Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0OUlMKakN7rqXifDTeiJ19wapsg.roa
File: 0OUlMKakN7rqXifDTeiJ19wapsg.roa (raw, json)
Hash identifier: VMufIh6NTDPzMUjZI7z/yW7OZGXooTX6dDH80HHx60E=
Subject key identifier: D0:E5:25:30:A6:A4:37:BA:EA:5E:27:C3:4D:E8:89:D7:DC:1A:A6:C8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08A7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0OUlMKakN7rqXifDTeiJ19wapsg.roa
Signing time: Tue 29 Sep 2020 09:52:17 +0000
ROA not before: Tue 29 Sep 2020 09:52:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 175.183.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2215 (0x8a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0E52530A6A437BAEA5E27C34DE889D7DC1AA6C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:1c:b9:7b:47:46:d2:df:70:3f:ca:92:a4:
7f:d8:a5:f0:2e:88:7a:2c:b7:c8:9a:bc:83:ca:56:
b7:65:b7:70:9f:a9:26:fd:5d:42:3b:23:84:cb:f1:
0d:df:45:8f:58:b5:59:6c:05:86:b6:c1:13:78:5e:
2c:47:bd:ad:57:03:db:13:63:03:29:b8:fb:92:40:
b9:5f:9c:5a:4f:2e:5c:6e:db:6d:04:f1:cd:2d:a5:
6d:c9:c6:31:87:81:e0:62:16:b7:13:7c:47:95:41:
a4:84:07:5e:a8:a7:7b:0f:eb:29:80:56:07:4b:50:
9e:fb:30:ec:fa:73:96:89:ed:3a:62:31:c8:46:f9:
48:d4:f4:8d:bc:e1:20:54:3d:12:30:e3:f0:58:ec:
3e:d6:2d:bb:89:99:fc:ae:3f:56:7e:0a:cc:c4:80:
4f:bd:42:07:9e:6f:bc:df:49:a9:26:15:8c:26:f3:
c5:a2:79:0c:47:66:05:6e:a5:65:28:6f:a8:de:fb:
87:6d:e0:fa:e1:6e:76:c6:f4:37:37:2e:e7:95:f4:
7b:fa:c5:72:a2:03:3b:5f:49:ba:23:76:5c:03:01:
51:e3:c7:91:9f:e7:86:4c:78:49:a5:77:2c:db:7d:
c9:89:72:e3:8a:07:b8:c8:25:de:17:fc:fc:57:d4:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E5:25:30:A6:A4:37:BA:EA:5E:27:C3:4D:E8:89:D7:DC:1A:A6:C8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0OUlMKakN7rqXifDTeiJ19wapsg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9e:ce:7c:60:00:e0:b2:29:dd:fd:cb:78:08:6b:53:58:24:49:
8e:53:90:fd:c5:21:8b:91:50:cb:52:6f:9d:c4:78:b8:b8:b6:
ed:51:16:71:e9:8a:84:34:85:e6:0f:93:70:26:c5:81:42:10:
cf:d1:fc:f8:7e:49:29:5d:10:c9:42:8e:81:97:8c:66:a8:d5:
24:aa:d6:14:d3:a4:99:1f:99:76:aa:53:89:71:2e:91:24:0b:
11:ee:9f:cb:82:a9:db:2d:d9:00:d6:54:d1:13:61:5b:87:4c:
da:3e:4d:a7:7c:0d:e2:0d:4b:4d:bc:95:65:35:49:ad:85:d4:
23:af:63:a2:cd:42:3b:17:f0:5f:ac:83:9c:cd:c7:20:c7:53:
38:c1:82:d7:0a:e6:4f:6d:22:29:4e:0f:2d:aa:f5:e4:c7:72:
ba:bd:a4:21:f6:00:f2:e0:8e:3b:fe:45:d5:ed:eb:d7:71:3d:
d7:5f:76:0a:f5:55:4e:42:04:59:bf:a2:b9:1a:c0:9c:84:da:
98:33:c0:4e:87:ab:37:66:9b:27:fa:a5:73:b6:ef:21:1a:33:
fe:6f:88:01:5f:b9:3e:d4:d7:74:30:2b:14:9f:b6:eb:cc:8d:
19:35:2c:19:43:80:bb:1f:12:3d:0c:62:cb:17:d5:80:d1:e9:
29:fe:a2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org