Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9pW6k4Bk95hcNDOfpApkrBh28cg.roa
File: 9pW6k4Bk95hcNDOfpApkrBh28cg.roa (raw, json)
Hash identifier: onroZJGvELOwAfgU6TWZlucNfGMnN2+U5gk3RxDE4wc=
Subject key identifier: F6:95:BA:93:80:64:F7:98:5C:34:33:9F:A4:0A:64:AC:18:76:F1:C8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EAC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9pW6k4Bk95hcNDOfpApkrBh28cg.roa
Signing time: Wed 29 Sep 2021 02:43:51 +0000
ROA not before: Wed 29 Sep 2021 02:43:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 175.183.136.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3756 (0xeac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F695BA938064F7985C34339FA40A64AC1876F1C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2e:2f:e3:fb:af:38:a4:a8:95:58:03:2e:17:
21:ba:95:be:91:92:c7:cc:19:ad:ba:4a:f4:db:01:
b3:65:c6:6e:99:21:33:2e:6a:01:bc:42:7e:86:9c:
ba:8a:f0:46:00:47:9b:7c:61:53:2e:db:41:2a:68:
c6:3b:7f:f3:20:9a:f3:d9:96:6d:f8:02:66:5c:4d:
1c:e4:83:45:05:dc:e2:b8:e4:41:fd:c3:15:9d:50:
b0:a8:73:4f:83:e0:04:63:f1:85:44:f7:a6:ea:5d:
3f:29:4b:7d:fc:80:74:22:56:b4:f2:91:9a:91:37:
8f:f4:e4:58:98:30:53:1c:bb:e2:a9:75:bf:c6:bb:
74:70:85:26:36:bf:23:9a:38:cf:05:2a:f7:91:45:
08:91:c3:89:69:83:a9:76:15:c0:0c:4f:35:02:fa:
bb:74:27:d8:84:14:53:32:c9:17:88:a6:d0:e8:d3:
34:fb:1f:24:e0:0f:c7:d1:34:01:6c:f4:59:7e:86:
48:c5:cb:d8:dc:b7:28:24:29:c5:a8:55:be:a9:6a:
3e:49:be:11:cc:df:7c:d7:f7:1b:91:dd:51:d3:c8:
7d:03:0c:92:7f:1e:d1:6d:69:f5:34:2d:4c:c0:64:
4c:eb:2e:9d:f3:23:f2:6b:fb:6f:e4:67:2a:d3:4e:
ff:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:95:BA:93:80:64:F7:98:5C:34:33:9F:A4:0A:64:AC:18:76:F1:C8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9pW6k4Bk95hcNDOfpApkrBh28cg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.136.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:7c:a5:18:74:03:92:fa:9d:9b:ae:fa:ef:f2:e6:bc:86:1e:
dd:38:ba:56:21:d6:55:e0:4f:a5:90:69:b8:f6:7f:1b:74:d3:
9d:c1:a0:8b:be:17:b3:88:a1:fa:db:71:19:2e:56:f4:34:08:
d6:1f:79:0d:4c:f2:d7:98:a6:d6:83:d6:07:39:3b:52:09:79:
46:88:67:96:8d:8e:2d:80:fc:ad:f2:7b:20:65:6d:ae:62:e7:
2b:b2:ab:44:a2:92:2a:9d:2a:7f:01:ea:8f:4a:c2:d4:5c:f1:
65:4f:dc:16:65:be:1f:55:db:d9:0d:45:4f:76:79:ae:bc:84:
30:3b:49:cf:cf:19:b0:8e:e7:a3:32:92:32:88:60:f5:ea:72:
bb:5b:ac:e6:fd:c0:81:a0:79:70:e1:ef:12:98:9f:4c:0f:15:
0d:90:b1:74:f8:2a:c7:3c:a8:aa:d7:56:c3:29:94:0f:59:2b:
da:30:2e:b8:dd:4e:4b:0f:21:58:d9:97:4e:2a:a4:b5:43:72:
bc:c6:1d:66:a2:11:f8:e8:02:13:74:26:e6:4a:ae:6d:10:b0:
5f:fc:a6:ed:b6:d0:5c:aa:5a:98:a5:57:98:29:d1:72:da:a1:
d2:45:a2:9e:d0:fa:94:e9:1d:7c:d8:b1:8d:e5:f8:6e:ee:10:
a7:d9:92:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org