Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-mY9TDs2E1eV_fCwrOwKkastkkk.roa
File: -mY9TDs2E1eV_fCwrOwKkastkkk.roa (raw, json)
Hash identifier: qZHsCsKczZuqW1P+8ehx5rHHzJdiHojlnY+qhkPyAbc=
Subject key identifier: FA:66:3D:4C:3B:36:13:57:95:FD:F0:B0:AC:EC:0A:91:AB:2D:92:49
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-mY9TDs2E1eV_fCwrOwKkastkkk.roa
Signing time: Wed 29 Sep 2021 02:43:02 +0000
ROA not before: Wed 29 Sep 2021 02:43:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 60.245.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3575 (0xdf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FA663D4C3B36135795FDF0B0ACEC0A91AB2D9249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0e:2c:4e:1f:d3:1a:f4:b7:22:f7:a9:26:9a:
5d:49:56:b3:bf:e0:c2:69:e0:7f:74:11:91:52:dc:
95:da:45:c6:e9:b9:8d:33:48:54:f3:e0:ca:1c:e0:
ef:72:a0:03:bb:60:63:89:63:74:dd:db:85:84:c4:
65:ad:40:0a:ee:34:39:70:25:5e:44:87:89:1b:9c:
43:48:ad:98:6e:45:a3:9a:91:54:61:00:93:0c:91:
de:d2:f2:04:2a:8a:a6:59:7c:da:60:cf:0a:d0:ec:
2c:1d:68:9b:0a:0c:bc:53:55:37:49:af:0a:b0:f2:
59:bb:a3:78:d2:bc:b7:16:b0:fa:58:dc:12:e7:d1:
5f:37:f9:31:10:27:fb:3b:c7:33:b4:cc:b9:70:7d:
6a:46:22:5d:70:5c:ba:0c:5b:75:b9:89:24:16:19:
f5:2d:c9:e3:69:f6:29:5d:77:4a:02:ac:bd:68:91:
5c:60:96:35:a8:29:95:c2:1b:f0:1f:ec:2c:7d:4c:
93:9e:e5:df:6c:ef:d6:95:53:a7:c4:41:c0:e3:f8:
29:16:b7:30:70:bb:32:a8:f6:f6:b0:e4:dc:ac:3d:
ae:f8:b5:4a:14:e5:7a:0a:33:73:29:f3:e7:27:42:
57:59:d7:d5:16:6d:8b:2c:ef:68:e5:9d:ce:96:33:
a8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:66:3D:4C:3B:36:13:57:95:FD:F0:B0:AC:EC:0A:91:AB:2D:92:49
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-mY9TDs2E1eV_fCwrOwKkastkkk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5f:5d:5e:ff:00:2e:d2:07:83:f8:34:a9:19:46:ef:32:7e:d3:
28:2e:00:95:9b:f5:66:90:30:34:6e:0e:34:10:35:47:36:04:
0b:f3:22:b9:8c:48:ef:8c:33:3d:3c:29:63:4b:21:f2:81:06:
d6:b5:c3:ca:67:25:28:fe:17:95:16:7a:4d:2c:4d:83:dd:f0:
51:a1:cf:0d:60:a3:95:7c:1a:9e:9c:00:d2:ac:eb:f5:83:75:
31:5a:a5:5b:bf:3a:e4:af:cc:30:3b:59:f6:82:5c:d9:57:ef:
8f:4b:35:80:02:a3:19:9f:62:e3:1c:f1:00:8e:1d:87:6f:1f:
9b:4d:60:2c:b5:e9:01:27:8c:6c:cb:b4:c1:b6:6b:89:53:6a:
eb:4e:b0:d8:92:91:59:9c:ba:35:c8:2d:c8:ea:69:ea:aa:f0:
c7:45:8a:8f:24:16:ed:1c:44:a5:76:89:46:a3:cc:53:c0:30:
78:a1:dd:5d:7e:1b:7c:5e:24:ca:f4:df:3c:d0:22:b5:53:5b:
f5:26:ad:00:84:91:aa:4d:40:e4:ad:2a:85:f0:8b:f0:f0:d3:
c4:03:fa:22:17:f0:77:6f:97:c5:cd:14:bc:16:89:e2:e8:56:
67:3d:86:6f:58:29:b3:96:c8:d4:45:50:39:3d:fb:ab:e8:0f:
ac:73:de:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org