Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Bo_hS6o1A2rEFgnjfCi3ZrqRpSs.roa
File: Bo_hS6o1A2rEFgnjfCi3ZrqRpSs.roa (raw, json)
Hash identifier: R5B9DF1bO2pHmIUTPXbC9cGJHqqGHjKmYuTGb7pfahw=
Subject key identifier: 06:8F:E1:4B:AA:35:03:6A:C4:16:09:E3:7C:28:B7:66:BA:91:A5:2B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Bo_hS6o1A2rEFgnjfCi3ZrqRpSs.roa
Signing time: Wed 29 Sep 2021 02:44:03 +0000
ROA not before: Wed 29 Sep 2021 02:44:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 55303
IP address blocks: 115.30.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3799 (0xed7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=068FE14BAA35036AC41609E37C28B766BA91A52B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:db:75:ab:86:dc:b4:e5:7d:ac:a5:e3:92:7a:
fa:6c:84:41:d9:6f:f1:66:46:49:54:b9:dd:60:ba:
49:51:dd:ee:bd:23:31:c8:e6:f0:20:55:f0:fc:3b:
00:e0:cd:3e:8f:51:57:a3:74:6e:ef:22:60:8f:ad:
4d:cc:54:42:3b:13:46:ed:18:6d:73:58:6e:87:dc:
d4:85:3b:fa:e2:ab:05:f9:59:75:43:e4:21:e6:34:
e8:2b:96:de:ff:0f:b6:b9:db:70:73:c2:03:e1:3f:
d2:28:77:0f:91:dc:cb:03:ba:fb:62:d3:3b:a4:1d:
f3:b8:0d:2c:7a:8c:be:d3:8b:5c:a3:c6:1a:27:dd:
c1:4d:16:97:9a:e8:39:40:98:e1:63:ff:37:c4:db:
29:73:5c:50:96:fc:6f:bc:04:c8:93:de:3b:2f:9f:
2e:43:9a:a8:8a:7a:2f:a2:57:90:e3:ed:53:04:bd:
23:b4:4b:43:31:42:fd:92:fa:e8:22:99:eb:ab:ba:
d1:dd:39:09:df:f3:1d:0f:57:bc:61:78:59:57:3b:
3f:52:85:82:6e:9e:3b:2f:31:5a:f7:c6:52:b9:ef:
17:b2:29:45:0d:8b:3c:87:d1:4f:ef:4c:39:90:f0:
ee:f9:66:99:30:26:31:f7:7f:f4:f2:5d:d8:cc:57:
e7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8F:E1:4B:AA:35:03:6A:C4:16:09:E3:7C:28:B7:66:BA:91:A5:2B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Bo_hS6o1A2rEFgnjfCi3ZrqRpSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.72.0/22
Signature Algorithm: sha256WithRSAEncryption
23:fb:49:89:64:b1:4c:4d:ed:58:f8:3d:15:2d:4f:95:18:cb:
75:c5:d5:40:36:72:80:1e:fb:60:81:5c:ce:a5:a7:51:1d:94:
97:f3:a4:19:41:52:14:e7:37:46:88:fa:a0:0d:14:8e:d3:88:
85:f0:59:47:8d:3c:8f:6f:57:6a:e1:e1:1a:84:9b:f5:2f:64:
6b:75:0d:30:bb:88:68:52:82:4b:8a:87:4c:cb:59:00:61:80:
ba:da:6f:11:d8:ba:bf:b5:4f:12:81:a6:1d:61:08:4c:2b:dc:
99:a7:50:48:8e:38:ba:53:c5:be:a1:a4:bd:0f:c0:d2:cc:6b:
2b:6b:79:45:8b:58:ff:5a:96:50:d1:58:67:44:aa:67:82:e9:
e6:9d:a8:63:45:1e:22:40:f6:9e:88:5e:a7:a8:6a:58:a6:58:
0b:9d:e6:8c:c0:ba:84:7f:f1:15:d3:7c:43:e7:48:bd:b2:b0:
23:fb:33:9e:89:bd:bb:12:65:0f:e5:76:2a:6f:3d:9d:ac:16:
1d:11:e7:89:4a:28:67:87:6a:29:8d:cc:45:d9:f3:77:2a:bd:
57:94:da:36:0a:77:ce:9d:a4:09:58:30:6d:5a:d8:b6:4a:9f:
8a:4b:27:3d:91:c0:62:1f:ed:f7:66:d7:27:49:ee:a1:88:08:
a4:f2:f8:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org