Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ovmDtm3AiHiXxhNmqgXYnYKi47E.roa
File: ovmDtm3AiHiXxhNmqgXYnYKi47E.roa (raw, json)
Hash identifier: b/agjY0R8IMPFaECzY5DLdQ1F2M6KMYrf8X5tUADNN8=
Subject key identifier: A2:F9:83:B6:6D:C0:88:78:97:C6:13:66:AA:05:D8:9D:82:A2:E3:B1
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 079A
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ovmDtm3AiHiXxhNmqgXYnYKi47E.roa
Signing time: Tue 29 Sep 2020 10:05:46 +0000
ROA not before: Tue 29 Sep 2020 10:05:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 118.99.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1946 (0x79a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 10:05:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A2F983B66DC0887897C61366AA05D89D82A2E3B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c7:75:59:36:cf:68:fd:30:bf:dd:e9:28:de:
69:55:a5:f0:81:29:8c:a1:91:6d:81:61:11:42:e4:
97:b2:b7:ac:e2:bb:ff:a1:84:0f:50:b9:9a:e2:7a:
c4:ff:db:c5:4a:99:bc:5d:fe:47:8c:97:67:7b:2e:
6c:8b:fe:03:bc:0b:7b:fc:87:8c:eb:e6:29:5b:98:
2c:4a:6d:08:74:6d:f5:ed:c0:8b:8c:6e:67:48:88:
f9:4d:b9:29:93:ee:5e:69:e1:04:5c:9e:e3:fb:67:
0d:ed:13:70:fb:a5:98:1c:e2:76:82:eb:52:3e:b6:
55:af:70:41:2f:91:ad:03:e8:e3:a9:dd:a1:3d:94:
b0:4a:89:c6:ef:97:2d:35:6e:d9:9d:67:64:1e:46:
33:50:8e:84:cf:f3:c3:f4:d6:47:7b:84:3b:c8:30:
3e:2c:b8:dc:86:bb:e3:5e:2a:5d:8f:2f:11:32:0a:
48:9e:9f:07:7b:87:84:0f:34:8b:d4:28:39:93:85:
a0:92:30:0d:84:1a:2a:91:0c:51:9a:7d:e7:b0:a6:
5b:1a:d4:a4:03:d0:53:70:bd:7f:89:d4:54:a1:10:
d3:07:e0:68:74:c5:59:a4:44:df:d7:70:aa:eb:c7:
8f:85:d3:89:23:60:bd:d4:bd:84:14:59:d8:a3:dd:
2c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F9:83:B6:6D:C0:88:78:97:C6:13:66:AA:05:D8:9D:82:A2:E3:B1
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/ovmDtm3AiHiXxhNmqgXYnYKi47E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.99.128.0/17
Signature Algorithm: sha256WithRSAEncryption
42:05:d3:2e:c3:de:e9:f1:68:85:45:d8:fd:e7:66:16:bc:3b:
4e:81:21:66:ab:d0:27:11:b8:0b:3f:ad:72:4a:8d:a7:14:2b:
b0:65:68:4d:2e:b1:08:c3:52:ee:64:3a:00:ef:9b:44:1b:52:
b9:03:df:84:ec:da:01:62:da:7a:80:e7:2f:e1:fa:a3:e4:34:
7d:06:16:06:16:23:e5:25:c0:c9:a9:8e:fc:90:5f:7b:15:79:
b6:77:36:5d:4e:60:2b:19:a7:9b:ba:69:70:da:03:46:9b:a0:
e3:6c:d7:c0:a6:02:bf:76:a2:be:1d:d2:2f:16:64:5f:e1:f4:
30:25:68:6c:64:f8:2c:98:d7:05:37:11:67:1e:c8:09:63:ec:
6a:62:d5:ef:c3:c2:ba:77:b2:4d:54:b9:2c:42:aa:56:d6:ec:
de:b0:72:67:d4:a2:9a:d9:c2:21:19:75:eb:23:f1:73:bd:e6:
f6:18:67:a1:b8:fe:2b:42:a3:9b:f0:74:13:73:b5:bc:82:2a:
58:91:77:5c:82:35:3a:74:b4:c9:7e:e2:fe:c5:fd:80:68:12:
f4:19:e8:e5:1b:cc:d1:01:2f:42:13:4f:8e:50:5f:a9:ca:0e:
67:8c:12:c3:f8:c5:ad:00:c2:7d:2b:0c:a9:c1:53:e3:a8:8b:
f1:48:c4:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org