Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5u0QaU9B0tvi7hqfyFCwvuojEsA.roa
File: 5u0QaU9B0tvi7hqfyFCwvuojEsA.roa (raw, json)
Hash identifier: DA3rsLQgm4Hj+j2x+HjbysErNxTWPrV/5AdY9J9tetg=
Subject key identifier: E6:ED:10:69:4F:41:D2:DB:E2:EE:1A:9F:C8:50:B0:BE:EA:23:12:C0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0900
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5u0QaU9B0tvi7hqfyFCwvuojEsA.roa
Signing time: Tue 29 Sep 2020 09:52:41 +0000
ROA not before: Tue 29 Sep 2020 09:52:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 123.205.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6ED10694F41D2DBE2EE1A9FC850B0BEEA2312C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1d:3f:97:38:88:81:f3:30:99:e5:34:cd:83:
7c:ba:b3:f0:a8:8d:fc:0a:cc:f5:60:a7:04:c7:e8:
17:ce:f4:6b:36:89:0c:44:a4:de:c7:e3:75:35:a9:
c2:bc:87:22:84:fd:5a:ce:8f:c2:60:63:ab:62:53:
1b:8c:41:33:4d:4c:17:07:de:d3:91:6d:09:3c:f8:
97:8c:bb:56:e4:53:7f:c9:a0:81:8e:2c:8a:eb:a9:
c9:cd:0b:2b:0d:d1:32:5d:81:ee:2f:2d:78:9d:bc:
3d:46:a3:f9:60:42:a9:8e:29:71:90:59:fe:5d:6f:
6e:57:33:15:78:eb:73:92:6e:27:31:59:f2:ed:55:
18:42:18:77:4e:59:2b:4f:59:bf:3d:11:ae:ef:0b:
33:53:22:84:71:0a:f5:e4:24:4f:d9:b5:0f:6f:4c:
6b:86:fc:9f:69:66:8f:d3:1a:8f:43:16:57:1d:f0:
ad:9f:a1:09:a9:92:b3:13:cc:ca:b7:c9:da:fe:3e:
1d:35:32:88:a2:c1:b3:79:12:ca:2e:aa:a0:09:c2:
e5:44:85:a2:73:dc:62:9b:22:d7:d7:70:03:5b:ba:
ee:92:42:57:f4:13:5b:c9:2b:01:d0:36:ce:2e:df:
a1:e8:df:66:1e:af:86:11:15:56:18:4b:cd:fb:55:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:ED:10:69:4F:41:D2:DB:E2:EE:1A:9F:C8:50:B0:BE:EA:23:12:C0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5u0QaU9B0tvi7hqfyFCwvuojEsA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/17
Signature Algorithm: sha256WithRSAEncryption
92:55:8f:4a:4e:f4:f0:3a:a6:d6:c6:b8:15:00:46:b3:d0:25:
a1:a7:cf:52:1c:1b:76:54:9a:49:09:32:b2:0a:55:59:5d:06:
c4:fc:6b:1a:25:52:6d:c7:09:05:cb:19:c2:a1:bb:07:89:a4:
2f:09:87:2d:65:96:4a:3f:ed:43:76:fd:1b:87:2c:e8:cd:90:
ea:b7:24:0d:0c:64:21:03:1d:d2:5f:06:83:66:ee:5b:b7:48:
37:fc:4e:5a:3d:e9:35:0b:e3:f4:4d:7a:0e:cc:42:83:80:b9:
7c:f8:c6:0d:8b:e1:d1:80:23:ab:89:a0:30:7f:a0:dc:5c:77:
e1:8e:4b:96:7b:e0:d0:8c:f4:5f:65:cc:3a:71:c0:20:ef:cf:
0b:3d:fd:61:e5:67:92:13:7f:54:eb:ba:9c:1e:6a:61:f6:28:
67:00:18:18:78:9a:1c:3c:c1:43:9a:a0:02:ac:70:c5:30:2c:
16:c4:bd:1b:67:08:19:71:9a:ce:fb:80:ad:ca:da:35:51:1b:
df:61:67:03:24:b9:26:3a:dd:b7:29:f8:06:c8:7a:a8:68:bf:
bc:39:bb:5a:2b:80:64:1b:29:b0:80:03:82:77:4e:7f:c1:bd:
07:19:ca:57:5a:a7:2c:90:1c:06:e7:ab:9a:3f:71:c1:33:cc:
95:29:7f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org