Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rlVu6O5Ehg0TCsHe-Er_CnqbA6w.roa
File: rlVu6O5Ehg0TCsHe-Er_CnqbA6w.roa (raw, json)
Hash identifier: 6zVj2T3v4reD8Y7+DhoiFXTgRoc6XPet8ASe9QnPN0M=
Subject key identifier: AE:55:6E:E8:EE:44:86:0D:13:0A:C1:DE:F8:4A:FF:0A:7A:9B:03:AC
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 08FD
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rlVu6O5Ehg0TCsHe-Er_CnqbA6w.roa
Signing time: Sun 07 Feb 2021 11:54:58 +0000
ROA not before: Sun 07 Feb 2021 11:54:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 103.224.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:54:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE556EE8EE44860D130AC1DEF84AFF0A7A9B03AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b3:10:a1:b4:a0:1c:26:25:7e:14:a2:2a:35:
0f:81:66:3c:91:45:13:b9:0a:a1:a3:57:86:8b:1b:
81:2c:c0:aa:53:f7:bc:d7:8e:69:53:ae:ed:50:8d:
ed:00:c7:16:6e:a8:1e:f6:d3:0a:e5:48:91:ff:36:
e8:3a:cc:ea:fc:fd:64:14:b8:a9:a1:67:ba:57:1d:
2c:57:25:f2:03:04:42:ff:f2:2b:7a:c1:90:94:55:
5e:92:4e:3f:b4:c2:9a:2d:a1:ed:90:f4:38:98:b8:
5c:b7:71:96:89:14:cf:a2:de:d9:47:88:15:90:82:
b5:94:4b:ce:27:f1:7e:f4:da:c8:34:c3:69:c8:a8:
24:74:a3:b8:f2:0d:cd:27:67:71:9a:ae:c9:48:93:
d8:07:af:ae:a5:04:3a:53:8b:8f:50:7e:2d:89:b2:
21:47:c9:cb:63:ec:5b:c2:90:dd:bd:72:9b:49:af:
b8:06:ff:18:b0:57:e7:96:ae:7c:02:ff:b8:f2:64:
49:09:ef:5d:d5:b2:d4:e0:e1:2c:11:fe:87:f5:0a:
a8:34:4c:f4:09:e5:b1:0d:b9:9b:2e:b5:a8:bb:ee:
ec:ab:c3:07:39:dc:42:f2:79:0e:db:81:de:1b:6a:
e9:95:3a:b3:c0:c3:89:21:2a:54:fb:a4:54:25:6d:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:55:6E:E8:EE:44:86:0D:13:0A:C1:DE:F8:4A:FF:0A:7A:9B:03:AC
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/rlVu6O5Ehg0TCsHe-Er_CnqbA6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.204.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:0c:da:a9:17:db:f2:a1:28:4f:e5:e4:85:f3:fe:91:9a:b1:
1c:48:36:9a:7f:d6:23:7c:84:88:f3:c5:84:57:cf:0a:a4:55:
5d:73:ee:57:41:c2:66:ec:8e:f8:da:91:38:72:5e:47:8b:a9:
88:e6:e3:a3:84:c9:e9:a7:34:09:05:2c:4c:e3:55:34:c1:5c:
06:2a:66:f0:51:cd:a8:0c:4f:c1:4a:a9:48:03:8a:02:66:3a:
f7:21:73:b4:12:0b:06:7d:78:8a:d2:b0:65:5f:d0:27:d3:d4:
8a:61:2e:d0:a4:c7:a1:7e:ea:2b:3c:c3:2f:54:cf:7e:7b:11:
96:5b:bf:4d:9f:8c:f6:b2:2c:37:cb:96:b5:bc:2f:27:04:5e:
f1:c1:fd:52:02:62:4a:49:3a:55:fb:50:fc:0e:55:21:b1:68:
1d:33:98:75:0c:91:90:e5:b9:df:6a:cd:d6:8c:94:3d:e8:4b:
bc:77:26:2f:3f:e0:57:e9:85:09:17:a8:5a:62:8b:6c:e5:20:
cf:b7:c7:94:4d:27:6c:f7:c5:8a:4d:b6:dc:f0:f8:25:25:73:
91:64:f8:66:1a:ba:73:cd:33:da:9a:12:d6:2b:c5:2c:d7:72:
23:5c:93:7a:4c:67:4a:50:4c:ca:6b:55:51:ca:70:37:6c:9a:
c9:b6:b9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org