Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tFq4IHPfz2bYBMYfXed5sYW-rEU.roa
File: tFq4IHPfz2bYBMYfXed5sYW-rEU.roa (raw, json)
Hash identifier: v/W8mTkbn4OUnQIyxlY8WN8ZynD3WFNB/fPhvkrhg6Q=
Subject key identifier: B4:5A:B8:20:73:DF:CF:66:D8:04:C6:1F:5D:E7:79:B1:85:BE:AC:45
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 091B
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tFq4IHPfz2bYBMYfXed5sYW-rEU.roa
Signing time: Sun 07 Feb 2021 11:55:18 +0000
ROA not before: Sun 07 Feb 2021 11:55:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.65.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2331 (0x91b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B45AB82073DFCF66D804C61F5DE779B185BEAC45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:21:ee:ee:24:02:29:be:9d:ab:4c:17:3a:be:
ba:83:6c:92:da:df:aa:3e:da:a3:62:8f:52:6d:9d:
cd:46:c7:19:7b:2f:55:9d:7a:ce:7c:81:fb:a4:f4:
ce:ab:4b:0f:58:32:f8:d3:23:5d:75:0a:c1:90:81:
e2:4b:45:b7:39:59:2a:87:ea:ed:e2:96:97:81:9e:
18:29:be:bc:3b:c7:b0:4a:f4:64:d3:56:99:58:21:
3a:65:d7:98:02:ae:c7:21:b0:79:74:7e:38:82:c4:
99:8a:c7:48:79:b9:1a:77:d4:3f:3a:8a:b7:09:4a:
85:76:e6:84:18:3b:31:64:00:c0:08:bd:5d:f9:e6:
89:57:69:51:99:ec:ed:1a:d1:f3:4f:18:7d:e4:06:
26:56:33:cf:be:57:56:9f:ee:b2:bc:76:1a:e8:93:
23:83:90:ee:23:75:7e:3b:a4:be:26:30:67:f8:79:
94:d7:cf:18:99:27:bf:c1:29:e0:cb:79:54:8b:45:
1a:8b:aa:bf:41:92:4e:24:f9:fd:00:f2:d7:c5:a1:
5e:2a:0d:ae:5d:20:56:84:4b:91:55:a6:85:6c:f5:
f7:f3:8d:97:d1:14:a1:75:b7:b2:05:a9:9e:5e:7b:
d2:11:3a:b7:0a:99:54:59:e9:d2:fb:bc:31:f3:93:
7a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5A:B8:20:73:DF:CF:66:D8:04:C6:1F:5D:E7:79:B1:85:BE:AC:45
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/tFq4IHPfz2bYBMYfXed5sYW-rEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.128.0/18
Signature Algorithm: sha256WithRSAEncryption
14:a2:04:38:fc:ac:3d:5e:79:59:e1:f8:08:d9:f8:17:71:4c:
d2:50:c3:86:f0:47:fe:9f:da:47:74:89:c0:c5:c8:c0:5b:3d:
ab:e5:a5:b1:55:82:93:e0:c0:0e:5e:45:7f:f9:a5:40:a1:3d:
02:66:27:6d:5b:eb:dc:d3:67:1a:37:86:19:1e:4d:19:f3:f7:
ae:7f:ed:19:a8:96:d3:84:d3:31:23:47:3f:c1:20:56:31:dc:
61:68:ad:f9:4d:dc:44:de:37:65:3f:f6:77:e7:7e:57:e3:69:
e7:92:ee:85:65:b0:55:04:2a:05:bc:58:5d:36:2c:ed:d1:c7:
25:56:2f:22:8a:df:d1:3e:a3:ce:9f:d0:33:1f:16:73:cc:c7:
ae:1b:b8:df:44:48:d1:98:9d:c3:96:4b:f9:b4:0f:51:4b:7a:
0e:51:0d:2a:58:8f:bd:cb:64:fc:51:d5:cf:11:23:d4:6e:83:
8e:b7:be:b5:43:c0:ba:67:4b:0b:aa:1b:39:dd:7a:a1:c1:74:
eb:94:a0:85:1d:df:35:2a:e5:ae:a3:4e:b5:98:59:69:58:bc:
71:2a:ad:bf:15:35:af:43:19:ec:22:a0:09:b4:f9:69:e3:8b:
2b:c3:1a:fd:67:19:c8:90:49:11:a7:55:13:53:42:08:27:65:
c0:1b:e8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org