Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-zbIkCeV3ndrfWDvNj8d5Ld6WWA.roa
File: -zbIkCeV3ndrfWDvNj8d5Ld6WWA.roa (raw, json)
Hash identifier: ajJ7jFX4IKW6BemsMNMNND15ZV6rloog4GOUFZDt1qE=
Subject key identifier: FB:36:C8:90:27:95:DE:77:6B:7D:60:EF:36:3F:1D:E4:B7:7A:59:60
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DE9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-zbIkCeV3ndrfWDvNj8d5Ld6WWA.roa
Signing time: Wed 29 Sep 2021 02:42:58 +0000
ROA not before: Wed 29 Sep 2021 02:42:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3561 (0xde9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FB36C8902795DE776B7D60EF363F1DE4B77A5960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9a:b7:18:cb:2c:79:66:5d:1b:94:41:9a:6c:
f5:84:74:93:db:8a:35:cc:d1:1f:d9:c2:f1:17:b6:
3b:e3:6e:d6:27:2b:09:54:8d:14:b3:4f:28:5b:5f:
ee:4f:70:a4:d9:3b:1f:d0:2c:34:4f:28:d1:21:08:
7e:27:54:60:47:fa:98:6a:e7:a8:a6:23:15:02:73:
13:dc:58:88:40:6f:12:14:91:a0:c5:f0:a1:3b:50:
fb:e2:28:5b:74:79:29:70:e0:72:ce:33:67:cb:12:
50:ce:e6:72:14:2c:b3:e8:ff:e8:bb:52:47:8e:85:
08:6c:b6:4a:ac:e1:aa:30:14:f3:d8:39:36:76:92:
8a:8f:23:85:dd:3e:fb:23:dd:60:51:46:d9:e2:db:
04:9a:92:67:27:36:d0:95:a8:35:32:04:f4:b8:57:
00:c1:98:8d:cb:28:b8:d0:7f:05:6a:72:04:15:61:
ff:6b:87:8d:54:b6:0a:5f:ae:2c:9c:35:fd:30:a3:
27:b4:39:02:73:74:93:30:ea:3b:be:fb:52:9e:e6:
d0:63:a4:30:aa:3e:3b:90:d0:7e:dd:b6:98:ec:42:
33:df:47:5d:b4:a8:30:37:cf:eb:47:12:5c:b4:5c:
88:d6:a5:51:c0:24:f8:91:92:83:37:4b:fa:aa:f5:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:36:C8:90:27:95:DE:77:6B:7D:60:EF:36:3F:1D:E4:B7:7A:59:60
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-zbIkCeV3ndrfWDvNj8d5Ld6WWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9c:22:c7:12:d7:63:4e:a6:e7:62:2e:87:07:7b:16:31:4f:42:
01:31:ce:9d:7a:01:7a:bb:df:ea:3e:d6:d9:b3:32:c4:c0:d3:
78:d7:15:39:97:c2:19:10:3f:08:6e:68:f0:2d:30:fb:9f:95:
75:87:d7:c0:28:50:e6:34:c3:d0:83:82:c1:36:30:65:1a:b7:
5a:58:2c:bd:b2:e0:5a:fa:62:6c:2a:cc:15:54:d7:b7:ec:e6:
08:38:a2:43:26:d1:75:c9:e9:14:a9:bf:93:25:4f:c8:6d:b3:
d3:21:32:44:d7:72:fc:44:7b:01:4d:da:94:1b:6a:28:07:70:
de:ba:dc:d8:a3:80:27:9e:10:fa:f1:87:47:ca:0e:b1:07:e9:
1e:55:da:2a:45:74:33:ae:5c:10:e2:58:0f:b0:56:1e:06:94:
da:71:b3:1d:7b:90:df:a6:22:90:1c:5f:04:56:99:5d:b3:de:
63:1e:e4:6c:f8:3d:14:3b:b7:b8:e8:a0:92:e9:d9:ef:96:24:
f3:95:fc:c5:20:bc:9f:31:76:41:e0:05:92:d7:94:b2:6a:c5:
e4:3e:39:d0:ac:ba:34:1f:62:17:e0:57:22:17:ed:38:16:17:
79:20:6c:cf:ec:49:26:2e:5a:91:1d:49:0d:ca:b6:8b:65:ba:
a9:1a:89:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org