Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/--hHQx8BsjvhDsvpVCTz9pVkPDs.roa
File: --hHQx8BsjvhDsvpVCTz9pVkPDs.roa (raw, json)
Hash identifier: gdG9BAF3fv7WwV22S8qXAhFQHKn84udmGqrbCujKcxw=
Subject key identifier: FB:E8:47:43:1F:01:B2:3B:E1:0E:CB:E9:54:24:F3:F6:95:64:3C:3B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08DC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/--hHQx8BsjvhDsvpVCTz9pVkPDs.roa
Signing time: Tue 29 Sep 2020 09:52:32 +0000
ROA not before: Tue 29 Sep 2020 09:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2268 (0x8dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FBE847431F01B23BE10ECBE95424F3F695643C3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1f:cf:68:5d:7e:99:56:0d:4f:a0:81:47:a1:
a1:71:a1:21:49:06:03:d7:4b:3c:bb:b9:26:9b:a7:
52:1c:c1:ed:4a:c1:03:27:13:40:8f:67:fb:85:ca:
22:7f:30:07:3b:58:56:c9:86:9e:2a:ed:f8:3e:50:
15:02:58:81:94:85:61:2a:b8:af:bf:d0:70:4d:7b:
cc:f5:fa:88:ce:32:17:3d:3e:f3:34:51:c9:46:25:
3a:dc:35:b9:59:da:7a:06:fa:7d:88:be:ca:2a:51:
ae:8e:26:35:86:05:3e:2d:08:91:c1:09:c9:d4:11:
7f:ac:4f:9a:10:a7:18:08:1c:49:a5:04:50:cf:cf:
e1:9a:66:23:37:6e:5b:a3:ce:26:a2:a5:a0:7e:f8:
00:95:85:35:72:8f:8b:9b:4a:4f:59:96:97:ab:57:
67:58:16:6b:25:81:04:50:de:35:6f:3b:a0:37:9a:
2c:c0:cc:11:54:b6:8f:0e:9d:51:50:27:cd:f5:6c:
0e:f2:83:26:7f:71:f4:b5:62:f8:3c:e6:2a:77:b6:
31:c6:db:9b:0f:87:34:f5:f9:7d:17:4a:6b:27:fd:
44:9d:5d:bc:d3:99:e0:ec:e4:c8:a0:15:2b:1e:b4:
d5:13:95:33:4f:a6:3a:1d:07:ce:d7:40:ed:28:34:
0b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E8:47:43:1F:01:B2:3B:E1:0E:CB:E9:54:24:F3:F6:95:64:3C:3B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/--hHQx8BsjvhDsvpVCTz9pVkPDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.128.0/17
Signature Algorithm: sha256WithRSAEncryption
99:2b:28:ad:4e:6a:77:09:90:1d:02:48:f8:8e:0f:c3:bd:a3:
f2:5d:76:b7:eb:af:87:15:8a:84:ee:79:de:05:75:27:4d:d8:
4b:1d:03:69:25:89:f3:db:33:ea:c8:30:80:ea:cf:f3:cc:da:
2b:71:84:d8:24:7e:a5:c7:bf:f5:44:ed:4f:2f:ba:a4:a5:1a:
68:c1:64:5d:c2:b3:2a:b8:7f:75:41:69:3a:27:b2:cd:91:29:
e9:8c:48:f2:c0:1d:b2:9b:24:af:dc:47:46:be:87:07:87:d1:
25:2e:36:da:c2:f4:16:d8:93:ce:7b:fe:7c:c6:33:92:fc:21:
84:98:77:b6:c8:1e:13:54:f7:3c:5c:e3:8d:be:79:c8:40:29:
53:c6:67:5f:46:7b:e9:6c:59:6f:58:59:3d:18:75:e5:7b:5c:
1b:e8:9c:39:08:68:d3:69:ac:aa:e8:44:a0:14:23:76:59:61:
a0:8e:ad:ab:4e:59:c2:50:15:7c:f7:02:e2:f6:32:b7:80:ed:
81:83:fa:e8:72:7a:05:58:d1:59:c5:71:b3:e9:55:54:50:be:
75:de:37:67:01:d7:80:c5:34:b9:15:a9:52:86:bd:4d:0b:8c:
e0:c8:ac:23:f0:bc:46:c6:58:c7:59:90:42:c4:8f:e1:ae:70:
28:23:76:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org