Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8Iltx-NuYC7UdN7-RG5QzbVFgOk.roa
File: 8Iltx-NuYC7UdN7-RG5QzbVFgOk.roa (raw, json)
Hash identifier: sWoIC9TsfnSItpJ2lcsB0R+Nsxu/7lIsqNqqvl0Q9ao=
Subject key identifier: F0:89:6D:C7:E3:6E:60:2E:D4:74:DE:FE:44:6E:50:CD:B5:45:80:E9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08E7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8Iltx-NuYC7UdN7-RG5QzbVFgOk.roa
Signing time: Tue 29 Sep 2020 09:52:34 +0000
ROA not before: Tue 29 Sep 2020 09:52:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 210.244.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2279 (0x8e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F0896DC7E36E602ED474DEFE446E50CDB54580E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:11:2a:6d:da:41:23:6a:c2:9d:6c:57:b6:
4c:6d:44:0d:5b:25:65:a6:b2:5a:89:29:26:51:8f:
4a:ba:6a:44:09:f5:20:a7:d6:04:03:0d:13:97:ea:
8b:58:88:14:d6:9d:ac:f7:44:2d:61:d4:1e:82:97:
81:44:4b:59:be:c9:f8:75:fb:39:6b:e0:30:fe:76:
ab:3e:2b:ec:55:28:0a:12:90:4c:bc:1d:5e:d9:6b:
fb:62:46:21:1f:19:af:f8:58:7f:e7:c3:74:79:cc:
14:e7:17:b6:b5:84:74:c2:96:12:94:6b:7b:14:5b:
20:1e:37:ea:88:f4:3a:8b:65:6c:24:50:6d:86:79:
60:e2:8e:9b:f2:a1:8f:f4:b9:9f:31:c8:59:a8:00:
7b:35:73:fb:ac:5f:80:df:0e:95:34:c4:c1:6d:7a:
d8:25:70:b4:7c:77:69:c2:0e:e1:a6:66:a2:a1:16:
a6:36:cc:f0:be:47:5f:49:d3:ed:09:d4:60:39:e8:
34:6d:44:d7:0f:5f:c5:38:9a:12:c2:a0:c6:44:d2:
97:0d:40:46:56:a2:5e:de:37:8c:49:85:4e:59:97:
b9:88:9c:4a:49:7e:39:62:48:bc:64:96:60:09:2c:
86:b8:3f:e9:b0:aa:eb:a2:d6:bc:83:40:4d:82:a7:
37:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:89:6D:C7:E3:6E:60:2E:D4:74:DE:FE:44:6E:50:CD:B5:45:80:E9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8Iltx-NuYC7UdN7-RG5QzbVFgOk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.88.0/22
Signature Algorithm: sha256WithRSAEncryption
61:26:05:95:19:30:e6:7e:36:e6:7a:c8:72:a4:50:0c:05:26:
ed:8e:21:01:99:dd:6f:3a:a8:c6:8e:ba:54:9b:3e:10:7d:3e:
49:f1:29:b7:d7:1f:78:8e:ca:4f:04:47:98:44:45:d1:82:94:
25:a4:31:fc:0d:3a:0b:b3:ee:48:16:e7:b8:6b:60:b8:86:00:
be:db:0f:29:87:ab:52:6c:ef:8e:9c:e8:4e:c7:e2:a9:72:aa:
d9:9f:bc:05:e2:a2:32:fb:fd:61:40:d3:42:a1:bb:6c:74:44:
70:43:83:9c:3b:aa:2c:cc:6b:c9:35:ce:ca:e4:64:c0:e9:26:
17:04:91:50:7b:24:23:ba:2a:ca:1a:81:61:f9:7f:ef:7f:73:
cb:16:ae:51:80:ec:ad:3b:76:75:ea:dc:4e:15:19:92:63:58:
56:20:bc:d8:7c:4e:05:ef:07:89:f4:ea:a6:be:43:cb:20:c8:
eb:fb:97:01:f3:e9:fc:55:45:e2:f4:56:e3:6c:a3:33:52:7e:
65:34:f0:c4:ec:d7:bd:8a:2a:98:16:12:44:64:13:0b:92:83:
6d:3d:ff:f5:04:b4:9e:1d:98:26:cf:54:3b:1b:03:ca:e1:a0:
a5:48:e3:39:e6:b0:3a:f8:90:de:dc:e1:90:58:be:49:80:a4:
28:13:d0:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org