Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1RKl24psernKwupi0V7zM-qVfb8.roa
File: 1RKl24psernKwupi0V7zM-qVfb8.roa (raw, json)
Hash identifier: uWB1LJvRx5Ih9wAtVBL+PGyEFq9AJ1rynP6wyrYUiNo=
Subject key identifier: D5:12:A5:DB:8A:6C:7A:B9:CA:C2:EA:62:D1:5E:F3:33:EA:95:7D:BF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08FF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1RKl24psernKwupi0V7zM-qVfb8.roa
Signing time: Tue 29 Sep 2020 09:52:41 +0000
ROA not before: Tue 29 Sep 2020 09:52:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D512A5DB8A6C7AB9CAC2EA62D15EF333EA957DBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:08:e9:0d:ae:82:32:10:6c:9a:c8:c5:17:08:
93:2e:d4:1c:74:29:51:ff:fe:a4:78:49:aa:78:ea:
67:19:43:b8:6c:77:07:a6:b7:1f:32:6e:8d:9a:ba:
b3:a4:52:43:4b:a8:64:0d:05:48:23:8b:93:9e:fb:
1b:42:ce:26:fc:21:d6:8d:53:a0:8d:2b:b2:5b:7a:
da:90:54:20:36:b5:3a:94:d4:38:de:30:e8:5a:20:
3e:26:35:1f:4a:8d:37:6d:27:5a:8c:41:3e:06:de:
2f:90:f9:8c:99:43:c0:9d:fc:5e:1a:78:e0:d1:ec:
8c:c7:ba:39:46:91:a4:c3:69:0c:1e:c8:54:71:e5:
a2:74:ba:1b:db:c2:de:30:1a:db:19:95:9d:3d:7f:
c8:8d:fc:f3:5b:cb:27:d4:6a:bc:ed:ec:27:3f:20:
b2:fc:fc:9e:1d:ac:93:bb:94:95:f1:8e:b0:96:7c:
d8:6b:06:ea:55:c1:26:3e:94:e5:a9:ff:cd:d1:85:
e1:df:7c:b0:28:b3:de:9e:c8:c9:91:41:13:45:c2:
22:2f:fb:60:34:9c:ae:9a:96:12:24:44:1a:d3:76:
df:58:29:c4:0d:ff:25:0e:2a:85:51:5c:d7:5d:a2:
7d:36:f9:95:e9:c5:48:88:66:9d:1a:d1:71:3a:e3:
c6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:12:A5:DB:8A:6C:7A:B9:CA:C2:EA:62:D1:5E:F3:33:EA:95:7D:BF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1RKl24psernKwupi0V7zM-qVfb8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
22:2e:06:2f:36:86:c5:22:6c:80:5b:65:42:d9:2a:33:28:98:
60:78:18:b5:e0:fb:02:24:fc:5c:4f:be:56:2b:49:7d:ea:7b:
5c:69:16:92:b5:92:98:37:c8:fa:d4:df:55:b7:07:12:55:8f:
af:a4:68:68:4a:41:47:92:91:92:73:bd:ac:9b:97:22:80:77:
7a:81:15:93:09:73:a6:6d:4e:7b:58:d1:5c:ac:73:37:c6:38:
b3:96:ae:c6:cd:df:79:da:17:57:a2:e4:b8:1c:20:cf:79:9f:
58:83:a9:93:30:a7:3d:49:cd:e6:e8:2b:18:bb:62:aa:4c:8b:
f8:71:8d:c4:6b:91:6c:97:0a:1f:4f:3b:64:d5:95:f9:d6:9c:
5c:e0:3a:e6:96:a3:3c:35:6d:1c:07:1f:79:0c:e8:9f:36:c9:
b0:d2:fa:c2:0b:9a:86:b8:18:f6:5e:58:0b:8e:b3:79:44:b2:
c0:a1:c4:7c:a6:cb:ca:a0:2a:67:9d:68:35:25:68:9f:50:f7:
6d:6f:77:b6:10:2b:28:84:4b:ad:28:d5:a3:89:b5:e3:59:65:
c6:44:ca:2c:5d:b9:cb:ed:db:99:1d:f5:fd:9f:42:0b:b3:50:
e2:d6:2b:0f:4c:c1:60:c5:5f:d7:6d:26:64:70:e5:82:ef:89:
fe:bd:16:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org