Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6KSBft2pqGSY0QslR8qyZ207YPg.roa
File: 6KSBft2pqGSY0QslR8qyZ207YPg.roa (raw, json)
Hash identifier: yMBxZEjc5VnXs+qIa+4lZL0P1hKo1EdXVDNYpvK1LLg=
Subject key identifier: E8:A4:81:7E:DD:A9:A8:64:98:D1:0B:25:47:CA:B2:67:6D:3B:60:F8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BCE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6KSBft2pqGSY0QslR8qyZ207YPg.roa
Signing time: Sun 07 Feb 2021 06:35:54 +0000
ROA not before: Sun 07 Feb 2021 06:35:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3022 (0xbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:35:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E8A4817EDDA9A86498D10B2547CAB2676D3B60F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c7:34:b7:9d:27:c4:48:b5:39:5a:d9:84:8c:
b0:3c:cf:ca:9d:c4:86:49:d0:2e:89:4a:a0:4b:5d:
f7:c2:7c:88:7f:e9:db:d5:72:c5:06:9e:bd:53:4a:
59:d2:07:cc:cd:de:f7:02:21:a0:57:85:6e:83:bd:
aa:15:0a:b7:3a:2a:50:cc:8f:05:f2:a5:81:ed:66:
bc:de:fd:d8:6e:5f:a2:78:b1:f4:2c:d5:6f:bc:c9:
46:fc:fb:4b:38:a3:1f:0d:41:d4:5a:26:37:c0:92:
1a:bd:36:da:cb:5c:cf:03:ce:f2:0c:bd:b8:8b:47:
37:c7:2f:f9:1a:80:6f:05:ab:4a:78:9f:7d:d9:c5:
eb:4c:ce:50:ef:47:68:96:b3:99:ed:9b:69:a6:48:
28:5f:ab:fc:d5:31:b0:fc:ef:25:48:6d:88:90:34:
4e:6d:d6:c0:3e:2c:b2:ce:c9:f8:53:fb:11:9f:69:
ef:27:17:3f:c6:20:5e:f3:6b:f7:39:5b:00:ce:88:
e5:a5:0c:e1:30:b8:02:19:3a:c6:83:43:8f:8d:0a:
f9:86:af:67:42:94:8f:89:78:e5:ba:35:5a:3e:84:
ce:ad:c1:30:03:08:7e:89:44:86:f9:f4:45:0d:94:
bb:47:bd:60:67:16:e7:de:27:ef:69:c0:f9:04:89:
09:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A4:81:7E:DD:A9:A8:64:98:D1:0B:25:47:CA:B2:67:6D:3B:60:F8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6KSBft2pqGSY0QslR8qyZ207YPg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8e:19:e9:c8:9b:7b:02:e1:10:a2:3b:3b:10:50:99:76:01:6b:
32:7c:ed:15:0f:1a:83:8f:32:85:bf:30:45:7b:a8:60:bb:9b:
42:79:d5:4a:fa:6c:3c:e7:f8:fb:0f:b3:1f:7e:59:cd:57:73:
1c:82:9e:9c:e9:e2:e2:15:0f:d5:06:d8:60:5e:98:a0:cb:b1:
a7:1c:dd:31:a1:5d:50:5f:a0:73:22:d5:6c:d9:c8:74:4a:c1:
36:46:e0:f8:f6:b3:93:e8:f9:40:6d:50:c2:e5:21:58:8e:82:
4f:6f:0e:3d:8f:05:c7:3a:02:6b:c8:2f:2c:8b:d6:1c:40:87:
b5:3f:8a:6b:ac:dc:b8:98:40:d8:8b:19:ca:85:e5:b7:20:3b:
15:0e:bd:ac:0c:e9:49:ea:0c:b7:bb:98:fe:97:2e:05:2c:ec:
61:6f:6a:3a:b8:1a:e2:96:3b:20:0e:de:bd:7d:57:4e:7e:14:
30:60:e4:23:d5:75:a1:8c:ff:7e:a9:2e:26:11:d5:77:9d:32:
77:f8:8c:a1:60:08:1a:14:0a:bc:0a:ce:0a:8a:76:1f:9e:7e:
40:ec:2b:2b:58:23:4d:e2:dc:23:d0:2f:10:ee:83:5c:0e:90:
c8:08:58:44:72:a8:05:52:7d:f3:e3:d2:92:c4:42:4f:90:c8:
9c:cc:33:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org