Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1eNxZ3dHPGH64kkR66MEE4sPmV0.roa
File: 1eNxZ3dHPGH64kkR66MEE4sPmV0.roa (raw, json)
Hash identifier: NBp41QfTQ4X4B+sp1JN015pqxTJgWtZ6dMn8bF0dyNo=
Subject key identifier: D5:E3:71:67:77:47:3C:61:FA:E2:49:11:EB:A3:04:13:8B:0F:99:5D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0867
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1eNxZ3dHPGH64kkR66MEE4sPmV0.roa
Signing time: Tue 29 Sep 2020 09:52:00 +0000
ROA not before: Tue 29 Sep 2020 09:52:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 2001:cd8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2151 (0x867)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D5E3716777473C61FAE24911EBA304138B0F995D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f5:68:c1:3c:ae:86:0d:6a:f0:fd:9a:44:32:
18:f0:ff:ae:d4:10:31:50:ed:84:11:a6:1f:5a:44:
6b:1c:1b:4c:8f:f1:14:fd:1a:d1:7e:26:34:91:a3:
61:54:44:06:58:f8:5f:e3:98:28:79:65:c3:72:38:
07:c1:34:db:24:41:cf:97:2c:96:27:44:96:89:97:
e7:3d:96:7a:69:2a:aa:7e:c1:70:ca:e5:0d:62:3c:
20:89:c2:0f:27:34:38:84:c5:27:65:ab:5e:cc:62:
1d:7a:c5:57:c2:bd:fe:e8:f7:36:2d:07:b9:6b:4d:
89:40:1e:df:4e:98:da:c8:34:9e:64:0d:ad:43:92:
ae:39:04:18:c0:a0:a3:00:0e:2a:b2:c7:a5:8f:ec:
85:a0:6c:eb:6c:37:03:04:8a:cb:91:ce:2a:ac:0e:
c4:18:ea:0c:b6:af:a2:f3:9a:28:33:ea:0d:44:97:
63:3c:1e:ae:9e:82:9a:6d:c3:19:78:20:6e:44:50:
79:cd:24:45:11:a9:d7:4b:1f:14:55:24:45:7a:69:
4c:59:34:a2:ca:e3:97:95:f2:e4:7b:c1:86:61:1a:
9e:2f:e6:e2:77:be:39:1a:5b:f5:83:c1:fa:0b:d9:
f6:f5:82:63:fe:e4:26:b0:e7:aa:51:a6:11:bd:03:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E3:71:67:77:47:3C:61:FA:E2:49:11:EB:A3:04:13:8B:0F:99:5D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1eNxZ3dHPGH64kkR66MEE4sPmV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:cd8::/32
Signature Algorithm: sha256WithRSAEncryption
49:65:83:39:e6:6b:4b:30:c2:79:8a:83:4e:df:3a:78:38:b8:
33:19:e3:42:29:1d:8f:2a:e0:a0:83:97:96:6c:9f:06:cc:69:
e4:21:4d:cf:de:01:bf:1a:9c:55:90:6b:2d:56:42:64:b6:e2:
96:e6:a8:c8:85:ac:f9:39:97:68:45:a3:06:ba:92:a3:d6:88:
e3:77:b3:e3:a3:4d:13:4e:2f:18:c0:da:44:71:e3:a6:4c:15:
0f:67:b7:33:2d:a0:2f:b6:1d:a4:f3:62:4d:1b:2a:8a:3e:8b:
10:8f:dd:9c:8c:78:a3:d2:ea:4b:53:3e:6d:08:af:e0:d3:8d:
a0:cd:02:d9:5d:5f:c1:cc:c6:04:dd:54:3e:9b:d4:6a:f3:44:
98:06:88:65:59:da:c5:91:bc:37:1b:e7:3a:84:0a:b1:72:c2:
d6:61:0f:5b:40:87:28:52:34:95:66:b3:23:79:6a:1c:d5:35:
3e:e0:30:b1:a0:af:70:4a:f7:0a:38:9d:57:1d:c5:f5:bb:30:
86:94:18:d6:a7:4f:43:42:95:40:f1:1b:05:f0:3c:44:36:d8:
90:2a:f8:64:46:9c:6b:c1:d9:69:a6:6e:f9:e4:73:4d:93:a6:
3e:ee:25:80:05:54:c3:36:82:1e:db:64:4d:5b:39:5f:f2:8b:
bc:fb:1d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org