)
Hash identifier: 3ONtz28DYyAINaUdzYd87dGttKoeDGAU9YAq0nzy7RU=
Subject key identifier: 92:94:D7:63:70:D3:AA:43:2B:0D:EC:DC:23:41:76:D5:A9:FE:B7:18
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09C5
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/kpTXY3DTqkMrDezcI0F21an-txg.roa
Signing time: Wed 29 Sep 2021 02:38:37 +0000
ROA not before: Wed 29 Sep 2021 02:38:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 150.107.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2501 (0x9c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9294D76370D3AA432B0DECDC234176D5A9FEB718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:8b:c0:63:66:0a:dc:26:e7:bc:16:af:df:f9:
57:9b:45:a7:b1:fc:79:c6:9f:3f:46:7b:c3:8a:83:
33:41:ef:fd:b9:3d:7e:d1:41:91:d9:83:5b:8e:87:
d5:ba:12:0d:9d:02:56:aa:42:a8:1c:c7:18:5d:2c:
8f:68:51:f6:00:e8:bc:f0:06:0f:e9:a6:2f:3a:ae:
ca:3c:91:1c:a8:96:b4:7a:e5:29:33:ae:11:f4:77:
43:75:85:77:9e:05:22:22:7d:44:09:4a:a0:21:b8:
1f:73:14:be:8a:19:e5:91:22:89:fc:7d:be:e8:60:
5a:27:e5:f7:9b:ea:51:39:9d:d4:38:71:0b:dd:c3:
72:15:9e:9c:e2:9e:47:66:f0:64:ec:e3:25:0b:2b:
60:20:54:ce:36:d3:3f:59:e6:e8:f6:c5:73:c9:ee:
2c:9e:ff:bc:15:18:ac:e4:1f:ec:72:97:fc:64:f7:
72:2e:69:06:8f:78:12:e8:97:86:05:da:46:c7:75:
30:e4:a8:5c:0e:bb:98:2a:64:05:20:19:e2:ef:f5:
e4:7d:39:76:8b:cd:77:b5:83:d1:87:9c:e8:7e:c3:
df:91:78:31:f8:3b:6e:e5:7b:86:7e:45:cb:d7:df:
00:8b:29:6a:0c:f1:2c:ec:a0:07:19:81:9b:f0:48:
4b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:94:D7:63:70:D3:AA:43:2B:0D:EC:DC:23:41:76:D5:A9:FE:B7:18
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/kpTXY3DTqkMrDezcI0F21an-txg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.60.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:7b:30:af:7f:c3:4a:b2:2a:6e:25:64:c9:80:0e:13:72:b3:
01:72:9f:1b:89:23:0b:b9:00:2d:82:ac:f9:93:37:00:16:f7:
3e:5c:02:f6:76:18:89:1e:11:9d:74:90:4f:b0:c6:54:05:1a:
cf:ca:8a:91:e7:16:1c:2e:8e:a7:7d:e2:4b:e7:6e:a4:7f:a5:
7f:2c:c8:fa:8c:82:10:e5:e3:99:bd:2b:29:e0:47:72:61:89:
71:cc:57:ad:a4:c5:4b:72:c1:6b:8a:fb:f6:77:0f:33:00:95:
c4:27:22:d5:2a:78:99:93:d3:6a:e1:b9:db:31:ca:04:49:60:
7d:4f:9f:3d:18:0e:3a:29:47:50:92:7a:a5:56:1d:3c:5c:b1:
fe:4c:61:d4:98:46:eb:67:b6:d8:8f:3b:20:c3:3d:ed:9e:0b:
ed:b1:49:ad:02:5f:b9:e8:67:67:2d:9e:63:a2:ef:25:91:bf:
61:73:c5:0b:5d:0b:dd:f6:6d:7e:a8:52:09:8c:26:8e:fd:26:
ef:06:41:61:38:45:fc:b3:bd:79:96:d2:37:4f:a9:70:2a:d8:
99:d8:0e:52:7f:fb:79:c0:39:0f:71:31:e7:55:66:47:91:3a:
f9:5a:32:01:4e:29:7d:9b:f8:c3:41:5f:21:98:3a:4d:08:c4:
94:16:67:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org