Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2kgWV48L1PNDoLSEZ0AbMTZhmqc.roa
File: 2kgWV48L1PNDoLSEZ0AbMTZhmqc.roa (raw, json)
Hash identifier: Ux0VYaxVCkt/UxKPYwiyJBXgxmDJpaEGnIlkec0u65g=
Subject key identifier: DA:48:16:57:8F:0B:D4:F3:43:A0:B4:84:67:40:1B:31:36:61:9A:A7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E54
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2kgWV48L1PNDoLSEZ0AbMTZhmqc.roa
Signing time: Wed 29 Sep 2021 02:43:27 +0000
ROA not before: Wed 29 Sep 2021 02:43:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 113.196.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3668 (0xe54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA4816578F0BD4F343A0B48467401B3136619AA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:77:82:13:04:5f:66:84:8b:84:29:95:3b:6e:
ed:57:cd:76:c5:89:f2:de:69:68:87:8b:9d:43:78:
38:8e:94:75:d9:f9:a1:a5:9c:9b:e2:9b:e6:b3:9c:
d3:f4:34:c3:07:b2:06:ed:6b:81:df:06:a6:c4:46:
6d:69:05:ec:d3:46:5d:1a:d1:7b:be:27:95:6b:68:
1d:6e:43:cf:e2:4e:c6:62:d3:ff:b7:ae:8b:60:87:
25:6b:a8:d5:8d:f4:e7:3a:03:ed:b4:c7:11:95:b4:
e0:1f:be:a8:84:55:ce:e9:cf:fa:6b:e4:f1:7d:da:
4a:69:dd:b1:56:ed:9e:1f:f5:ad:ef:83:92:34:bd:
4e:8b:1e:c5:ac:9e:b6:7a:8b:8c:0b:de:4c:46:d8:
bf:50:d5:e4:b0:6a:24:77:a2:d1:9d:1b:26:28:05:
1d:da:5b:e4:8f:8a:2d:f3:22:db:97:b5:84:4a:1d:
c8:b3:2d:c2:39:1a:5a:7c:56:87:d7:6e:f7:15:bd:
6c:1d:e4:d2:99:9c:c5:e6:52:49:e6:2a:f5:43:b7:
fa:9b:e5:1e:f7:97:45:42:1b:a2:2e:b5:cd:c6:0c:
6c:5f:3e:28:12:bd:09:0a:2b:4a:a4:51:99:54:e3:
74:2d:61:12:d0:ba:db:e3:fb:6c:52:9a:42:63:53:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:48:16:57:8F:0B:D4:F3:43:A0:B4:84:67:40:1B:31:36:61:9A:A7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2kgWV48L1PNDoLSEZ0AbMTZhmqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/17
Signature Algorithm: sha256WithRSAEncryption
64:dc:dc:a7:ab:fc:fe:0a:e6:8c:d8:ba:21:48:82:5a:62:63:
6a:ed:b7:94:24:f0:55:4c:e2:53:93:38:f3:d8:f9:32:bf:09:
78:23:83:e0:58:c7:92:da:7d:a1:e2:fb:6d:79:d2:46:ea:13:
8f:e9:2f:0a:7c:32:45:43:aa:d5:54:e2:52:f9:3c:b6:9c:c0:
84:75:2e:85:62:bc:db:16:2d:7e:40:91:95:53:88:75:a6:8a:
50:8a:40:90:fb:71:f6:2b:bf:cc:92:a1:98:e2:40:28:9e:09:
e7:06:62:79:29:9c:1a:3f:3d:cc:e2:d3:bc:fb:28:a0:f1:6e:
e1:38:ca:ec:90:c0:8f:2c:6c:a3:bc:5b:e7:c5:5d:f0:d9:ea:
83:54:21:5a:55:82:78:be:75:37:7b:a5:df:74:9f:58:02:33:
a7:25:d1:7a:12:ab:71:26:47:89:2c:cd:a3:e6:09:ee:d0:01:
c2:ba:0e:f5:4e:9b:7c:47:6b:45:a8:73:53:cd:2a:a5:25:5e:
ea:49:ae:22:5c:7c:76:c6:22:7d:8c:6e:92:54:96:a7:ca:7d:
ef:ee:2f:ef:c1:85:92:9f:dd:db:b9:38:9b:4e:32:63:97:f8:
94:c7:bf:31:ec:3c:46:a7:6c:b2:ff:37:1b:c5:8b:08:f1:42:
d7:b5:1d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org