Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pF7xdA6z9OofAuSuq0pkGX-rVmw.roa
File: pF7xdA6z9OofAuSuq0pkGX-rVmw.roa (raw, json)
Hash identifier: BG+FRSXvXAKc/5gTCWEhzVYyzsOW/eJ4WshO5kr/izo=
Subject key identifier: A4:5E:F1:74:0E:B3:F4:EA:1F:02:E4:AE:AB:4A:64:19:7F:AB:56:6C
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 09CC
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pF7xdA6z9OofAuSuq0pkGX-rVmw.roa
Signing time: Wed 29 Sep 2021 02:38:39 +0000
ROA not before: Wed 29 Sep 2021 02:38:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2508 (0x9cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 29 02:38:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A45EF1740EB3F4EA1F02E4AEAB4A64197FAB566C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:be:d7:fc:b8:d8:67:5c:e3:95:13:f0:c6:39:
bf:06:8d:0c:1c:78:ac:81:50:01:8e:c8:b5:1f:42:
17:be:f4:6f:fc:31:db:6a:7b:58:b1:4e:c9:e4:57:
86:07:37:d0:1a:af:73:80:67:69:0e:33:40:8b:80:
d7:db:4a:ee:8c:72:50:70:94:79:79:56:e9:ad:ae:
ae:b4:83:62:a4:47:96:53:d6:36:4e:f7:2a:01:f4:
9d:c3:02:5d:d2:72:8d:17:5d:90:65:8a:22:d9:03:
f0:e3:32:d7:2d:52:a9:52:78:52:45:2a:9b:7d:5a:
5c:00:93:19:15:0c:12:99:af:e8:db:0b:05:2a:ac:
f0:52:3c:70:bb:1d:ed:37:62:7f:28:7f:ef:2f:2f:
2a:fc:31:08:e7:04:a5:3c:4e:51:b0:81:2a:d5:5a:
dd:9d:47:a2:cb:e6:1b:0b:65:5e:9f:d3:63:15:3b:
b9:24:5a:da:2f:23:7f:d8:2e:d2:b2:a3:d0:5c:b3:
4b:dc:57:a5:7d:04:34:c4:d5:08:47:cd:c9:43:e4:
28:a7:60:85:f6:8d:20:d9:12:dc:1a:11:9c:85:cc:
d0:b5:a7:2c:3b:a2:7b:46:ad:71:11:c7:b0:97:2a:
fd:e9:bd:af:b8:01:fe:f5:51:19:56:be:8c:01:1c:
50:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:5E:F1:74:0E:B3:F4:EA:1F:02:E4:AE:AB:4A:64:19:7F:AB:56:6C
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pF7xdA6z9OofAuSuq0pkGX-rVmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
85:aa:0c:13:70:c6:c0:b4:2b:20:79:59:97:52:ca:79:57:b7:
f5:53:1a:7e:75:a5:b0:6e:ad:7d:4a:63:c1:7d:67:95:2b:4a:
15:10:56:bf:91:f4:1f:8b:d6:df:d7:5b:05:82:f1:45:33:00:
40:e1:da:51:b9:14:45:54:d9:82:12:7f:c7:fd:dd:ae:9e:c9:
d4:4f:71:66:88:e9:0a:f9:a9:5e:3d:01:d6:fa:03:3c:5a:49:
54:0b:a6:51:81:be:18:6b:c5:48:a6:67:da:6a:c7:6d:e4:a0:
e7:13:08:e9:63:28:ac:40:1c:64:4a:44:e5:1e:5e:a5:f0:5c:
fe:bd:1d:40:c6:57:5a:d2:fc:22:21:ed:40:38:4e:84:01:ed:
c1:c9:a0:08:33:27:40:92:23:44:63:e8:20:b0:56:ad:3a:d1:
4f:67:f3:0d:b7:e4:d8:7e:f5:dc:b5:70:bb:2e:f6:ff:fd:2d:
8d:47:f5:47:e8:c0:c7:2d:86:1c:0e:5e:67:e2:b4:dd:e5:4c:
43:53:08:1d:68:5e:ad:35:fa:e1:b7:8f:cd:5c:d4:30:4d:59:
a8:93:48:52:9b:be:f2:f9:1e:a0:0b:31:9a:f2:62:28:d3:1a:
6a:63:7c:b0:4c:22:be:ad:44:29:cc:ed:da:d2:ac:ba:fb:65:
86:e4:39:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org