Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ezSDMhjeZ2H6sj0Yv3RFPuCPFU.roa
File: 7ezSDMhjeZ2H6sj0Yv3RFPuCPFU.roa (raw, json)
Hash identifier: AiSnlbXqySNKE2J9zE25UJiGvxSVcRiR3BNtZiYIcHA=
Subject key identifier: ED:EC:D2:0C:C8:63:79:9D:87:EA:C8:F4:62:FD:D1:14:FB:82:3C:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EB5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ezSDMhjeZ2H6sj0Yv3RFPuCPFU.roa
Signing time: Wed 29 Sep 2021 02:43:53 +0000
ROA not before: Wed 29 Sep 2021 02:43:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.205.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3765 (0xeb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EDECD20CC863799D87EAC8F462FDD114FB823C55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:22:3d:57:04:1a:4b:43:8e:22:36:18:0b:
29:7c:51:a4:a2:f9:ff:75:18:93:c1:19:fb:30:56:
4c:f5:7b:98:12:53:f9:26:1b:d0:de:4e:ad:c5:0f:
96:9d:2c:4c:f5:3c:35:0e:c9:f7:3d:b2:ce:2c:8f:
2e:c7:39:ae:d9:e1:66:00:55:c5:2c:d3:3d:3e:45:
5d:af:47:5a:22:9f:8e:bf:87:28:60:ee:8a:2c:85:
74:db:64:99:c2:86:91:e4:f3:06:f8:92:e3:5f:ec:
bf:d0:04:00:ff:99:c8:2a:1d:9f:6a:01:75:bb:aa:
b0:8d:c8:d3:db:4b:ec:1a:5b:d4:9f:aa:e8:3e:48:
5a:f9:a0:1d:ec:10:37:bb:09:3b:e5:c6:4e:13:c0:
19:6c:7b:0c:08:17:4f:e4:fb:ad:fc:1d:1d:96:8a:
a9:77:50:2f:5b:5d:ce:9c:4d:57:a8:18:35:e5:86:
13:54:f1:43:99:d5:07:2e:fe:ce:b6:e3:04:eb:80:
49:52:94:e4:8c:17:cb:c8:c7:a7:11:41:fa:5e:f8:
c1:bd:59:60:dd:9c:03:63:43:f3:bf:a3:5c:8d:4b:
23:56:de:b1:3b:ae:c0:51:50:af:94:89:90:8f:0f:
dd:31:f4:81:65:ac:85:6e:e2:e1:bf:7a:73:cf:d0:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EC:D2:0C:C8:63:79:9D:87:EA:C8:F4:62:FD:D1:14:FB:82:3C:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ezSDMhjeZ2H6sj0Yv3RFPuCPFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:85:69:f5:b8:f8:1d:b8:b0:9f:6c:8a:0c:47:85:9d:4d:c5:
5c:dd:e6:f3:20:f1:52:a0:92:6e:1d:fd:d6:38:5e:9c:6d:d9:
e6:f2:2e:3a:13:ba:c4:10:86:1b:1d:e5:fc:52:6e:fb:63:51:
7f:ce:7e:17:ab:9e:e8:6b:db:69:25:a3:25:f4:2c:4c:2b:cb:
29:86:a2:43:12:8e:5e:7e:1b:8b:8b:67:f8:cd:8c:8b:88:04:
22:82:42:2d:ed:3b:1e:1e:13:ac:c7:84:90:1a:19:ef:b4:8e:
c8:3b:0a:bb:9f:5f:04:04:b9:ca:3c:4c:96:33:fb:b9:7a:58:
78:5a:0b:0a:5b:0c:7a:8f:25:01:0c:41:8f:aa:be:21:24:a0:
29:0d:c1:ab:b1:c3:59:b6:49:e8:3a:05:38:3b:03:d6:32:61:
eb:76:70:9e:c8:02:80:a0:96:21:c0:96:ed:55:d8:62:6b:bf:
b2:61:5b:d5:51:ac:30:97:b1:28:54:45:1f:ea:1f:49:d6:1e:
57:75:da:b5:e4:8c:24:99:99:7f:52:40:14:9b:2d:10:72:80:
ba:43:c6:c2:d1:39:a1:38:2d:5b:ca:c0:32:5e:2b:c9:c1:df:
63:f1:a9:3e:c8:77:c3:11:fc:9d:5b:73:6b:5e:b0:c8:e4:96:
d5:07:45:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org