Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CKAHCevGTvkKm4o9vn3UFuFPVGI.roa
File: CKAHCevGTvkKm4o9vn3UFuFPVGI.roa (raw, json)
Hash identifier: vMcm2zmneW7nrpE1tt1eqP5Hk39Na4XQJYZvbVAplFo=
Subject key identifier: 08:A0:07:09:EB:C6:4E:F9:0A:9B:8A:3D:BE:7D:D4:16:E1:4F:54:62
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CKAHCevGTvkKm4o9vn3UFuFPVGI.roa
Signing time: Tue 29 Sep 2020 09:52:25 +0000
ROA not before: Tue 29 Sep 2020 09:52:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2241 (0x8c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=08A00709EBC64EF90A9B8A3DBE7DD416E14F5462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:de:80:c1:25:7b:85:fc:6a:77:25:0b:5a:76:
f3:b6:b7:e3:7c:b1:b5:dd:bf:34:5a:75:b1:ec:ce:
dc:2c:38:0f:0d:04:6a:bf:21:62:e5:7c:43:47:e0:
6e:37:c4:44:2f:5a:ac:23:00:d2:fb:3d:d6:9f:ef:
b0:07:03:a9:79:07:f8:fd:57:86:15:90:ee:d2:29:
5d:9c:ef:bf:ae:65:94:24:a6:3f:db:d2:04:56:a9:
a3:c6:c7:43:94:90:95:9d:ab:bb:79:d6:79:16:34:
b0:b9:74:47:c4:d6:bd:d4:f1:02:c4:ee:bf:05:96:
d8:23:90:b8:84:50:44:32:66:a6:f0:ce:02:f6:b2:
7f:90:87:09:6e:dc:40:fb:9b:a4:b6:a7:5f:39:f2:
d8:14:68:f7:4b:cb:db:71:51:54:b6:76:24:39:5a:
26:3b:27:50:61:41:41:2c:c2:d1:fc:67:20:aa:a1:
65:7f:39:92:ce:e1:11:62:07:c6:f0:02:b0:f3:24:
c0:1e:17:13:d9:16:dc:08:57:b0:9f:5e:89:2c:11:
5e:a9:1e:1f:23:3a:7a:e4:89:31:a4:e4:72:ee:85:
ae:eb:d9:dd:80:2e:d7:6e:f2:49:e2:d3:9c:cd:b1:
6e:4f:9f:a5:77:6d:ed:21:93:a9:dc:9f:37:52:44:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A0:07:09:EB:C6:4E:F9:0A:9B:8A:3D:BE:7D:D4:16:E1:4F:54:62
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CKAHCevGTvkKm4o9vn3UFuFPVGI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
53:23:c7:bc:ea:ec:0b:d3:7f:37:4a:d3:d0:ef:4e:fb:54:ef:
ac:b8:e9:9c:fb:cb:af:80:5d:af:ae:e0:04:6d:c0:ec:5a:44:
13:5d:10:7f:dd:1a:2d:7f:8c:d6:62:a9:f4:12:bc:21:9c:d1:
70:16:e2:56:8e:f0:8d:62:d7:8a:78:e8:bc:c1:f4:8b:b9:47:
00:fd:aa:06:bf:2b:00:b2:35:7b:71:7b:16:70:d9:79:bc:7f:
99:fd:fb:c1:9a:7c:f4:71:15:94:49:56:95:93:da:7c:0d:6a:
84:f0:5e:e9:9f:fd:2e:f2:31:11:59:81:54:51:13:b3:da:0d:
e4:fd:8a:1a:6a:0e:93:d2:65:c9:fd:bb:c5:ae:c3:2f:e8:27:
25:56:ee:1a:61:6e:d5:c6:c5:2a:bd:f2:2b:41:aa:41:d6:04:
2e:17:3f:e2:d6:5b:46:6a:8d:78:ac:ab:ee:f8:17:b0:5f:98:
cc:95:80:4c:3f:f7:90:82:48:cc:ef:e3:74:1c:2a:92:b1:63:
10:6a:34:ea:2d:73:97:56:ff:5c:09:90:53:d7:ec:b5:fb:b6:
a2:2f:de:07:22:ff:d1:58:a7:64:2e:2a:4a:3d:68:05:a3:97:
ac:84:24:11:81:16:9b:16:f9:f9:58:80:9c:54:35:08:a6:8f:
dd:27:60:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org