Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2FjdBIvtIwTjysd7YYARBdDkPGc.roa
File: 2FjdBIvtIwTjysd7YYARBdDkPGc.roa (raw, json)
Hash identifier: D+93pAtvfk7UEniXm+ZXIqKJ4CzWpFGtJ+/ey5WOGFU=
Subject key identifier: D8:58:DD:04:8B:ED:23:04:E3:CA:C7:7B:61:80:11:05:D0:E4:3C:67
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E07
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2FjdBIvtIwTjysd7YYARBdDkPGc.roa
Signing time: Wed 29 Sep 2021 02:43:08 +0000
ROA not before: Wed 29 Sep 2021 02:43:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3591 (0xe07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D858DD048BED2304E3CAC77B61801105D0E43C67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:b6:8d:e8:46:ea:d3:e7:56:28:e2:7d:c8:
e5:54:cb:00:2d:e2:ff:2d:cc:9d:32:9e:41:b4:8a:
46:01:31:dc:8e:ff:c8:5f:fd:8d:e1:fc:b5:3e:b6:
23:19:a3:f9:2b:b1:63:1a:62:e5:ce:1e:a6:7b:da:
e2:ce:fd:d9:3a:8a:8b:3e:4b:37:13:0e:09:49:56:
3d:5c:79:6a:c8:8b:1b:36:9b:88:96:d5:aa:6b:93:
5e:d1:40:5f:d3:e0:70:c0:da:f8:aa:8b:fb:79:b2:
40:45:62:9d:d1:97:8b:a8:42:98:51:03:f5:1d:c2:
03:46:69:1b:e1:e6:b6:0b:17:1e:3a:ba:94:7b:37:
a2:6f:f9:83:fa:72:4a:f5:8f:9d:3a:d1:87:32:ec:
86:e8:33:d1:77:47:dc:02:a1:29:11:6f:36:36:b7:
f9:2b:14:0a:54:d2:cb:64:77:dd:fb:a0:07:de:59:
ed:68:c1:dc:42:df:dc:46:75:5c:ff:0c:58:a4:96:
1e:c2:e1:b0:bb:db:76:55:a6:80:1b:e6:c1:b8:bb:
0e:3b:e3:10:f8:17:fa:d6:74:f6:b2:56:9a:88:0e:
95:3f:0b:0c:97:3d:76:f5:61:91:3a:5b:f9:a5:af:
bd:81:dc:ec:38:86:4d:44:82:5e:4e:c3:75:2a:84:
70:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:58:DD:04:8B:ED:23:04:E3:CA:C7:7B:61:80:11:05:D0:E4:3C:67
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2FjdBIvtIwTjysd7YYARBdDkPGc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0d:77:1b:ba:e1:70:07:e6:0f:9f:24:0b:4c:84:a3:6d:eb:92:
63:29:a6:ad:63:f6:fd:88:11:66:fb:8e:91:48:7d:54:09:64:
ce:bc:ea:6f:9f:e4:bf:82:40:8b:04:b6:93:b9:87:fc:db:6c:
d9:71:77:35:3f:6f:78:d3:3f:e3:f8:f2:bc:ff:33:e2:f6:32:
33:5c:cf:58:4f:5e:fd:b5:81:46:50:77:7d:36:96:b0:7f:c0:
af:95:bd:63:a9:ec:73:bf:5c:11:0d:d4:88:cc:76:6f:22:5e:
1b:ec:3f:4a:9d:ad:56:bc:60:b6:0c:26:eb:c5:f9:1c:74:5e:
f0:5c:33:f4:b1:e4:b9:7c:e1:08:da:ed:7a:79:46:35:b3:b7:
ee:1b:b4:78:b2:37:20:f8:df:ae:46:92:d0:9a:e8:34:85:0c:
8d:ba:0f:c6:d9:44:ed:12:74:5d:d8:a3:58:4b:9c:c6:fc:69:
59:56:a9:3d:fc:38:95:66:92:b9:db:d2:2d:6d:55:84:13:23:
00:9a:57:cb:90:ea:b0:ee:51:46:ac:e4:c4:07:42:9f:91:bb:
a0:78:97:79:8f:25:7d:50:7e:47:ff:23:fb:dc:29:3f:ee:dd:
4e:3f:1e:d3:95:60:c4:46:b4:ad:a3:74:15:7f:60:ce:7c:c0:
0f:50:be:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org