Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2dYckAQ5qLwGQt0d2CS7vBFKUGU.roa
File: 2dYckAQ5qLwGQt0d2CS7vBFKUGU.roa (raw, json)
Hash identifier: b87or8ii56mwImXBc201nbr9ncSnXZsJCWDDLAVyusI=
Subject key identifier: D9:D6:1C:90:04:39:A8:BC:06:42:DD:1D:D8:24:BB:BC:11:4A:50:65
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BEF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2dYckAQ5qLwGQt0d2CS7vBFKUGU.roa
Signing time: Sun 07 Feb 2021 06:41:33 +0000
ROA not before: Sun 07 Feb 2021 06:41:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3055 (0xbef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:41:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D9D61C900439A8BC0642DD1DD824BBBC114A5065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a4:be:b7:98:64:84:0d:88:b3:41:b1:0a:ff:
b3:fc:d5:24:25:71:1c:8f:50:6e:91:91:ae:d2:57:
50:7d:21:f9:8c:db:88:51:13:c2:96:81:8d:15:9b:
cf:92:e7:77:fc:9c:5a:74:f7:c1:9d:7f:f9:f5:aa:
e7:f9:cc:d9:cf:ac:96:76:b2:b3:38:a2:2b:1c:13:
6f:d1:c3:3f:b4:d9:90:51:bc:6f:dd:d5:f2:16:55:
1e:c6:98:17:82:67:6a:6c:a8:e9:e7:e0:d9:ec:97:
07:4e:07:96:6d:4c:36:0e:c3:1b:7a:b7:86:5d:33:
bf:f8:55:a4:44:a4:d2:97:ad:7a:ee:0d:34:9f:45:
3b:d6:17:f1:6d:d9:73:3d:52:bf:18:4e:74:d8:94:
cb:4d:8c:7a:a0:67:18:34:a9:34:2b:57:38:5e:d6:
57:5f:b0:c3:3d:61:9d:03:07:e8:7b:0e:e5:11:8d:
25:42:a7:ec:30:b1:a2:a7:79:0e:b6:9a:98:c5:b2:
51:d8:8a:f9:8b:1f:24:5b:78:d3:b8:0f:6b:4f:4c:
86:3c:e5:57:e6:76:ae:65:9f:ab:e8:7c:9c:89:6c:
01:3a:08:1c:0f:fe:ad:a3:a3:ca:6e:99:1a:6c:2f:
18:95:db:76:25:73:25:bb:1e:0d:f2:1b:9e:66:30:
7b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D6:1C:90:04:39:A8:BC:06:42:DD:1D:D8:24:BB:BC:11:4A:50:65
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2dYckAQ5qLwGQt0d2CS7vBFKUGU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:b9:35:51:c0:c1:eb:ee:5d:71:3b:aa:1e:e1:53:e7:47:58:
b9:4c:67:37:ec:40:d7:d0:c6:c5:51:b2:1b:47:6f:a4:a5:72:
97:24:42:61:9f:e3:30:e0:83:7c:f5:12:8b:cd:db:2c:a1:17:
f8:46:47:b0:84:6e:61:6a:d6:94:6a:15:50:09:22:f0:33:69:
18:e6:ec:f5:7d:87:74:8a:2d:69:c0:30:62:db:46:05:49:b6:
f2:e7:b4:03:6f:3d:be:79:2f:3d:93:ca:94:a0:e9:55:22:ab:
b3:32:b4:79:28:dd:0c:23:c8:40:16:d8:1c:7c:b4:30:b6:96:
5d:96:46:99:91:d6:dd:77:ca:ee:26:a7:36:c1:a5:d7:58:a0:
76:2b:ec:4e:81:02:60:ae:08:39:5e:29:2a:79:aa:d4:63:55:
e0:01:d2:bc:10:48:0f:95:c0:4d:c3:33:db:22:b1:8a:e6:4d:
e7:65:6e:75:84:19:0d:80:7b:65:15:f6:21:61:d2:e3:93:10:
d7:d8:9e:93:2f:4b:0d:36:72:cb:0e:48:07:c1:98:6e:bf:60:
ae:7c:57:63:d3:53:cb:55:71:3d:53:03:5e:c6:92:7c:53:39:
e0:21:0e:bc:20:37:9d:85:40:3d:d3:7e:81:c4:9d:3a:84:7b:
99:0a:d7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org