Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2wjX5dPPi5FQPCynl01RxfOnU1w.roa
File: 2wjX5dPPi5FQPCynl01RxfOnU1w.roa (raw, json)
Hash identifier: xGutbvTTOd9RNnPADH3VAKT2gQdMve82wPiX/hj2iCw=
Subject key identifier: DB:08:D7:E5:D3:CF:8B:91:50:3C:2C:A7:97:4D:51:C5:F3:A7:53:5C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E99
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2wjX5dPPi5FQPCynl01RxfOnU1w.roa
Signing time: Wed 29 Sep 2021 02:43:47 +0000
ROA not before: Wed 29 Sep 2021 02:43:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 113.196.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3737 (0xe99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB08D7E5D3CF8B91503C2CA7974D51C5F3A7535C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:3d:23:6c:d4:82:c4:3c:f8:a6:c9:22:17:
82:e2:16:4d:6c:6f:9e:a6:f3:41:00:e5:cc:e1:f3:
d0:2a:13:29:ca:3e:70:24:03:c4:10:e0:96:cb:65:
bd:0d:a4:76:ce:dd:80:ba:85:cd:fb:8b:85:dd:e4:
bd:38:7f:d6:21:1e:db:ca:65:84:53:30:7b:db:00:
50:b9:b5:5e:8d:bf:88:03:30:40:27:af:8b:45:e9:
99:fb:cd:6a:fd:bf:ba:d4:7c:96:8c:07:1b:f7:a8:
e2:0a:54:63:3a:97:73:ac:36:a4:60:77:b2:55:10:
88:c2:ba:67:77:ed:d4:8d:1a:6c:df:07:00:63:27:
86:22:52:30:95:59:68:49:45:2d:a1:29:de:bd:81:
30:49:de:4a:d6:30:d2:2e:15:46:a4:8d:2e:13:7b:
72:1d:d9:03:93:b6:4b:7f:ef:1e:3d:b2:68:39:65:
ad:3b:ec:d9:ba:c8:58:49:63:5d:0c:ae:69:35:27:
8d:d8:f3:2a:bb:98:73:91:78:19:ca:1a:a2:11:36:
78:04:87:8e:e0:3e:c0:b3:e5:57:3b:2a:38:f6:0a:
0f:f1:d0:40:62:84:2f:8a:a5:8a:d2:89:8b:83:6c:
51:0c:5c:0b:c2:a8:db:54:0e:df:cd:1b:fb:c9:2d:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:08:D7:E5:D3:CF:8B:91:50:3C:2C:A7:97:4D:51:C5:F3:A7:53:5C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2wjX5dPPi5FQPCynl01RxfOnU1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.160.0/19
Signature Algorithm: sha256WithRSAEncryption
cc:03:15:6c:95:02:f8:2e:84:ee:9d:09:41:ea:0b:69:67:39:
f6:d0:a7:0c:d4:3d:79:f8:3a:1c:ae:83:d2:58:11:44:99:67:
d7:26:76:98:28:c4:3d:b3:b9:e9:c1:c6:46:0f:dc:01:18:12:
eb:32:45:b6:54:3b:18:d7:23:49:09:d1:6c:ac:39:eb:49:c7:
b1:47:20:99:14:d8:d8:c9:44:aa:b8:d5:24:e9:5d:87:bb:82:
6c:a1:9d:c5:17:15:d0:3f:1f:bd:6d:fe:f6:74:8c:eb:10:d4:
7e:f1:e4:ef:0c:5a:1a:01:f8:d0:58:45:68:03:e7:bb:3b:73:
18:a4:b1:28:d7:6f:88:ce:1d:28:4a:b1:b1:ba:b5:7e:97:0d:
15:08:1e:09:b9:06:0a:ac:32:12:68:2e:65:3d:57:2d:51:58:
36:f7:11:51:3e:76:fb:bc:4c:fa:69:08:1f:26:1d:1a:99:56:
91:52:a8:17:7d:8f:0c:87:31:92:e6:ee:90:f2:d7:3a:56:69:
79:02:1c:04:ed:f4:39:f2:35:7d:50:d8:e0:29:38:83:cd:7a:
61:b8:d3:df:a1:bd:9d:f2:bf:ce:7f:09:a5:31:09:3c:96:b7:
2c:dd:70:69:2e:03:76:2f:d5:43:53:9a:60:74:c3:2b:02:90:
11:e4:bc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org