Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7hSccNFVKKI1bafT_QrZGpF2cG0.roa
File: 7hSccNFVKKI1bafT_QrZGpF2cG0.roa (raw, json)
Hash identifier: aa/oPcPD3b65otILjcigRY7PUJ8lx9LsPJI8jWSf4u0=
Subject key identifier: EE:14:9C:70:D1:55:28:A2:35:6D:A7:D3:FD:0A:D9:1A:91:76:70:6D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08BC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7hSccNFVKKI1bafT_QrZGpF2cG0.roa
Signing time: Tue 29 Sep 2020 09:52:23 +0000
ROA not before: Tue 29 Sep 2020 09:52:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.68.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE149C70D15528A2356DA7D3FD0AD91A9176706D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:1c:90:30:81:00:72:c7:e8:48:93:c6:74:
83:8b:d0:84:78:49:be:07:a9:71:0f:13:de:0c:2a:
fd:f9:9b:2e:2c:77:ab:92:5e:9e:c0:b0:ea:e7:d5:
6c:29:5e:1d:d4:60:45:72:1d:ca:32:af:23:52:d5:
9e:80:16:62:57:13:56:6a:74:5d:b4:54:4c:86:b5:
dd:12:14:65:2b:44:9a:a5:1a:b3:0b:24:5d:09:1e:
69:cf:96:e4:8b:50:62:cf:0c:be:1c:6b:2a:1c:10:
bc:7b:75:3a:d1:80:85:41:5f:f9:1d:0c:cf:e8:ce:
96:6e:62:36:d7:64:29:e2:eb:57:d3:fc:7e:8f:a3:
69:89:aa:fc:10:8c:29:57:8f:33:34:d9:cf:0c:a0:
33:49:51:a4:9a:c6:cd:ab:c9:be:90:24:47:db:e0:
ce:94:6d:62:be:9e:36:14:a3:5a:68:0e:7c:3d:98:
51:d1:dc:3c:fe:d0:2f:df:cd:25:2c:5c:80:dc:63:
28:07:dc:56:d9:84:a2:f3:b8:bd:6d:27:d1:02:32:
40:68:65:fc:c4:fa:ff:de:0f:a4:01:9d:f9:ab:a4:
23:24:6a:5a:e4:ea:2f:55:9e:12:d4:d8:de:87:e6:
27:25:5c:c0:24:89:61:47:b3:5b:98:2d:a8:7d:8a:
5e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:14:9C:70:D1:55:28:A2:35:6D:A7:D3:FD:0A:D9:1A:91:76:70:6D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7hSccNFVKKI1bafT_QrZGpF2cG0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:d9:d0:54:a7:17:fe:94:0f:70:2f:72:25:fe:2d:ca:dd:00:
af:c5:12:d9:73:c4:5e:b5:d8:fa:4e:a4:3d:54:f8:4c:82:bb:
8b:c4:eb:96:f1:6d:6f:43:99:3b:69:64:b3:76:c3:3d:5c:8d:
21:9e:9c:e1:e3:d0:46:87:f0:4c:1c:b0:33:13:5d:35:f7:ec:
fe:9d:45:47:c3:1e:ea:5c:3b:21:ee:96:0b:43:d0:83:1f:38:
57:7d:92:ab:11:5f:df:22:2f:85:e9:d8:01:49:94:22:02:b5:
43:40:0b:0e:d3:82:11:96:44:84:bc:be:36:13:4b:91:e5:2d:
76:36:87:80:37:e6:d7:59:d2:76:00:50:4f:fb:b5:4e:03:25:
81:2f:db:69:cc:a2:96:ea:c6:9f:3a:b5:b3:41:c6:03:47:10:
13:9c:9c:64:f6:54:a1:4e:57:15:f7:d2:9b:72:b0:4c:5a:e0:
6c:84:56:0f:38:4b:6d:17:40:55:91:d1:09:fe:c5:52:1a:df:
c7:52:a1:93:83:a9:34:95:ce:c1:98:d8:d1:85:ef:b9:6d:37:
11:bc:f3:a8:9a:63:15:19:2e:6b:b7:b9:48:64:f4:dc:85:c9:
c3:ea:3b:b6:59:e5:a2:f4:34:48:5b:10:db:8b:b4:f5:1f:44:
f4:23:49:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org