Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/nmKfTsxEjgBnintDeo3iIkqMbJA.roa
File: nmKfTsxEjgBnintDeo3iIkqMbJA.roa (raw, json)
Hash identifier: aT8sezWyXNbOMV7a4R21XP0sNEZn964C2htrUErTlCA=
Subject key identifier: 9E:62:9F:4E:CC:44:8E:00:67:8A:7B:43:7A:8D:E2:22:4A:8C:6C:90
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0790
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/nmKfTsxEjgBnintDeo3iIkqMbJA.roa
Signing time: Tue 29 Sep 2020 10:05:44 +0000
ROA not before: Tue 29 Sep 2020 10:05:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 101.0.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E629F4ECC448E00678A7B437A8DE2224A8C6C90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:60:9f:f7:d6:31:37:87:47:38:68:66:c3:09:
fe:eb:23:0e:57:e7:dc:72:bc:b3:f4:3c:e8:fd:4f:
c7:30:a0:c0:b5:e7:ec:5c:0f:3a:00:e9:2e:33:af:
26:ac:91:bf:57:5b:3c:d6:24:a3:bd:d3:41:0d:d8:
1f:ef:1d:b7:7c:5a:e4:d8:99:8d:c1:40:cb:9a:10:
77:68:24:07:ef:81:37:88:4a:29:8d:ba:d0:88:b7:
99:ec:1f:84:33:5e:b7:91:f2:61:63:73:b4:86:cb:
68:ef:10:35:25:d2:12:3e:58:3b:42:ff:b4:98:79:
57:bb:70:92:2c:30:2d:79:aa:83:1a:b8:be:af:ec:
6b:00:49:1a:6c:d3:af:c2:c5:b3:97:f0:24:3e:d9:
15:03:0e:ee:97:ba:c2:b9:90:a3:a4:c4:a2:93:aa:
27:4a:aa:8e:46:42:d0:25:2a:35:ee:ca:6b:69:28:
b4:dc:18:ee:39:b9:68:16:26:93:84:d7:fb:b7:27:
ce:62:cc:e6:e9:07:69:6a:e5:f1:63:4a:41:de:9e:
e7:7f:f4:ad:67:c1:8e:8f:31:32:e9:16:39:09:fc:
14:80:fc:c9:d7:7e:29:84:48:5c:e4:ae:3d:3a:a5:
eb:cc:9d:c8:f0:de:32:4e:eb:34:76:ab:c1:e1:03:
21:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:62:9F:4E:CC:44:8E:00:67:8A:7B:43:7A:8D:E2:22:4A:8C:6C:90
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/nmKfTsxEjgBnintDeo3iIkqMbJA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.128.0/18
Signature Algorithm: sha256WithRSAEncryption
44:5f:9d:86:a4:4c:5c:21:8f:41:3e:36:66:f4:d5:45:a1:f5:
84:69:86:6b:aa:68:fb:9f:aa:98:e2:4a:29:34:59:d8:34:af:
17:23:75:85:cc:78:34:34:95:2c:9c:32:67:2b:88:82:a5:1d:
44:39:b4:7a:ef:fb:ee:90:e0:61:65:07:ae:20:6a:a7:ea:74:
20:4e:85:83:25:3c:96:ea:a7:e5:e3:39:f1:b0:bb:7d:b2:ae:
e3:90:a0:b5:44:93:81:f8:af:04:59:71:ad:d6:c2:f6:0e:d8:
6e:33:99:86:19:15:62:5f:fd:d6:09:ef:b9:43:5e:9e:34:32:
42:5e:17:29:bc:33:68:9e:c4:9d:83:52:94:8d:5b:1f:b7:87:
34:88:ce:00:d4:8c:0f:8a:26:fc:f9:70:14:79:8f:49:d8:ac:
d8:e3:0a:1e:d7:dc:bb:d6:6f:77:9d:c1:a6:eb:f4:fe:cd:08:
ec:e2:51:50:7f:5b:a0:74:96:b3:c1:01:70:17:d3:a2:f7:6e:
73:c7:3b:9c:c7:08:35:ac:19:a6:fd:32:65:11:b9:39:a1:8f:
01:c2:c0:33:d5:aa:f4:5a:13:10:0d:be:4b:f4:9b:da:c3:36:
6d:89:8c:5e:79:bd:ec:14:21:68:bf:cd:01:69:2f:da:3e:fc:
3a:4e:a0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org