Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/xMaKFZk71xl7czmzKSuhqLImA70.roa
File: xMaKFZk71xl7czmzKSuhqLImA70.roa (raw, json)
Hash identifier: HOLMe9ypGES7W5u4JzSCUYpGZm4g1isXWlyPOQTB+IA=
Subject key identifier: C4:C6:8A:15:99:3B:D7:19:7B:73:39:B3:29:2B:A1:A8:B2:26:03:BD
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0AB8
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/xMaKFZk71xl7czmzKSuhqLImA70.roa
Signing time: Thu 15 Sep 2022 02:39:35 +0000
ROA not before: Thu 15 Sep 2022 02:39:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 61.63.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 15 02:39:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C4C68A15993BD7197B7339B3292BA1A8B22603BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d1:97:e6:b7:4a:61:f2:46:a6:69:a6:62:a4:
b2:9f:6d:21:93:69:b7:44:b6:12:ee:37:f0:2d:28:
32:70:6c:11:1f:2c:6e:32:2b:ce:8f:61:50:39:d8:
8f:d4:9c:94:ab:d2:83:60:fa:fd:a6:68:b1:f5:3b:
99:cf:88:6b:33:ec:92:cd:6c:12:6a:38:64:ff:80:
0b:6b:e8:db:3b:ad:71:a2:2a:a4:78:8f:f4:43:c0:
c4:25:20:f0:46:a5:ed:24:85:54:20:8c:a1:62:26:
b9:2d:75:80:9a:b2:ec:c0:f0:b2:1b:a9:41:fc:41:
9f:2e:84:82:7a:cb:24:c1:99:c3:3d:68:ce:a8:48:
40:10:b0:78:6a:70:0e:df:bf:e0:67:9c:4c:ac:17:
a6:6e:61:6a:0d:7d:1f:08:92:ee:ba:41:72:8a:f8:
b6:70:b9:8f:6b:45:43:20:dd:78:7a:77:14:ae:fb:
e5:6d:76:84:8c:5d:9c:8d:28:9a:bd:24:11:2a:33:
02:e5:41:bd:43:b8:05:83:71:b7:1d:85:25:4d:f2:
ae:f1:fd:d0:f7:38:e0:9e:d1:16:b4:5b:b6:e1:07:
df:75:da:44:48:04:bd:32:bf:11:ea:ac:30:c8:44:
c6:ba:a0:01:84:6c:b2:d9:c1:ab:fa:d7:21:ee:fc:
76:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C6:8A:15:99:3B:D7:19:7B:73:39:B3:29:2B:A1:A8:B2:26:03:BD
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/xMaKFZk71xl7czmzKSuhqLImA70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.192.0/18
Signature Algorithm: sha256WithRSAEncryption
c3:5b:b4:f5:60:3b:ce:12:f7:7e:8c:a3:47:14:ad:20:a8:a4:
71:06:a9:cf:21:c2:42:19:f5:4b:35:81:80:1b:6f:76:63:f8:
ed:7e:b3:cc:c8:25:3a:77:91:33:77:9e:2b:9a:79:8f:99:53:
ed:05:c5:44:ea:f8:af:4a:d8:f6:96:21:b8:fd:2a:a0:b8:ba:
48:79:4c:d6:1e:0d:04:46:a1:d4:1e:fa:41:e7:f4:0b:a7:a9:
6a:91:8b:a3:a6:e8:bf:70:c2:9d:d3:d5:91:4d:a9:69:9d:c4:
0a:1f:0d:4a:b8:52:82:5c:f1:60:a2:1a:e2:84:7f:bb:17:03:
87:f2:d0:2f:9f:05:f8:81:d5:9b:87:62:da:b1:91:e9:d3:59:
ff:8c:94:d6:a8:6e:6f:6d:14:40:4b:6c:47:ab:9b:a2:a4:02:
ab:c2:89:b3:39:65:1d:fa:ec:b0:cd:cc:c1:62:e9:1e:29:ae:
48:b2:88:e7:af:6c:25:64:c4:1e:53:d8:f7:ff:14:34:ed:76:
fd:83:0f:d6:f9:f8:a1:34:7b:bf:c6:48:c4:fc:88:75:a7:b5:
55:f5:10:ed:5e:d0:3a:f8:48:70:23:b9:43:f7:a1:8d:71:1e:
8b:49:48:4c:82:fd:a5:f8:b4:8b:f0:3f:69:85:3b:71:b6:03:
cc:8c:37:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org