Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2x-TlHY13VoyUISIiuBZb6eaAes.roa
File: 2x-TlHY13VoyUISIiuBZb6eaAes.roa (raw, json)
Hash identifier: kd6uuD4WhkG2yOdnCYEO+yilEcHOo2V0eTqCkEVJ0hA=
Subject key identifier: DB:1F:93:94:76:35:DD:5A:32:50:84:88:8A:E0:59:6F:A7:9A:01:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0857
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2x-TlHY13VoyUISIiuBZb6eaAes.roa
Signing time: Tue 29 Sep 2020 09:51:56 +0000
ROA not before: Tue 29 Sep 2020 09:51:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 175.183.136.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2135 (0x857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DB1F93947635DD5A325084888AE0596FA79A01EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4c:74:ca:34:90:bd:d7:83:1a:9f:a3:4f:08:
24:a5:9c:d9:9a:ef:b1:c1:96:87:03:e4:04:be:4c:
24:52:27:15:15:c9:c6:44:be:06:55:87:d8:60:69:
1d:92:74:e2:28:31:99:fb:e6:bb:6a:74:b4:7a:34:
ab:2d:78:d0:49:74:af:44:82:0b:6b:53:c7:91:72:
0f:6d:60:df:af:f4:c3:ea:bb:59:13:4c:b6:f6:de:
52:2f:a5:7c:51:5b:d3:c8:b8:3e:59:a5:de:6d:6c:
2a:f5:9d:d3:3a:6f:e4:99:de:cc:2c:ca:1f:68:22:
c2:85:0e:69:ee:be:56:f0:53:d2:67:6e:69:bf:07:
f4:02:5f:8e:83:46:e3:62:56:32:fb:ab:79:05:1b:
d9:26:9b:32:e6:b2:e1:96:d8:04:06:9b:cd:98:44:
66:cb:0b:43:e4:b9:a2:54:8e:dc:b2:76:cc:95:34:
fa:8c:47:83:82:b4:e5:78:4a:ca:9a:70:99:1e:5f:
dd:89:49:13:8f:37:e6:e5:d9:aa:73:6b:cc:ce:d8:
9f:8a:4e:e7:60:21:14:de:88:6d:26:bb:ad:0c:bb:
c5:0d:d7:d6:5d:07:f1:02:78:66:72:07:13:e8:f4:
70:d4:38:6f:eb:f1:52:0d:1f:03:50:9a:e4:42:c2:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1F:93:94:76:35:DD:5A:32:50:84:88:8A:E0:59:6F:A7:9A:01:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2x-TlHY13VoyUISIiuBZb6eaAes.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.136.0/23
Signature Algorithm: sha256WithRSAEncryption
70:ae:b8:5a:84:23:23:82:2f:ae:71:76:bc:2b:69:05:01:33:
76:86:a2:ec:8f:d8:3f:41:f1:cf:a0:28:cf:cb:11:5a:18:72:
c7:13:5e:46:02:49:5b:bf:07:51:51:dc:e6:17:bb:53:c9:30:
e8:d7:32:4e:75:d1:3c:9d:6d:2c:a9:dd:a2:75:07:f1:43:99:
ed:f3:1c:73:47:8c:ac:7b:79:c3:2f:bc:49:5f:4f:fb:8e:d0:
47:90:52:b8:51:26:7f:8a:ab:93:65:d7:33:8a:ea:3d:89:b1:
a7:8f:14:c7:4c:d0:c7:67:ec:9e:de:52:3e:3c:90:c0:ad:18:
49:df:08:7c:82:f3:b0:5c:e1:90:bd:43:a2:19:43:99:78:d2:
7a:f5:64:73:70:43:91:3a:16:6d:fc:db:b6:87:09:08:eb:64:
08:c4:61:c9:35:2a:ef:e0:be:7f:36:9a:ce:50:ed:41:9c:0f:
66:1e:a0:00:a8:bd:44:26:2a:dd:62:a2:b7:3f:c6:4b:37:de:
65:af:f9:f2:a5:20:71:84:8b:aa:ff:f0:86:19:79:e4:8d:58:
e0:e1:94:a6:20:d3:08:61:8e:52:48:43:66:ff:6a:dd:ee:dc:
70:12:6d:d8:b0:39:07:b4:57:f2:28:b1:0b:01:c1:6d:7e:b6:
f1:b8:26:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org