Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3D92nqWZfVNL0nfvQRJwyRfLve8.roa
File: 3D92nqWZfVNL0nfvQRJwyRfLve8.roa (raw, json)
Hash identifier: 99yIA00ql70+nfTbuNdvdLAmtNYbutOBwozxti8ud5M=
Subject key identifier: DC:3F:76:9E:A5:99:7D:53:4B:D2:77:EF:41:12:70:C9:17:CB:BD:EF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E4A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3D92nqWZfVNL0nfvQRJwyRfLve8.roa
Signing time: Wed 29 Sep 2021 02:43:24 +0000
ROA not before: Wed 29 Sep 2021 02:43:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 210.244.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3658 (0xe4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC3F769EA5997D534BD277EF411270C917CBBDEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:4e:69:10:7b:1e:31:71:e4:89:77:4a:83:
60:92:5f:8f:3a:33:cf:02:ba:1b:9e:f0:69:38:96:
77:88:13:db:55:1c:08:bb:07:0b:a6:83:42:4e:47:
eb:c4:00:3c:65:92:29:af:17:2f:1e:4e:67:b0:c7:
20:6a:19:99:17:89:05:d2:da:44:77:14:1a:4d:10:
f4:8f:f1:2c:44:89:de:12:a8:19:f5:2d:72:ea:3e:
eb:6c:56:c4:e9:15:bc:4a:b1:ae:e7:96:0b:c3:d7:
f8:05:e8:9b:2b:62:54:8c:f1:a3:95:07:fe:69:eb:
29:90:56:c8:bd:70:31:2e:7a:95:81:be:72:1a:1f:
2d:ef:90:a6:63:79:3d:a8:8d:22:d8:c9:11:15:b1:
82:1a:e6:f6:8e:3c:4f:f8:9c:e8:58:fa:e0:48:4b:
14:4c:64:93:4a:c7:a2:ca:64:81:a2:98:d0:e5:c0:
1a:f7:ac:51:51:5a:35:15:51:e7:ec:01:2b:f1:c1:
2a:84:98:3f:19:40:15:37:56:a1:22:7b:c7:b3:d4:
3e:70:a1:bc:48:67:f0:dc:79:95:5d:8b:48:0e:50:
ec:c9:25:df:67:3f:f9:fd:de:4c:63:36:c8:f4:c9:
c8:bb:68:61:be:4a:9c:19:a0:f8:a8:5f:ad:70:38:
2a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:3F:76:9E:A5:99:7D:53:4B:D2:77:EF:41:12:70:C9:17:CB:BD:EF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3D92nqWZfVNL0nfvQRJwyRfLve8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.88.0/22
Signature Algorithm: sha256WithRSAEncryption
30:55:64:89:d7:8a:23:cd:00:4e:32:09:53:d0:b8:7f:58:99:
0b:82:52:1d:d7:15:e8:01:a1:db:29:c1:10:68:a6:ca:57:96:
d2:7b:e8:30:b3:38:e9:23:86:3c:2d:36:ef:a2:f3:37:bc:49:
04:f4:4a:18:27:02:21:8e:ce:ff:5f:db:ab:bf:35:51:0f:c3:
98:e5:0c:4d:41:f2:df:c6:e7:8f:ee:28:86:10:0f:a3:df:e3:
fd:cb:da:ca:c8:61:1b:a6:11:32:d3:ae:a7:51:96:ce:34:8c:
e8:d0:6e:3b:8f:0e:50:bf:a9:04:c8:1e:cd:27:5c:be:a0:6b:
cc:37:66:01:f9:58:03:43:b9:23:9e:f5:6b:d6:46:48:00:0e:
d1:e6:2f:53:3c:7c:9a:7f:fe:17:49:f2:f1:31:3d:df:7f:54:
e6:4c:a6:ae:88:40:90:0d:39:5c:07:d3:14:bd:7d:08:6c:c4:
60:de:8a:e4:1c:f7:15:0b:08:9b:d3:ec:b2:5f:a3:13:7f:85:
d9:67:ff:8d:9c:12:44:bd:f0:b0:6d:a0:7e:87:25:4c:0e:7b:
ca:ad:1d:d8:1b:59:f2:a5:c5:48:71:13:42:a6:19:81:c6:b0:
0c:1d:b2:6d:66:50:ba:f8:5a:b2:94:43:83:b3:04:04:78:2e:
4e:c1:69:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org