Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8hSWHXaRZ-_EDImNFeobJ4HeheM.roa
File: 8hSWHXaRZ-_EDImNFeobJ4HeheM.roa (raw, json)
Hash identifier: Rnnz26C8et8OOyoNnNvP2yvMcg14HupxEyHzLV5C/Xo=
Subject key identifier: F2:14:96:1D:76:91:67:EF:C4:0C:89:8D:15:EA:1B:27:81:DE:85:E3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8hSWHXaRZ-_EDImNFeobJ4HeheM.roa
Signing time: Wed 29 Sep 2021 02:44:02 +0000
ROA not before: Wed 29 Sep 2021 02:44:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 218.210.116.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3794 (0xed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F214961D769167EFC40C898D15EA1B2781DE85E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b9:b9:73:f7:32:c4:b5:57:9c:d9:85:6f:a7:
a2:e3:b5:e1:7c:eb:38:b9:66:41:97:26:f4:0b:e3:
c1:5b:9c:fd:94:81:81:15:95:dd:e0:e0:25:17:cb:
c1:aa:d8:c7:38:c7:25:86:f5:6b:06:69:fc:05:4f:
1a:4e:57:1e:cc:5c:97:dc:cb:0f:df:df:f4:8c:d5:
ff:31:40:1e:81:a2:a3:ed:70:b6:37:18:0b:39:de:
ea:ae:8f:13:27:5d:c1:ea:df:52:df:17:ff:13:5d:
33:f8:84:f6:bf:4f:dc:1c:d9:9f:ac:25:a8:c2:ef:
6c:b6:b2:f5:37:08:01:22:14:97:65:fe:c1:44:c3:
51:3a:38:a0:18:83:22:9d:24:94:cf:02:25:13:a6:
9c:c8:b7:dd:f3:6e:d5:5e:9a:38:15:de:e7:dc:f0:
c7:ba:dd:cb:af:3f:4a:0d:dc:46:bb:5e:50:33:07:
54:e3:f1:58:4a:09:df:c8:c7:01:fe:90:e9:6f:0d:
4d:ce:b8:a6:9b:40:42:cb:0c:8e:02:ba:dc:e8:ef:
ee:88:7b:43:7c:17:0e:38:0f:ee:d4:70:d9:b3:d9:
60:73:f5:39:bb:6e:85:2a:d3:cf:1f:8f:d2:22:80:
15:58:e3:ff:95:42:3b:87:0b:2c:6d:00:cf:6b:60:
69:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:14:96:1D:76:91:67:EF:C4:0C:89:8D:15:EA:1B:27:81:DE:85:E3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8hSWHXaRZ-_EDImNFeobJ4HeheM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.116.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:ff:6e:77:6c:93:b9:ef:a1:29:81:ae:29:a4:80:c8:4e:fe:
64:0f:db:dd:a3:7f:a1:ad:e6:e0:ff:bd:4f:81:47:07:44:b2:
8d:46:04:b7:3c:be:fb:35:56:bc:fc:15:c0:ae:f3:b2:b3:ea:
06:db:3c:55:68:12:12:29:46:45:f2:ee:76:ca:41:d8:19:e5:
21:b0:74:a2:3c:ff:de:08:37:82:c3:b7:10:d4:eb:d0:08:d0:
9d:3e:9c:a6:a9:c3:9b:10:45:00:41:78:79:a9:b5:d7:a8:05:
36:3f:da:17:8b:f3:22:1d:c2:61:39:d8:93:42:ec:c3:74:da:
3c:c4:ee:f5:41:e6:a2:c9:60:ef:12:cc:bf:52:e4:50:37:fb:
32:d7:5e:98:24:7d:18:9a:19:6e:95:14:80:e7:7f:0a:f6:85:
fe:6f:e5:ba:69:26:76:85:a4:1e:4e:5d:be:33:a6:bf:4a:59:
0c:7e:62:48:87:fb:21:c6:e4:16:64:c1:16:fb:90:98:78:c3:
4b:10:1a:97:ab:b9:97:3a:b6:bc:0f:4f:4d:34:14:b3:16:ed:
d5:be:42:54:53:16:1e:ee:38:c9:b2:e3:93:5e:bf:85:89:63:
e2:ba:3a:05:d1:0a:3d:14:7b:66:30:2e:26:60:12:c6:bc:31:
fb:29:b8:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org