Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1PoVS8sCnMeLx1yWMphBWp5BB9Q.roa
File: 1PoVS8sCnMeLx1yWMphBWp5BB9Q.roa (raw, json)
Hash identifier: RwOv6eIXYhklSRc0xftpqyzshjU1TXG+uvT8F8lzNgo=
Subject key identifier: D4:FA:15:4B:CB:02:9C:C7:8B:C7:5C:96:32:98:41:5A:9E:41:07:D4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0881
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1PoVS8sCnMeLx1yWMphBWp5BB9Q.roa
Signing time: Tue 29 Sep 2020 09:52:06 +0000
ROA not before: Tue 29 Sep 2020 09:52:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131586
IP address blocks: 175.183.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2177 (0x881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4FA154BCB029CC78BC75C963298415A9E4107D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:03:56:04:1d:4e:05:f8:f7:5b:1b:e8:65:
3d:2f:5a:d7:c8:3a:b4:dc:cb:33:cc:40:56:90:a9:
87:a7:77:fc:a3:7a:3b:b7:a3:0c:56:67:13:1f:26:
22:42:63:8b:a6:89:a1:86:88:f1:d8:c0:d2:8c:d7:
ef:8a:10:37:45:e8:bd:ed:42:f5:b8:83:d2:c9:d8:
61:ed:c9:c1:1e:56:e2:4f:4b:95:03:62:8f:bc:35:
d3:7f:92:db:3d:62:ad:a1:b8:98:16:99:8b:88:c9:
31:49:8c:65:80:b7:62:c7:2c:be:ab:ef:6b:48:1a:
6c:ff:c0:c9:94:7c:a1:54:f8:15:4c:19:c1:9f:ac:
d6:a8:7b:44:94:a2:ee:f2:f4:4f:de:9b:36:73:e9:
49:f9:dc:c3:c0:89:fd:88:c1:35:cf:9c:16:75:88:
68:9b:22:8c:ba:d6:78:1f:a5:28:79:87:41:ee:8e:
0d:24:68:14:a4:fb:f9:35:5d:38:ba:19:59:dd:97:
af:61:b1:8f:48:a2:d1:49:dd:4b:09:22:c1:03:99:
60:f3:95:ad:8b:91:a2:33:31:0d:16:4b:c6:54:70:
e4:26:54:b7:da:4d:2c:3f:39:18:9b:32:a4:a9:a0:
bd:f8:9a:ed:52:10:ac:13:9b:fb:30:d9:f1:6d:fe:
86:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FA:15:4B:CB:02:9C:C7:8B:C7:5C:96:32:98:41:5A:9E:41:07:D4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1PoVS8sCnMeLx1yWMphBWp5BB9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.136.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:31:08:72:15:23:85:10:eb:3b:f1:63:ff:91:7e:75:62:06:
f8:f8:b6:03:2c:52:6b:1d:5f:8e:b4:b0:64:c5:f0:09:2a:cb:
88:9a:e3:a5:ad:af:a0:cc:63:8c:3e:cc:e5:46:6e:0f:a2:20:
0b:c3:bb:bc:40:4f:3f:05:89:6a:b9:d8:b6:72:bd:91:e7:b0:
3b:ad:a4:19:d0:c6:28:4a:93:cf:30:95:f0:ec:7c:f9:6b:44:
ca:af:b0:8d:0a:11:b0:a5:72:4b:1b:90:28:7e:04:ac:4a:ec:
da:a8:28:e5:4b:6c:8f:d9:26:b2:fd:29:24:a1:66:5c:2d:5a:
88:a0:dd:63:ab:f4:a3:67:4d:e8:a9:8e:96:da:79:bb:ea:47:
e7:4c:39:f3:da:ed:d3:c6:88:cf:9c:02:65:ca:1f:84:36:ab:
4f:be:7a:9b:c3:2f:a7:e2:50:69:af:fc:28:cc:58:32:cd:b5:
f5:41:b6:40:79:12:6f:b0:ea:33:47:3c:9f:84:07:92:13:e2:
2c:76:43:ac:84:84:33:f7:4b:59:16:fe:cc:8a:f1:06:86:84:
c5:60:91:4a:5a:13:11:3a:08:a4:16:c8:42:39:3e:ef:67:74:
82:17:77:82:68:55:4f:78:9f:38:95:f4:11:1c:c5:d9:f4:09:
6f:6a:44:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org