Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Rp74xnmaRb3hzLSjCJxNVtttTs.roa
File: 9Rp74xnmaRb3hzLSjCJxNVtttTs.roa (raw, json)
Hash identifier: 7igO4vMv8Ae6BsMQT7bWnLdMJSg+qJ0qpYITwb4dj2w=
Subject key identifier: F5:1A:7B:E3:19:E6:69:16:F7:87:32:D2:8C:22:71:35:5B:6D:B5:3B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Rp74xnmaRb3hzLSjCJxNVtttTs.roa
Signing time: Tue 29 Sep 2020 09:52:25 +0000
ROA not before: Tue 29 Sep 2020 09:52:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2242 (0x8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F51A7BE319E66916F78732D28C2271355B6DB53B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:05:b5:f8:63:01:37:a8:21:ad:15:f5:ba:
bf:e8:06:e5:36:14:6c:b8:20:2e:cf:0a:af:e4:e5:
14:52:1f:1a:e4:c7:68:4b:47:b5:13:02:27:d0:9a:
92:16:6c:82:d7:ef:3e:d9:49:b6:5d:ca:9b:e0:99:
98:5d:ae:2b:fa:25:6f:96:fa:60:e2:b7:66:10:5d:
51:71:71:76:0d:5e:35:b2:b5:59:bd:7a:ab:b1:28:
e4:24:7d:fa:13:db:f2:6a:14:76:bd:66:d7:da:d4:
6c:c0:05:2a:76:db:b6:5d:aa:c4:74:4d:aa:04:17:
0a:38:f7:bb:5c:f3:3b:c1:a3:62:b9:9c:61:bf:1e:
42:a6:83:b6:ff:9b:55:a8:37:0c:e8:5f:d3:ce:1a:
e8:ea:7d:2a:3d:80:cd:5b:41:c1:06:22:4d:df:23:
e4:c6:3c:a6:dc:23:74:fd:f8:cc:22:46:d0:2a:22:
8c:0c:79:47:7e:5a:43:2a:44:cb:c0:db:a7:9b:26:
57:73:18:b0:14:df:13:77:ca:92:ff:23:82:03:8d:
48:30:71:9e:21:75:5a:08:60:75:78:2f:ac:54:1c:
36:c8:21:65:ba:4e:36:5e:f9:80:dc:6f:99:39:84:
45:5a:86:cd:d3:74:1d:0a:6b:06:db:7c:0f:80:b6:
eb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1A:7B:E3:19:E6:69:16:F7:87:32:D2:8C:22:71:35:5B:6D:B5:3B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Rp74xnmaRb3hzLSjCJxNVtttTs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:3f:47:5f:7b:2a:f2:c5:df:4f:8a:73:ad:43:06:1f:46:94:
05:f0:8d:32:93:84:5c:a2:65:4a:5c:59:69:ff:8b:d0:90:50:
f8:1a:a3:45:37:3f:aa:cb:42:56:ea:80:6a:4c:e9:f4:17:fe:
cb:0b:4d:9c:d1:b4:9e:2b:4e:a9:f6:10:6a:53:9b:7e:9f:31:
48:37:e8:d7:a2:51:4e:61:f6:90:e4:8f:41:e6:99:a2:cb:07:
0d:be:ad:ad:02:36:0d:76:c1:2c:12:d6:90:bc:77:bb:3b:07:
82:b1:a6:5b:45:1f:68:a4:6c:54:78:6e:70:38:d6:3c:cb:c4:
d3:bc:d6:79:17:a9:77:d1:57:2a:e8:be:9e:ab:5f:5d:80:26:
56:10:f5:7d:b3:4c:70:4b:ef:1f:2a:ee:6e:63:20:ad:7b:ec:
66:7a:1e:1e:06:16:f2:c9:7e:23:b9:7b:3b:3e:f3:04:a1:00:
52:a3:5a:72:46:27:48:b1:a6:a2:69:d5:12:cd:a5:dc:62:12:
2e:80:99:0b:9a:35:c9:5f:e8:33:a8:dd:4d:05:d7:5b:bf:de:
bd:19:0f:40:1e:ca:f4:ca:fd:ed:95:09:1b:fa:9d:e9:ef:b7:
59:38:58:4f:db:92:ac:9b:d0:19:e0:0c:c4:5f:36:56:da:8e:
64:c4:f7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org