Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/o2a495c8InaqEDiro4JjzqujXQw.roa
File: o2a495c8InaqEDiro4JjzqujXQw.roa (raw, json)
Hash identifier: dlIppxMVR4Yk9xphMiXyqmnYigaL9jn1YA7hyKKoqqc=
Subject key identifier: A3:66:B8:F7:97:3C:22:76:AA:10:38:AB:A3:82:63:CE:AB:A3:5D:0C
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0799
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/o2a495c8InaqEDiro4JjzqujXQw.roa
Signing time: Tue 29 Sep 2020 10:05:46 +0000
ROA not before: Tue 29 Sep 2020 10:05:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 150.107.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1945 (0x799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A366B8F7973C2276AA1038ABA38263CEABA35D0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:72:81:70:9d:19:96:89:ee:28:34:e5:54:d2:
c7:22:1d:46:b6:ba:63:54:33:37:44:a2:b9:4e:81:
b8:80:5a:3a:ba:f7:8b:a0:df:38:14:7d:d9:f1:a4:
0a:3c:23:88:b4:d3:2c:92:f1:78:65:b0:a8:f9:62:
39:5d:3f:e9:67:b9:9c:4d:7c:38:46:64:3c:98:52:
bc:e5:1a:8b:4e:ca:12:40:5a:16:88:e2:2f:49:55:
8b:be:f5:88:00:18:ad:8a:67:94:88:96:b4:24:64:
ec:68:09:d6:d9:5b:d1:48:a3:47:40:8a:70:5d:e5:
ac:64:a7:e2:9e:b2:fc:bc:4e:96:90:24:5d:3e:5a:
5c:72:9f:f3:22:4c:ad:69:a5:65:32:17:21:2f:41:
91:d6:00:20:c5:3d:0c:15:74:e7:ae:5d:af:29:f2:
e2:60:46:3f:a3:f4:1a:f3:bd:f3:98:50:0b:11:fd:
7b:6f:d1:cb:63:c3:c1:3c:21:5f:95:58:de:96:0e:
16:47:6a:8b:cd:b2:2a:97:cd:44:9c:9f:9f:a3:81:
5f:01:56:32:ca:35:41:9b:a3:1a:79:c1:ee:32:15:
7c:bd:88:b9:83:99:3b:dc:ff:4e:e7:f9:65:6c:4e:
01:13:c2:c9:d8:b9:b8:f3:c9:f3:8c:c4:cc:61:c0:
3a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:66:B8:F7:97:3C:22:76:AA:10:38:AB:A3:82:63:CE:AB:A3:5D:0C
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/o2a495c8InaqEDiro4JjzqujXQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.60.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:18:13:ac:d2:48:b6:da:50:4b:b1:d4:ec:5b:90:48:66:a5:
d0:e2:38:77:8f:b9:08:3c:dd:71:a0:28:f0:28:b5:1c:4d:05:
2f:9d:7d:db:e1:b8:c7:5a:1e:9f:8f:df:75:5e:42:8e:ee:2a:
ec:5a:f7:ba:11:d7:60:74:ad:fb:98:7e:ce:43:a6:e6:94:ed:
e0:aa:3b:3f:69:d5:d8:85:0e:01:9f:92:f7:0d:ed:b2:52:e7:
b0:84:c1:ea:40:d5:df:7d:ee:9b:e8:04:ad:3f:08:f5:9a:2a:
e7:4c:c9:5e:e7:45:e2:2f:33:ea:b2:2a:dd:86:b8:55:ce:80:
44:fe:60:3d:17:7a:5f:95:d4:96:f7:f8:56:96:75:5b:4d:0a:
8e:ca:f2:da:ff:fb:eb:5c:ac:a1:88:d0:af:ca:ec:a1:d7:63:
22:2e:5f:63:6b:93:3e:b8:4d:61:63:5c:96:95:2f:ec:f4:5c:
85:bc:8d:67:91:e3:3f:ff:e7:6b:97:98:dc:34:82:bd:b5:a2:
73:b9:1a:8b:e4:f0:ab:9d:f2:27:37:4f:c7:d8:07:1b:c4:e1:
82:5f:65:a8:e6:3c:30:d4:8d:23:a9:43:ea:54:90:40:a6:6d:
15:97:03:71:79:a4:3e:94:f3:d6:a3:7f:f2:1b:8b:a9:e4:13:
1d:bb:76:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org