Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3Zvy9Cr1xes2miNXVUuXm8GMK7U.roa
File: 3Zvy9Cr1xes2miNXVUuXm8GMK7U.roa (raw, json)
Hash identifier: 09lIpUoNJz+s+dSbtijwvTGCXv/raafUbuTnYtI331o=
Subject key identifier: DD:9B:F2:F4:2A:F5:C5:EB:36:9A:23:57:55:4B:97:9B:C1:8C:2B:B5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E2F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3Zvy9Cr1xes2miNXVUuXm8GMK7U.roa
Signing time: Wed 29 Sep 2021 02:43:16 +0000
ROA not before: Wed 29 Sep 2021 02:43:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 211.78.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3631 (0xe2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DD9BF2F42AF5C5EB369A2357554B979BC18C2BB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:ae:fd:5d:08:34:6f:6b:93:cf:a7:84:8d:
21:d5:42:0f:75:f4:4f:c8:a1:8e:c5:f2:e1:47:76:
da:c5:8a:31:28:0d:72:41:a3:9f:3b:14:b7:a9:6a:
74:47:a1:e7:ea:73:83:a0:d1:46:be:d3:75:16:17:
9f:fb:82:92:fa:cf:a0:21:83:32:11:eb:d2:a7:bd:
77:07:2a:10:c7:71:0b:4f:4d:87:78:79:ac:11:ad:
7e:f4:91:b5:7f:61:26:96:31:b5:e8:c5:49:c9:cb:
fd:a3:ea:5b:2e:f2:2b:5b:11:44:db:a0:c1:97:63:
e8:ed:c7:ef:68:64:ae:d4:2f:2b:65:e0:b8:1a:dc:
51:1a:c7:bc:68:18:ea:a4:40:79:c1:d1:43:2a:f1:
07:0e:52:6c:06:fd:bb:05:76:b4:7a:59:b8:b9:18:
76:45:48:25:78:a1:82:4b:d8:f8:29:7b:0f:1d:e6:
16:64:91:31:04:c6:7e:aa:56:e3:6f:d3:fd:aa:62:
26:bc:b6:5f:27:5f:ff:4a:1e:b8:29:f4:79:59:bf:
30:4c:53:62:48:30:b8:b6:0f:04:ac:f7:83:c2:48:
59:f6:45:70:15:4e:48:ab:fe:4a:02:58:ba:47:1d:
ee:59:46:b8:a2:7a:94:a6:e8:98:4a:76:5f:eb:cf:
d4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9B:F2:F4:2A:F5:C5:EB:36:9A:23:57:55:4B:97:9B:C1:8C:2B:B5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3Zvy9Cr1xes2miNXVUuXm8GMK7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:8c:ad:cd:06:a2:33:7a:53:a8:56:48:b4:f5:55:df:18:b7:
d3:2f:70:06:39:98:51:f1:c8:18:2e:c4:47:a2:cb:bc:9c:28:
33:fe:45:2d:f1:18:c4:31:27:03:08:ce:17:82:c2:d9:bf:3a:
82:77:c1:9a:1d:d2:ba:f1:08:18:a6:6f:92:92:92:ce:53:b4:
e5:a4:e7:6a:97:c7:77:47:49:4a:8a:a6:01:17:32:27:7a:3d:
50:db:eb:f0:a6:c5:ad:0d:e8:d0:06:ab:3a:d0:67:70:33:53:
e0:82:1f:7a:f8:99:6a:b2:85:c2:3d:68:01:b3:53:04:6c:0d:
10:2e:2a:4d:c4:04:a4:a7:ec:5a:54:5f:42:76:8a:9d:58:1c:
03:b2:9f:ad:58:f7:a3:02:41:8a:dd:d2:f6:08:58:a8:d2:2b:
5f:f6:5f:d0:19:b1:39:d3:32:0d:3a:a9:e2:f2:c3:8e:3a:4e:
4f:c4:d4:1f:c5:f8:46:8a:14:8a:49:f3:87:3e:8b:d3:04:85:
c5:d6:c1:5d:9b:22:5d:da:cf:d4:08:c9:30:b9:1c:13:1e:76:
13:ed:2d:9f:45:01:1a:83:d2:ef:54:17:12:0e:84:d4:61:80:
6a:e2:1a:ec:54:a1:90:38:3f:e2:40:80:43:ea:a1:60:da:c1:
9c:e4:5a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org