Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pNHW3_XkjoPHZ-TXdqPxC5eLqGw.roa
File: pNHW3_XkjoPHZ-TXdqPxC5eLqGw.roa (raw, json)
Hash identifier: olNhviqI+G5NStyC3fjOQWYBYfwDTBQLWyueRURWgJQ=
Subject key identifier: A4:D1:D6:DF:F5:E4:8E:83:C7:67:E4:D7:76:A3:F1:0B:97:8B:A8:6C
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0907
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pNHW3_XkjoPHZ-TXdqPxC5eLqGw.roa
Signing time: Sun 07 Feb 2021 11:55:04 +0000
ROA not before: Sun 07 Feb 2021 11:55:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 211.73.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A4D1D6DFF5E48E83C767E4D776A3F10B978BA86C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:91:17:a1:5d:bd:98:77:1c:69:e2:59:16:06:
e4:06:72:76:ba:3e:ed:5b:e6:77:85:a1:d1:8e:e1:
5f:04:47:d6:07:8d:b3:1c:a9:88:97:0c:00:b8:26:
fc:2b:7d:f7:d0:c4:a3:57:de:95:24:6e:a0:2b:fe:
50:48:6d:c2:c6:fb:4d:b4:09:02:94:e9:61:fd:67:
6c:ff:3b:f5:3f:30:1e:af:19:a7:84:30:89:d0:ec:
b9:0c:60:b9:c2:b1:df:fb:04:cc:3f:b2:a9:00:6d:
83:3c:7b:ef:0f:b2:9e:46:05:8e:5b:ba:f5:cb:a4:
63:f3:8e:a8:1d:f0:83:2b:69:c4:08:d8:2c:08:d2:
43:ab:da:6c:1e:72:92:42:f9:8d:83:71:6a:68:45:
db:a9:b9:e9:a6:ec:52:ae:d9:04:fb:ad:3f:9b:6d:
9a:e1:30:40:bc:62:64:3b:ae:b2:47:dc:67:0d:9a:
f5:57:80:ce:59:86:53:0b:7a:70:90:52:51:56:b9:
b6:35:03:61:c1:86:f8:a4:da:62:fc:36:2b:3c:9c:
6d:bf:ac:5c:9d:0f:63:c6:c7:cc:10:02:43:54:44:
a8:e4:37:7d:16:84:fd:40:72:6f:ec:f2:e3:12:c1:
ee:59:e4:96:45:ad:f7:df:8d:63:42:1d:d9:a0:d4:
78:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D1:D6:DF:F5:E4:8E:83:C7:67:E4:D7:76:A3:F1:0B:97:8B:A8:6C
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/pNHW3_XkjoPHZ-TXdqPxC5eLqGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.0.0/19
Signature Algorithm: sha256WithRSAEncryption
d2:af:1f:3e:d6:11:5c:3c:5c:4f:4f:ae:e1:e0:f5:d2:5c:9d:
7d:f0:3b:08:1e:94:6e:0b:9a:06:38:70:9f:d6:e5:f9:72:ff:
c2:e1:31:13:55:62:16:b4:36:b0:ad:54:26:4a:28:e8:97:8f:
73:fc:3c:a1:7a:3f:d7:cf:ee:ca:7d:d6:ab:01:06:20:26:95:
87:6a:20:47:8b:b3:d8:d6:f3:1a:c2:d0:e8:b6:0e:53:2a:57:
49:a2:f3:cf:64:9b:93:3a:80:c6:66:40:98:cf:8d:8d:76:63:
02:de:79:f3:11:4f:37:fc:d6:96:26:d6:e9:1a:9f:05:86:82:
22:51:9d:78:7b:6f:9b:b6:19:a0:e4:de:c2:77:3b:2a:38:f9:
a0:e7:03:de:fa:6d:35:38:1d:4d:4b:f0:72:e1:5b:93:40:53:
e7:1b:65:27:c1:39:17:03:4c:d4:5c:81:99:93:41:5c:1c:56:
8d:62:6c:0c:8e:83:6c:5b:9b:9c:4f:2a:30:61:98:12:ce:16:
f1:df:13:f2:a0:0b:1f:22:64:86:04:58:73:4d:e6:c4:c8:f0:
0a:cb:26:0c:af:ad:76:5c:2e:c1:79:d9:f7:90:d3:eb:3b:ce:
87:2b:94:cb:b5:64:6e:d0:12:9e:10:4b:6c:17:d8:c3:2d:9e:
52:e3:5d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org