Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/90EZKS9qQ4m7WIYQy2-aG0Yjnv4.roa
File: 90EZKS9qQ4m7WIYQy2-aG0Yjnv4.roa (raw, json)
Hash identifier: IZAVgTTV44o0OECqeznOH/DWCVRywuCgElHr9xIlFEQ=
Subject key identifier: F7:41:19:29:2F:6A:43:89:BB:58:86:10:CB:6F:9A:1B:46:23:9E:FE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E13
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/90EZKS9qQ4m7WIYQy2-aG0Yjnv4.roa
Signing time: Wed 29 Sep 2021 02:43:10 +0000
ROA not before: Wed 29 Sep 2021 02:43:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3603 (0xe13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F74119292F6A4389BB588610CB6F9A1B46239EFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a8:9b:05:ef:bb:19:20:9e:bd:e9:03:f8:2f:
a1:44:f4:5a:e9:3a:76:b4:7e:e1:22:dd:a4:ce:a1:
a7:27:f8:65:9e:fe:4e:46:cb:5d:20:ca:b8:4f:52:
46:74:e8:4b:86:26:81:39:49:97:85:08:6f:a6:ca:
8e:39:d3:12:f1:6b:85:77:b1:e9:04:85:f6:76:91:
fd:84:1c:a2:36:c9:e8:2f:6d:02:c6:9d:4d:5b:3f:
5c:b6:cc:49:c7:c9:75:19:17:db:f7:5b:55:89:4d:
fb:da:e1:49:98:71:88:6f:48:b0:69:80:4c:25:76:
28:f8:5d:cd:7b:31:90:a5:f2:6a:f1:1b:dc:64:55:
04:7c:78:3a:14:35:d0:af:36:d9:a5:08:0b:d0:86:
e9:eb:d6:19:12:16:65:fb:e1:9d:1a:ee:b5:df:cb:
d3:23:38:ac:38:12:76:2e:1f:79:c9:b2:3d:0c:1c:
3c:c8:ff:1d:b3:10:ba:68:42:36:61:93:c8:d3:1f:
b7:35:10:ff:38:90:78:a1:6a:f2:58:1f:f9:63:2d:
03:c5:58:80:52:b7:6b:92:9f:e9:1d:0b:ca:f3:e5:
cd:c9:7d:3e:fd:ca:cf:8e:e1:d6:8f:9c:50:3c:62:
15:bd:a1:84:d7:03:95:ae:c0:79:dc:d6:9f:0e:60:
5a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:41:19:29:2F:6A:43:89:BB:58:86:10:CB:6F:9A:1B:46:23:9E:FE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/90EZKS9qQ4m7WIYQy2-aG0Yjnv4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a3:b9:9d:ff:54:b9:ca:00:6f:a4:36:e3:df:81:91:9a:6a:1f:
22:91:03:83:f4:e9:a2:5d:ee:3b:b2:dc:29:a1:9c:32:96:6b:
4e:f6:ee:d5:2e:82:f8:d3:df:56:45:08:7a:02:b5:c5:72:76:
97:09:7e:84:45:7e:23:09:53:e0:1e:94:0c:89:a2:ef:5a:2d:
b7:84:50:71:91:ad:6b:0b:3b:ee:53:f9:90:b3:17:d0:f7:c6:
24:0e:84:8a:cb:c6:d9:36:10:25:fd:30:05:92:35:90:4e:0f:
ee:ed:40:e7:98:c1:93:9b:3a:f3:dc:a5:92:e1:69:2e:22:6f:
10:13:75:ec:f6:0c:1b:c1:05:36:81:08:e5:47:b2:61:40:12:
db:ae:41:ba:a3:43:48:cd:8a:30:80:71:f7:05:db:6c:78:ce:
16:d5:09:8e:92:3e:f1:96:79:36:b5:37:db:d0:9f:63:a6:2f:
bb:24:f2:78:c3:2e:73:2d:5b:f5:6c:a5:37:92:f2:37:4c:b6:
df:e0:eb:b2:cd:8c:6d:fe:45:83:06:94:2a:40:17:08:17:ab:
76:bf:69:03:08:21:9c:76:53:b7:91:4f:a4:f7:63:24:88:62:
32:de:24:a5:e6:b4:71:66:e3:52:5c:77:a1:b7:9f:c5:fe:5f:
ac:8c:36:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org