Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6ODFS2X0Yg2Dmpjzk91iwtHxzqg.roa
File: 6ODFS2X0Yg2Dmpjzk91iwtHxzqg.roa (raw, json)
Hash identifier: EoEJgvHhwM1sIoSzrQY6fPpqPnU3CdiQ1UeXiuTftVM=
Subject key identifier: E8:E0:C5:4B:65:F4:62:0D:83:9A:98:F3:93:DD:62:C2:D1:F1:CE:A8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E59
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6ODFS2X0Yg2Dmpjzk91iwtHxzqg.roa
Signing time: Wed 29 Sep 2021 02:43:29 +0000
ROA not before: Wed 29 Sep 2021 02:43:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 112.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3673 (0xe59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E8E0C54B65F4620D839A98F393DD62C2D1F1CEA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4e:96:04:dd:0a:a1:03:06:59:32:c8:f9:d9:
4c:1b:ea:45:02:8f:4c:a2:f5:e7:9f:44:96:ff:28:
26:75:0d:5b:0e:0a:6a:b4:e4:2e:ff:c1:80:e7:c0:
c5:fd:00:e3:f2:80:25:b0:14:6d:f1:cb:5e:05:29:
3b:5f:d6:da:a3:e0:9b:2c:fa:23:d3:69:5b:e1:c7:
66:66:54:30:89:e0:f5:76:19:17:13:40:38:66:49:
95:d7:4b:62:64:f6:fe:4f:c5:54:e6:2c:65:7a:f3:
57:32:c9:17:01:7c:e9:b0:60:48:73:09:b9:16:59:
b5:46:ad:79:7f:01:e6:ad:9a:1f:80:50:9d:fa:c0:
63:27:95:a8:6f:8f:9e:45:4a:51:f7:83:d6:72:de:
2d:11:17:28:d2:c3:0b:32:4c:b2:bf:42:cc:1f:62:
11:11:92:e9:a7:5f:50:42:de:14:34:fa:44:6f:0f:
d2:d5:1a:42:ab:01:16:33:7e:3a:98:d1:44:f0:fc:
df:62:21:bc:15:15:90:86:44:f2:5d:fa:c5:0a:e2:
86:ba:49:6d:73:1a:4a:47:14:6d:e5:63:ce:f8:f3:
08:0e:04:6c:59:de:c3:40:d1:28:7d:53:bb:46:d9:
e0:dc:1f:82:c8:96:aa:02:23:d5:a2:54:25:f7:f6:
67:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E0:C5:4B:65:F4:62:0D:83:9A:98:F3:93:DD:62:C2:D1:F1:CE:A8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6ODFS2X0Yg2Dmpjzk91iwtHxzqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
62:93:23:e3:d6:6f:05:e4:39:d2:55:3f:28:07:38:7c:d4:b7:
10:39:af:92:ef:8f:ae:12:79:c1:80:69:81:b0:cd:cc:26:54:
15:77:bb:53:39:a8:03:34:22:1d:93:5a:61:28:72:07:0e:7c:
54:08:7a:d1:21:eb:c1:bd:3f:01:d5:27:8f:70:6a:3b:4e:a1:
35:86:26:ab:69:e4:13:5d:01:47:77:34:b0:f4:e0:9f:ac:a8:
ea:68:6c:f5:82:73:3b:8d:86:9d:14:06:1a:e9:ae:7b:9b:93:
e5:61:98:4f:0c:3a:f7:e9:b6:6e:97:1b:e4:1d:4e:f9:46:8e:
22:52:da:c6:fc:54:9a:0b:5b:ca:7b:1a:9e:d8:ad:04:36:70:
cd:ce:cd:5f:95:42:c3:ba:0a:55:2f:6d:d2:71:c0:f0:f6:0f:
c7:91:fd:ed:7f:5a:a4:91:97:ff:f5:3d:ae:8b:10:65:30:91:
24:fe:08:ed:bc:f9:ad:98:53:75:75:05:f2:96:e1:ac:ba:76:
d4:eb:fb:81:27:a8:81:e6:cb:8e:5b:5f:4b:0c:06:bc:ad:d6:
8a:4c:d4:df:1d:50:fe:3f:10:18:c3:31:f1:63:5b:ac:14:39:
a6:a7:e0:29:a0:6e:4b:98:91:6f:27:bd:7a:17:7a:b7:61:86:
b5:88:31:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org