Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8GtDB6sLE0tSxoq0BtQTrjiZu8s.roa
File: 8GtDB6sLE0tSxoq0BtQTrjiZu8s.roa (raw, json)
Hash identifier: rY1jaTQPaFZPFoFyy//0qwyhpUVm0jpmM36wTz8SMeY=
Subject key identifier: F0:6B:43:07:AB:0B:13:4B:52:C6:8A:B4:06:D4:13:AE:38:99:BB:CB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E85
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8GtDB6sLE0tSxoq0BtQTrjiZu8s.roa
Signing time: Wed 29 Sep 2021 02:43:42 +0000
ROA not before: Wed 29 Sep 2021 02:43:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 123.205.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3717 (0xe85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F06B4307AB0B134B52C68AB406D413AE3899BBCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:06:58:d7:be:ec:2e:86:b9:86:8c:35:a1:04:
2a:39:e9:7e:74:a5:c5:4d:03:fd:9e:bc:01:7a:25:
2d:12:e9:93:f5:ce:42:0d:6f:a7:83:fb:6e:fb:a2:
ff:2c:99:f2:ef:2e:be:08:3e:0f:80:68:fd:8a:c1:
ed:2a:ac:f2:d4:66:a8:19:8e:a2:c5:63:44:c5:3d:
a0:c2:50:b2:96:2e:10:dd:37:f4:64:8d:24:81:4b:
ad:51:ea:94:e5:b1:9c:a7:08:a7:ea:5b:b2:01:33:
9f:9a:a8:d7:34:92:ce:5d:27:49:7d:92:18:d7:8f:
05:57:d9:c2:44:b5:5f:49:03:c3:67:49:f2:76:f0:
2a:bb:90:f6:bd:92:c1:6b:db:96:f1:06:2f:b0:72:
7b:2f:e2:e9:f0:7e:14:bc:b6:9d:81:34:7e:1b:62:
1d:b8:1d:cd:a8:26:c6:89:05:04:3a:1d:a3:57:bd:
bd:ad:04:5b:f2:05:6b:02:4b:01:d6:7a:0e:c4:ae:
a2:c1:ec:a8:7b:11:7d:8f:b3:06:f9:99:4c:3d:a6:
ae:bb:22:4d:9d:bd:b8:10:60:33:8e:8c:34:d3:d2:
8e:70:01:da:d1:0e:05:f7:89:c4:3d:22:0a:55:50:
81:26:b7:1a:cd:49:e1:e3:36:75:3a:8f:b9:db:5e:
65:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6B:43:07:AB:0B:13:4B:52:C6:8A:B4:06:D4:13:AE:38:99:BB:CB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8GtDB6sLE0tSxoq0BtQTrjiZu8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:09:57:a0:35:95:1f:be:36:f3:1a:16:22:f3:46:86:31:dc:
ef:69:35:b9:28:89:00:64:77:53:e7:a5:a0:9c:f2:79:e7:df:
3d:61:eb:c4:e0:1d:cf:2b:bf:1b:80:e7:d0:0c:d0:a6:94:44:
b2:3c:4b:0f:ef:ce:d7:53:43:95:3b:bb:d8:85:8b:30:60:a0:
e9:03:96:e9:34:75:13:c1:2d:aa:52:93:b6:a8:f7:50:7d:02:
6e:f9:ac:05:34:6c:1d:4d:8f:2c:a6:62:9e:10:54:ef:1b:75:
b8:8d:1b:17:c7:c9:f3:16:c8:af:64:db:67:60:88:a2:52:41:
25:1a:d0:a5:d0:1b:3a:0c:15:09:69:3f:48:6e:4e:9a:01:4c:
1e:a6:51:83:e7:ec:48:e2:b1:ad:da:08:71:92:d2:56:a8:2a:
f5:06:32:24:60:01:68:d5:1e:ca:ea:c2:dd:8c:b9:c6:1f:37:
52:14:27:a6:1d:b1:9f:0c:a3:5d:6e:d7:06:c0:c7:3b:fd:90:
ca:58:5d:41:70:39:d3:66:67:6a:9b:bc:89:d1:70:6d:a2:22:
fc:54:60:c3:8c:a1:53:87:35:15:4d:f8:3b:94:6d:4f:10:7e:
cc:1d:29:86:cd:c1:b8:ff:5e:52:d3:41:d4:f2:3d:05:c7:86:
3d:04:9e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org