Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-YYVkXXGxHtf0qNdZ8Bz-MNyU-c.roa
File: -YYVkXXGxHtf0qNdZ8Bz-MNyU-c.roa (raw, json)
Hash identifier: iDpcshPJb5B6emKS4wtb32t5Hu7MmiSuXcfboZsGOmA=
Subject key identifier: F9:86:15:91:75:C6:C4:7B:5F:D2:A3:5D:67:C0:73:F8:C3:72:53:E7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B67
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-YYVkXXGxHtf0qNdZ8Bz-MNyU-c.roa
Signing time: Sun 07 Feb 2021 06:18:23 +0000
ROA not before: Sun 07 Feb 2021 06:18:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2919 (0xb67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:18:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F986159175C6C47B5FD2A35D67C073F8C37253E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:98:66:4b:2c:1d:9c:fb:77:52:01:38:8f:a3:
13:06:6c:7e:b8:73:2c:ae:b8:c4:78:a6:9c:80:c4:
b4:eb:5f:db:27:fb:38:13:36:19:af:b7:05:54:be:
a3:d3:c3:f6:cc:cb:3d:19:aa:1c:5c:f6:96:74:f1:
2b:e2:08:c6:df:f0:a3:e8:0d:b8:83:6a:ef:73:5d:
34:ed:24:d4:84:75:dd:48:92:80:92:00:0a:a1:71:
03:83:04:10:01:af:67:46:5a:f6:51:87:a1:92:99:
f7:5d:a0:8a:df:6e:7b:9d:0f:62:23:6e:52:c8:e5:
09:0f:7e:6e:ed:8f:bf:5d:d8:db:fb:a8:37:47:7e:
56:de:0f:9c:b6:b2:fd:56:5e:cf:be:62:d8:0b:ee:
10:a5:fb:be:64:b4:ee:ce:af:2d:6d:b5:98:17:1e:
9e:1c:73:b7:1c:1f:23:79:d6:cb:c3:49:c7:00:8d:
09:e6:3c:b0:1b:34:88:10:0c:36:73:2f:11:5f:bf:
f4:7f:d9:ef:e8:14:c5:70:10:d7:e5:65:09:41:1f:
54:23:a1:e2:3d:9e:95:cc:c9:3f:3e:2c:e8:da:b5:
2d:b2:0e:58:00:51:67:ae:5e:05:6d:80:29:53:3b:
1c:b4:56:fa:ba:3c:34:aa:04:ab:35:15:2b:f2:47:
6e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:86:15:91:75:C6:C4:7B:5F:D2:A3:5D:67:C0:73:F8:C3:72:53:E7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-YYVkXXGxHtf0qNdZ8Bz-MNyU-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:27:a5:d4:b5:61:d5:ea:2b:f3:5b:42:35:16:39:9d:82:ab:
18:0a:be:26:42:0b:78:36:b7:b1:ff:a6:ec:2e:8c:86:cf:d5:
45:d1:4a:f4:b0:01:43:a7:39:71:cc:26:5a:ae:78:ae:6c:da:
9e:27:25:9b:90:4a:a3:4e:7e:c6:da:77:33:cc:1a:f9:91:02:
07:2a:c3:8e:2f:3e:59:1f:8c:b4:13:90:4b:7b:2e:be:3b:df:
9b:ad:01:1b:b7:16:c0:30:fe:52:bf:39:4f:b3:07:b3:08:1a:
13:fc:ed:da:43:f7:57:d8:e6:65:4b:72:de:fc:06:cc:be:94:
76:4d:a4:24:b8:0f:c7:1b:9e:9e:9d:12:94:80:7a:38:95:bb:
06:c3:52:1e:97:cf:ed:5b:89:b0:33:e6:b4:1c:80:57:92:c2:
c0:f9:e7:45:5f:47:ca:9e:4e:86:ee:53:4f:7d:ad:52:1b:1b:
77:37:db:3f:e0:5e:23:37:20:1f:b5:9f:9d:85:41:a0:e7:f6:
ad:e4:37:19:a1:de:b8:9e:05:e1:66:9c:49:3b:2e:80:f6:40:
0d:43:a3:16:06:9a:e8:ee:11:1b:8c:d4:e9:43:0d:db:f2:66:
39:89:a7:b6:bd:50:d5:8f:2f:2c:33:63:6a:64:fd:b3:8a:16:
cd:35:f0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org