Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ABCaKQ7B2UfWC47yd370PAAaNRc.roa
File: ABCaKQ7B2UfWC47yd370PAAaNRc.roa (raw, json)
Hash identifier: Ll3mfvdGYq6LVKExBLfi4CLZT2Albe2lcXNSk2A6A/k=
Subject key identifier: 00:10:9A:29:0E:C1:D9:47:D6:0B:8E:F2:77:7E:F4:3C:00:1A:35:17
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E44
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ABCaKQ7B2UfWC47yd370PAAaNRc.roa
Signing time: Wed 29 Sep 2021 02:43:22 +0000
ROA not before: Wed 29 Sep 2021 02:43:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 175.183.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3652 (0xe44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=00109A290EC1D947D60B8EF2777EF43C001A3517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d9:3a:dd:1d:af:a3:b9:16:82:1c:74:a8:3b:
28:f8:86:11:da:e5:7b:73:e5:40:28:97:bc:d8:b6:
51:dc:3f:39:b9:ff:db:3c:00:d1:ce:72:b6:4c:49:
8a:36:8f:87:08:4f:f4:a2:94:3a:7b:ad:4c:84:c4:
c8:e8:b4:4b:67:01:08:cc:1e:f6:33:79:11:95:aa:
2f:3a:d7:c9:89:c3:58:49:d2:de:45:81:e1:49:bc:
1c:51:d1:91:7f:c0:7e:e3:e4:e8:af:00:b4:e0:97:
b1:bd:40:d8:41:e0:93:d0:49:e0:f3:69:04:74:1a:
bf:12:9f:c3:f4:0f:42:5a:ec:aa:1c:3a:5e:8a:ce:
10:8c:04:e9:f0:5d:d8:3e:e8:29:ae:6c:c5:6c:1f:
37:d9:9f:33:b5:ec:f9:9c:a5:07:50:b9:27:61:5f:
1b:7a:a5:d7:77:9c:c6:4a:37:a9:b0:4b:9e:6b:e4:
0c:37:76:f1:12:07:16:67:4e:e2:ff:7d:84:37:a1:
98:af:07:d2:30:b3:b3:2f:76:64:67:c6:8e:2f:c4:
8e:bd:cc:36:d6:07:db:5f:74:84:52:fd:0e:b5:ed:
7b:06:dc:09:c2:2d:aa:fd:c1:d6:c5:e7:e4:b8:c7:
5d:c4:bf:a7:bf:a1:a6:c0:ef:9c:b8:0a:1e:e8:8b:
e0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:10:9A:29:0E:C1:D9:47:D6:0B:8E:F2:77:7E:F4:3C:00:1A:35:17
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ABCaKQ7B2UfWC47yd370PAAaNRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.32.0/19
Signature Algorithm: sha256WithRSAEncryption
c7:49:e5:71:63:80:33:63:19:3c:4a:77:42:6a:7c:7f:c6:c9:
43:25:60:f7:20:43:8d:56:1a:90:ee:5e:66:08:fb:9e:c7:af:
d2:59:d2:a4:aa:90:08:1a:52:37:e1:80:dd:cf:3e:45:57:db:
44:de:0c:ee:0d:5a:38:52:7f:f7:9b:94:35:ad:59:aa:d6:bd:
4d:5f:00:9b:b1:2e:c3:35:95:8c:c3:8e:e7:c1:23:99:85:b9:
d7:06:49:8b:34:8c:7d:ff:6f:3e:9b:87:65:33:31:0e:23:e6:
51:65:71:41:50:01:d3:2d:2a:a4:bd:79:36:f7:74:48:c3:f4:
84:4a:f3:d7:68:70:db:7d:dd:cc:bc:1f:45:2e:26:dc:a1:33:
df:07:44:26:ef:c1:3e:0f:90:bd:17:66:b0:f7:09:1b:42:b2:
5d:b0:1b:45:04:e6:5c:14:bc:5c:b7:47:7b:f8:99:42:78:8e:
af:75:2b:dc:48:3a:8e:7d:06:1f:ae:64:d7:b2:90:ea:57:b5:
9a:5e:89:69:62:88:ec:f4:42:63:ac:58:7f:1f:4f:78:8a:7d:
0e:e2:ed:df:c4:89:6f:19:4e:54:b4:0c:b4:cc:71:b2:29:f3:
9c:8c:e7:47:43:73:8d:83:6d:68:e9:fd:8f:5c:4b:a0:e8:13:
73:0a:69:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org