Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v0KQa_V2O5Ew5T0AdVrCEZc8iYo.roa
File: v0KQa_V2O5Ew5T0AdVrCEZc8iYo.roa (raw, json)
Hash identifier: vVzslTnruFBKDE8K6IiEBbpfR+6puSZSPyvcm34YchU=
Subject key identifier: BF:42:90:6B:F5:76:3B:91:30:E5:3D:00:75:5A:C2:11:97:3C:89:8A
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 090D
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v0KQa_V2O5Ew5T0AdVrCEZc8iYo.roa
Signing time: Sun 07 Feb 2021 11:55:08 +0000
ROA not before: Sun 07 Feb 2021 11:55:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9676
IP address blocks: 61.58.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2317 (0x90d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 7 11:55:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF42906BF5763B9130E53D00755AC211973C898A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:61:82:fe:b4:e3:19:9c:84:69:cf:0f:fa:
5a:91:f9:8f:51:4d:53:df:9a:f2:c6:35:98:02:64:
ec:6f:2b:3e:61:f7:fd:00:ee:81:02:55:82:6c:8e:
c3:93:c6:9a:11:cb:c3:c5:c1:18:aa:53:d3:3c:52:
f5:0a:76:06:76:bb:b9:f1:97:f7:47:49:98:85:f7:
69:4d:e4:c1:e6:ce:72:29:08:ce:8a:8a:1e:30:8b:
69:98:11:ee:36:3c:f3:06:cd:2a:3b:33:6a:4b:bb:
07:8c:7e:02:36:ac:56:c8:74:4a:a1:f5:87:8d:f8:
31:c6:55:60:56:bd:7f:cb:bc:53:3c:88:fd:ad:66:
b7:49:97:5f:07:8c:d5:56:51:d6:dd:b4:98:3f:47:
b7:9f:4a:84:c9:2e:eb:c0:38:c5:0b:a2:33:9d:c0:
f6:80:7f:c1:d5:bd:18:65:e4:8f:41:1e:af:4f:48:
43:03:3d:48:2c:96:f9:41:b4:13:f5:44:50:45:d6:
40:1b:a6:69:ca:c2:69:71:11:8f:a5:33:fb:d4:20:
87:bc:17:3f:3c:da:89:87:74:bc:c0:1e:23:2d:e3:
2d:3f:bb:a6:d6:56:ab:39:32:05:f2:b4:e1:92:1c:
44:c8:79:04:99:fc:0d:ee:3e:53:55:6f:83:ae:4d:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:42:90:6B:F5:76:3B:91:30:E5:3D:00:75:5A:C2:11:97:3C:89:8A
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/v0KQa_V2O5Ew5T0AdVrCEZc8iYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.192.0/18
Signature Algorithm: sha256WithRSAEncryption
15:05:1c:b2:a3:1b:6a:dd:fc:80:9a:de:60:e9:31:06:d4:0b:
ea:fd:3a:6a:84:ac:df:74:88:28:7e:3e:cd:cf:23:ab:98:0d:
23:01:f8:f5:4f:0f:5c:79:e3:d2:c1:09:58:e2:55:c8:79:24:
f6:90:46:1e:15:c3:4e:ea:13:67:3e:83:ae:fb:47:b3:44:de:
43:34:de:50:49:94:74:75:14:35:9d:d7:90:57:20:e6:e0:bd:
67:ad:ed:c5:cd:47:2f:c5:54:26:09:4f:3c:da:97:7e:c9:b8:
6d:27:42:a7:29:9a:f3:9e:ea:6d:ef:cc:0a:44:6a:b1:0c:af:
fb:c6:e4:85:89:d6:d7:0b:ca:31:a7:35:0a:9a:f3:56:59:18:
e9:f0:7d:ff:6d:8e:02:43:3b:e8:73:e0:c4:f6:0f:ec:c8:f7:
5f:44:01:b3:17:f4:d8:20:de:9f:78:6c:e6:9e:fa:55:13:5a:
a9:aa:03:f7:8b:50:44:0a:5a:a4:aa:d9:1e:b9:b6:53:7e:4e:
a9:28:15:c7:6d:25:3c:58:2c:bd:42:7a:17:cf:d7:24:c3:fd:
6e:ba:07:ef:0b:e1:32:1b:a9:64:5f:22:86:3c:89:b4:55:11:
b4:09:47:d5:e8:2b:c6:7d:12:79:7b:d3:d1:98:9f:68:78:07:
63:40:5d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org