Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AUlJNN_BlFyoMDBcIZABZAfxWhE.roa
File: AUlJNN_BlFyoMDBcIZABZAfxWhE.roa (raw, json)
Hash identifier: KApKcTrLYNzbgXZrIvpO4ErZxWnQ6hvtHzPwwO0FWEI=
Subject key identifier: 01:49:49:34:DF:C1:94:5C:A8:30:30:5C:21:90:01:64:07:F1:5A:11
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DEE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AUlJNN_BlFyoMDBcIZABZAfxWhE.roa
Signing time: Wed 29 Sep 2021 02:43:00 +0000
ROA not before: Wed 29 Sep 2021 02:43:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3566 (0xdee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=01494934DFC1945CA830305C2190016407F15A11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7e:b5:0d:6d:78:5f:45:8d:49:32:14:b7:1d:
af:ef:eb:4c:ec:15:cb:a5:e0:03:f1:9f:f9:c7:be:
97:17:7d:90:66:79:9c:59:70:22:ac:93:a4:bc:12:
69:b2:ad:98:6e:aa:ee:7c:36:63:87:6e:8a:33:86:
9a:df:14:ea:4d:3c:51:cd:99:b1:64:a6:e2:58:72:
5c:13:99:f7:96:25:e2:a8:33:e5:dd:05:b7:d0:0c:
79:23:7a:e8:00:07:06:aa:12:3c:3b:4a:40:05:3d:
3f:94:ab:30:f2:e3:c2:b4:91:f8:09:44:73:62:13:
0d:a3:88:48:a1:8c:c7:0d:13:65:0b:5c:8a:ea:b9:
e4:da:a1:82:c8:df:3e:81:2d:fd:fe:6c:cb:4b:0a:
3a:1d:07:41:c2:5e:6d:ca:8b:8e:86:a3:aa:35:f6:
e1:ba:91:06:0b:4e:9e:92:c3:d1:83:f9:19:21:39:
fd:49:67:9c:2c:4f:0b:70:78:15:4c:5c:34:85:29:
7e:20:50:c0:e2:c6:53:22:06:2a:94:14:2f:6e:06:
73:7a:16:3c:42:e1:69:ce:b7:84:8b:65:f5:41:af:
14:ee:48:d4:c4:17:2d:01:6a:2f:2b:4a:17:46:d4:
88:a9:c0:2c:3c:32:b2:af:49:ab:2f:73:b1:28:71:
0d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:49:49:34:DF:C1:94:5C:A8:30:30:5C:21:90:01:64:07:F1:5A:11
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AUlJNN_BlFyoMDBcIZABZAfxWhE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
95:1a:d5:96:34:b5:a3:b8:a8:4e:fd:eb:1e:69:a8:0f:66:ec:
ea:28:9d:31:37:29:2d:a5:30:0e:a3:0f:cc:78:cd:94:54:5a:
d0:b5:4f:6a:0b:da:54:fd:44:35:cd:0e:d9:6e:6b:2f:e2:af:
08:72:0d:9a:d9:51:f5:e8:28:a0:08:e9:93:8c:15:2d:f6:cf:
d1:6d:c6:0a:77:ed:91:44:11:a4:09:ff:5f:b5:e6:ac:d0:e2:
5f:45:5f:f4:cc:06:cc:58:84:e9:7c:91:19:e1:03:a8:8f:44:
8d:75:7e:11:0f:12:1d:b1:f0:46:33:86:6e:f1:22:a1:db:12:
f7:92:5d:9a:5a:a3:9e:2b:84:66:29:16:b6:f5:ee:ac:45:1b:
e3:45:2a:25:0e:f5:b4:f9:f8:ba:55:db:67:10:4d:3e:39:c2:
c7:51:f8:4e:d4:36:a6:45:1f:c3:68:a4:9f:21:c9:b8:73:a7:
5e:d1:8e:9d:93:35:2f:69:52:1a:03:d4:83:f1:32:a0:d6:87:
d3:fa:14:dd:62:53:e9:82:a0:f3:33:c9:e6:da:a4:6b:22:ae:
2f:52:b4:f4:73:cf:03:9f:24:a4:06:b9:8a:ea:41:de:6e:7b:
fb:9e:7d:77:be:81:67:aa:9f:e3:1e:b8:3d:7b:5c:6d:0b:d2:
9d:0b:9b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org