Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LbGiaRBJAiTOj1MzaMJctM2LzA.roa
File: 4LbGiaRBJAiTOj1MzaMJctM2LzA.roa (raw, json)
Hash identifier: YidApcmJ+nakfObxvBIb2tLFIP6/Qth2TEf66fo32zc=
Subject key identifier: E0:B6:C6:89:A4:41:24:08:93:3A:3D:4C:CD:A3:09:72:D3:36:2F:30
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A2B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LbGiaRBJAiTOj1MzaMJctM2LzA.roa
Signing time: Tue 24 Nov 2020 09:15:06 +0000
ROA not before: Tue 24 Nov 2020 09:15:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2603 (0xa2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 24 09:15:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E0B6C689A4412408933A3D4CCDA30972D3362F30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b3:55:e9:36:4b:c6:7b:4e:8f:8c:0e:9d:92:
b9:fa:00:5b:80:4b:ee:8f:9f:dc:02:d8:b3:e6:38:
a9:79:0e:06:9b:c8:ea:0a:32:08:78:93:8f:b0:fe:
a5:b1:f0:f7:c7:b4:c5:e0:7d:66:eb:06:f6:dc:91:
50:b7:3e:1e:4a:7c:08:86:29:d7:54:62:39:fa:9b:
32:a5:9c:bc:d4:c8:84:24:47:af:28:0c:fd:07:ba:
46:70:85:fa:71:df:53:e5:93:71:1c:fd:df:57:d4:
cf:4c:01:79:a3:74:6d:20:ad:b4:55:e8:6e:53:53:
cf:5a:3d:c3:2a:12:7a:07:0a:17:52:64:10:6c:e2:
af:98:f2:45:43:79:39:ea:7e:1a:25:fc:90:24:eb:
ad:2e:4a:04:87:5d:43:76:73:47:a3:0c:1f:59:4d:
b6:f1:54:64:03:a8:e1:da:c0:2d:8a:bd:78:59:97:
3d:a4:75:f8:ab:db:b6:6b:4f:a7:18:f7:56:c2:65:
fe:45:48:aa:9a:67:26:f1:33:25:63:07:4a:24:a7:
3d:29:bf:62:07:16:77:ec:b4:c9:ad:c5:7a:cc:f9:
cb:52:90:52:5e:7f:d0:8d:cf:81:7c:a4:48:22:ca:
2f:f9:d9:c1:4a:c4:51:86:35:53:d1:b2:a7:23:87:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B6:C6:89:A4:41:24:08:93:3A:3D:4C:CD:A3:09:72:D3:36:2F:30
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LbGiaRBJAiTOj1MzaMJctM2LzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:b2:20:b7:17:e9:0b:a0:68:07:40:9a:4f:c0:12:eb:4f:d0:
e7:78:93:9a:fa:54:a2:9b:09:e5:e4:62:0a:81:66:a3:4a:e3:
30:51:71:f9:ad:db:8a:f3:bc:84:c4:1e:5d:89:d3:59:3b:aa:
63:fe:1d:7f:14:b0:5e:d7:c8:d3:f9:1f:a6:72:33:a2:05:ae:
ce:bf:49:5c:22:f6:27:20:7e:0e:3e:3c:b3:67:ad:ac:81:95:
e5:23:a3:dd:b6:f4:d4:e5:f4:67:fe:cf:49:35:4f:26:a6:22:
0d:58:b3:59:93:24:2c:d1:0f:69:d8:36:c0:8a:4e:ec:39:27:
6b:f5:42:93:74:4c:21:61:66:e6:fe:9d:4e:7b:33:36:4d:5a:
67:5b:6f:a6:fe:d4:f0:40:8d:7b:1a:e0:ce:e2:08:dc:f5:bd:
2c:a3:15:2c:8d:12:71:96:0b:a8:b4:0b:35:ba:71:98:10:43:
d0:78:5f:93:4e:a4:7d:c7:17:83:79:03:0d:f2:37:75:bd:b7:
1d:5a:9f:9b:dd:c3:ee:91:45:52:21:6a:9b:5a:36:9b:23:3f:
3c:1e:05:7e:e0:6b:34:16:ec:74:bb:2d:64:af:a5:b8:e3:ec:
e5:0e:73:b5:0e:98:db:b6:16:b1:b1:01:c8:ca:06:c2:dd:12:
84:eb:95:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org