Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/43GPyOIjTCHvStUZpX4P8DKlQRo.roa
File: 43GPyOIjTCHvStUZpX4P8DKlQRo.roa (raw, json)
Hash identifier: EyvI3xqBDxICGA3TgiwmHhjM9C9WJAJulo6HJmkhKIw=
Subject key identifier: E3:71:8F:C8:E2:23:4C:21:EF:4A:D5:19:A5:7E:0F:F0:32:A5:41:1A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C31
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/43GPyOIjTCHvStUZpX4P8DKlQRo.roa
Signing time: Sun 07 Feb 2021 07:08:08 +0000
ROA not before: Sun 07 Feb 2021 07:08:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 175.183.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3121 (0xc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:08:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E3718FC8E2234C21EF4AD519A57E0FF032A5411A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:22:fd:ed:0f:87:81:70:ea:71:3d:b1:49:
36:57:b8:94:fc:26:b0:92:87:42:db:11:12:4f:08:
a5:05:82:3b:5d:38:89:9f:46:e6:7e:c1:3b:1b:ab:
d8:47:50:2d:2f:c9:75:ba:b1:a2:03:33:f8:a9:9c:
f8:b0:d1:1c:49:bb:43:33:53:b8:bd:e1:c1:64:4c:
f4:2a:04:5c:bc:47:3c:ec:3d:30:bf:fb:63:7a:ce:
37:ef:fd:34:45:42:5e:bc:78:39:e6:f9:eb:ee:1e:
9f:30:1c:60:1f:a3:ca:e4:44:b6:be:aa:5b:6e:c3:
a8:a1:22:8f:4a:98:3c:16:46:e5:e0:e9:c6:66:c0:
84:58:45:7e:2b:35:6b:8f:94:75:6f:ee:56:ae:d2:
99:aa:ea:98:ad:b6:2c:06:6d:d5:7e:b9:5d:ce:e3:
92:e8:19:da:9e:e6:f3:0f:31:56:e1:69:7f:80:48:
b2:e9:6c:3f:f2:a1:bd:58:ae:ed:0c:f1:70:1a:0b:
94:03:e8:47:37:37:59:4a:86:83:12:42:c2:67:00:
a9:19:10:2b:c6:d5:ca:36:fa:34:4b:89:bb:be:6c:
a0:23:60:4a:16:2c:30:99:a7:f7:78:65:34:af:82:
46:80:ac:02:34:95:09:0a:74:9a:8c:f1:bd:2e:03:
4a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:71:8F:C8:E2:23:4C:21:EF:4A:D5:19:A5:7E:0F:F0:32:A5:41:1A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/43GPyOIjTCHvStUZpX4P8DKlQRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6b:94:a2:3d:1d:29:c4:66:fb:12:99:09:98:a8:c0:c6:78:f7:
a1:81:6d:7f:e3:e1:a3:9c:84:37:7a:58:dd:3c:bd:23:cb:09:
dd:56:8d:ce:be:7a:94:86:ed:62:c5:6d:b8:d5:36:52:d6:23:
9b:28:23:55:42:87:04:68:17:d9:41:63:cd:e9:96:cb:5c:8a:
cd:49:e1:ec:a9:bb:ec:27:8d:b8:ad:c6:8b:70:73:4d:55:20:
5f:99:ac:af:bb:33:04:4f:a6:e9:0b:04:5f:c1:c3:75:e6:6c:
1d:83:8b:72:cb:c5:bf:b6:c8:32:9f:06:d7:87:fb:73:da:67:
a9:e3:7c:0a:ff:78:39:70:8e:22:b2:fd:01:44:f9:80:76:e6:
43:e7:65:1c:73:56:bf:7e:f3:b4:1a:15:02:27:f3:f0:ed:ef:
77:e9:a5:b4:4c:95:d1:f6:7d:32:de:9b:d7:24:dc:9e:ee:0f:
8f:c9:ea:21:e0:77:0e:a2:41:b5:fa:4a:ea:05:e2:1e:12:fd:
65:57:27:4e:11:ff:04:f2:b9:ca:e3:ca:be:5a:95:b4:82:fd:
0b:90:ae:35:d6:4d:b0:cf:fa:94:02:fa:9a:d0:f7:aa:00:15:
7a:aa:9a:38:5a:3f:8a:bd:31:cd:46:74:85:f1:c6:e0:59:9b:
54:e6:73:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org