Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oGb2ZAPkIMIoJublzYhU9sj-1Q.roa
File: 0oGb2ZAPkIMIoJublzYhU9sj-1Q.roa (raw, json)
Hash identifier: WP7pstjMxJ9z6SS/K2nHYR3Y/RUwWPTszz5NdEd9UHM=
Subject key identifier: D2:81:9B:D9:90:0F:90:83:08:A0:9B:9B:97:36:21:53:DB:23:FB:54
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08AA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oGb2ZAPkIMIoJublzYhU9sj-1Q.roa
Signing time: Tue 29 Sep 2020 09:52:18 +0000
ROA not before: Tue 29 Sep 2020 09:52:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D2819BD9900F908308A09B9B97362153DB23FB54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:58:98:6b:6e:e0:e0:97:7b:a2:30:49:6e:
69:c8:b9:85:09:3a:6e:ee:14:e1:70:13:e6:da:6b:
83:68:8a:9b:a4:67:75:f1:8f:0f:82:ea:8c:3a:9c:
9b:fd:21:98:e4:31:60:62:2b:c2:c9:c5:37:45:1f:
a0:d8:25:21:f0:03:f1:bf:19:da:ae:99:9e:6d:51:
61:64:44:c2:08:81:ec:46:57:a4:b2:bc:f8:92:84:
ec:0b:ff:cf:89:57:c2:cc:e9:9b:56:b7:e1:d3:ba:
5b:a3:37:cb:a6:35:7c:ce:c1:ae:c1:42:6f:c7:72:
35:99:4d:86:da:56:72:91:74:c2:a7:e1:a6:6f:2c:
81:b9:22:af:68:09:2a:40:75:7d:44:9c:94:89:c8:
e9:57:8c:58:12:b7:a6:35:71:24:83:4f:99:49:29:
3d:b9:63:6e:7d:71:71:18:cb:20:1a:55:d9:ab:e5:
0c:a9:d4:e3:40:7f:2a:6a:e8:7c:bd:2c:d3:1f:01:
e6:15:bc:80:24:0a:31:9c:b2:5d:26:82:72:7e:76:
56:62:65:8d:35:73:ee:6e:86:39:f6:b8:7f:31:97:
9b:11:0c:07:89:77:c7:1a:cc:1c:14:3a:0b:05:31:
f9:8b:59:21:a4:8a:8a:d6:30:8e:7f:b7:20:7f:a5:
61:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:81:9B:D9:90:0F:90:83:08:A0:9B:9B:97:36:21:53:DB:23:FB:54
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oGb2ZAPkIMIoJublzYhU9sj-1Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.48.0/20
Signature Algorithm: sha256WithRSAEncryption
66:74:10:94:5b:79:21:ef:c2:e3:b7:e3:33:90:5f:fa:48:6a:
81:9a:dc:5e:43:fd:19:fd:ee:48:86:be:37:64:8d:88:25:6d:
f0:cf:a0:ba:b5:95:62:25:be:92:77:2a:eb:46:4d:9d:d8:c6:
02:cd:5f:68:27:f1:52:66:4b:b5:26:fe:ad:3e:90:51:28:0a:
77:0e:5f:12:f0:00:12:cf:23:be:57:c1:36:ca:83:77:74:1d:
76:35:9d:8d:7e:a9:c0:fe:ca:6b:d8:cc:be:6c:8a:c2:86:08:
1c:1b:76:dc:de:a7:1d:60:d9:f2:f0:54:bc:ce:04:76:e1:5d:
c2:48:f6:c1:9c:ef:2c:2d:32:30:5e:22:62:cc:00:d4:a0:65:
ec:17:e3:33:51:25:14:f7:96:77:d8:20:3c:0a:ee:ad:d4:35:
04:1f:63:7e:e1:1b:0e:52:15:ef:09:ff:30:39:9d:48:c1:8a:
9e:60:e1:78:3e:c8:f7:71:8d:31:84:7b:78:a2:7b:e2:81:9c:
59:6c:ff:4b:32:ce:d6:81:b4:cd:8f:35:cb:f8:77:88:d6:54:
0c:bc:88:fb:a7:89:02:76:8a:6b:fa:f2:8f:3d:2c:df:89:42:
3c:26:1d:07:bc:0a:b6:6d:10:12:b1:bc:8b:af:40:2b:e6:be:
1a:fa:9e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org