Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-OyV4-9QbVB8Vu9wB5_PyffoIw.roa
File: 0-OyV4-9QbVB8Vu9wB5_PyffoIw.roa (raw, json)
Hash identifier: DvA3pqe3HqELEvBifD75oCtr+TC0RvQ82cmaYFe4NGw=
Subject key identifier: D3:E3:B2:57:8F:BD:41:B5:41:F1:5B:BD:C0:1E:7F:3F:27:DF:A0:8C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B5D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-OyV4-9QbVB8Vu9wB5_PyffoIw.roa
Signing time: Sun 07 Feb 2021 06:02:17 +0000
ROA not before: Sun 07 Feb 2021 06:02:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2909 (0xb5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:02:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D3E3B2578FBD41B541F15BBDC01E7F3F27DFA08C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:26:3e:3d:d1:62:58:b9:ee:8c:2a:66:f8:ac:
cb:c2:c4:0a:48:24:37:af:eb:aa:b6:1d:89:0a:91:
2e:2a:c2:be:f3:13:bf:a7:8d:6b:df:3d:77:06:3c:
b0:79:ce:44:56:43:1d:4a:9c:8e:3c:5e:bd:3b:65:
68:e8:1a:7e:7f:cb:82:c3:9b:d7:f8:8a:5e:ed:79:
67:be:75:a4:86:dd:4d:1c:f0:5c:11:73:2a:1c:80:
97:1d:e2:58:04:d6:f0:c3:01:17:ce:2d:bc:27:af:
63:05:bd:a5:98:d6:0b:31:cd:df:f5:90:d3:86:7f:
ff:43:96:69:e4:46:ea:bb:78:a7:9f:f6:14:22:66:
29:b2:83:a5:56:bd:a7:92:d6:64:d1:45:1d:4e:e5:
e3:3f:5c:39:c6:e7:ec:4f:59:87:ef:0c:84:8e:82:
c5:5a:23:81:02:7e:4c:95:11:e2:7b:17:37:9b:eb:
1e:be:98:f1:f0:bd:b7:3a:eb:1b:d0:b6:27:fe:40:
5d:af:ba:6a:50:c4:af:b6:f2:18:21:92:b0:4c:d9:
9a:3e:f3:e8:52:a8:93:c1:e6:ba:13:90:ce:84:c0:
00:b3:1b:d5:98:7d:8f:b8:38:0b:e1:7e:f0:03:79:
19:38:46:8e:ba:0b:4b:1b:97:29:69:f4:20:dd:f5:
b1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E3:B2:57:8F:BD:41:B5:41:F1:5B:BD:C0:1E:7F:3F:27:DF:A0:8C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0-OyV4-9QbVB8Vu9wB5_PyffoIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
78:80:3e:80:32:0e:35:c6:3f:c6:84:2b:aa:a0:c9:43:7b:e5:
c8:07:46:77:10:a7:2a:d1:d0:ac:3a:5c:bc:a9:9f:11:10:f2:
34:7c:90:d4:f1:95:89:12:51:47:72:e5:26:cf:1a:86:e5:97:
66:38:5b:ba:a8:de:af:a1:97:0e:26:5c:68:21:be:5d:26:6d:
da:3e:bc:b2:a7:c4:38:b0:16:c1:10:d1:ee:e2:34:4e:f0:d0:
3e:4a:de:b5:b7:fa:49:98:93:26:96:57:11:79:04:b6:02:ed:
39:98:ac:53:dc:72:9a:a4:78:45:c7:99:e8:58:96:5f:c7:06:
7a:6a:e4:4c:8e:61:e3:18:b7:f3:33:b1:ef:fc:60:6c:f4:4a:
00:6e:0b:54:d0:38:2e:e6:6a:fc:f5:fa:96:73:57:77:c5:23:
11:a9:90:40:62:b6:ca:51:cc:20:a7:9b:1c:f3:27:78:52:b7:
ca:e5:56:d5:fd:0b:9e:61:81:9e:90:a8:36:f7:e1:76:e2:d6:
ce:7c:49:41:e6:7d:e2:af:63:c9:bb:4e:8b:57:ef:e2:d1:06:
aa:c8:19:fe:6d:3e:cd:c7:09:61:63:6d:e9:e5:48:e3:5a:b5:
31:dd:6a:69:0e:3c:8b:99:7d:c8:2b:1c:da:ce:58:39:42:d9:
af:9b:f5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org