Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0GTCQ6o7T5Sf5wLv8uqWQKsbjOs.roa
File: 0GTCQ6o7T5Sf5wLv8uqWQKsbjOs.roa (raw, json)
Hash identifier: Do5bHz7QsmjmKHOhm/4R04YCXx3vVOzVpw4nBlb04/I=
Subject key identifier: D0:64:C2:43:AA:3B:4F:94:9F:E7:02:EF:F2:EA:96:40:AB:1B:8C:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C3D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0GTCQ6o7T5Sf5wLv8uqWQKsbjOs.roa
Signing time: Sun 07 Feb 2021 07:20:10 +0000
ROA not before: Sun 07 Feb 2021 07:20:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 210.244.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3133 (0xc3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:20:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D064C243AA3B4F949FE702EFF2EA9640AB1B8CEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:07:aa:b0:66:2d:30:f4:4e:da:ce:56:c1:
aa:51:4c:1a:45:9b:dd:90:48:51:48:05:58:1c:81:
20:44:e3:c6:35:87:2a:db:c4:d4:a5:22:ba:bc:21:
fa:47:2a:71:29:5a:6f:18:dc:f4:09:96:80:89:0a:
35:e2:fd:6d:f8:2c:1d:0a:80:53:29:42:b4:06:13:
2c:ee:a7:4b:59:c4:a1:c9:95:5c:93:f1:c9:e8:3e:
57:0a:34:c8:f6:a3:b9:e0:4a:b4:9a:56:ef:fc:8e:
ca:17:b0:b8:3d:77:43:c6:2e:1e:5a:9a:18:84:05:
bd:25:cd:a3:ae:68:9e:57:4b:c6:36:e3:5c:df:aa:
ec:a1:c7:64:d9:ac:dd:b0:7d:66:2b:67:27:c6:84:
29:33:f3:da:74:88:0c:07:e8:5d:84:78:21:38:c9:
01:22:42:a8:b9:84:a3:54:7c:7f:78:e9:ef:fa:bb:
3d:9c:47:47:a1:7b:b8:57:60:75:9a:89:9b:21:49:
a4:5b:09:6c:4a:83:93:11:6e:1a:e2:cd:13:d9:ef:
88:f0:ab:66:b8:03:1d:97:08:96:e5:08:cf:1b:dd:
91:e4:16:d8:dc:6a:be:a7:c5:06:53:5c:4f:8f:66:
1e:c9:3a:c4:2b:09:ea:ca:ba:db:0c:8b:48:7d:60:
ef:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:64:C2:43:AA:3B:4F:94:9F:E7:02:EF:F2:EA:96:40:AB:1B:8C:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0GTCQ6o7T5Sf5wLv8uqWQKsbjOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.88.0/22
Signature Algorithm: sha256WithRSAEncryption
57:06:33:dc:58:5a:db:94:27:c8:b1:e9:89:52:09:1e:cc:c9:
39:db:0a:85:21:f7:c6:ca:36:a7:12:d7:1e:f0:32:82:04:4d:
42:bd:df:e7:c3:5f:76:73:cb:97:f5:7a:e8:3d:57:25:7c:2e:
0f:7b:ba:be:1a:db:3f:65:a6:23:00:d4:f7:df:30:a6:41:36:
3f:80:53:e7:39:7c:dd:cc:59:5e:28:64:48:1c:02:ac:07:df:
75:e2:4c:0f:ca:04:45:bf:2e:31:bb:99:9f:1a:39:d1:87:b8:
fc:51:6e:08:82:2a:04:45:e3:9a:53:e6:8a:e4:87:d6:c3:70:
62:ab:f7:17:0d:45:ff:27:73:18:b0:d5:36:b9:19:08:d6:0f:
0a:cc:d6:a3:89:da:3f:7e:ea:10:9d:8e:97:b1:4f:26:2a:44:
01:c4:a7:a3:0f:32:e4:19:f1:68:c6:5f:77:41:44:b6:1b:80:
57:b0:dc:d1:a3:6d:a6:cc:72:81:7d:e1:32:a7:73:1c:a1:40:
6c:f5:bf:26:44:9f:b4:f5:18:75:9e:84:cc:b6:7c:29:55:43:
89:58:f5:6d:bb:09:1e:32:5e:a4:65:d8:ff:5f:aa:0c:e4:15:
c7:1d:c4:65:b7:32:78:bc:f6:9a:7a:2b:47:37:6d:98:a8:e8:
d2:85:73:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org