Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CgtzsjEKnyyO5COe6MX3OgvilY4.roa
File: CgtzsjEKnyyO5COe6MX3OgvilY4.roa (raw, json)
Hash identifier: PJVstrUIutrJuA2WGwic/d1MW15DbWhNonmp0f8dPPo=
Subject key identifier: 0A:0B:73:B2:31:0A:9F:2C:8E:E4:23:9E:E8:C5:F7:3A:0B:E2:95:8E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CBB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CgtzsjEKnyyO5COe6MX3OgvilY4.roa
Signing time: Sun 07 Feb 2021 11:44:49 +0000
ROA not before: Sun 07 Feb 2021 11:44:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3259 (0xcbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0A0B73B2310A9F2C8EE4239EE8C5F73A0BE2958E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fa:ed:a3:4c:39:9d:73:c7:f6:e5:2d:9b:c3:
38:6a:5d:48:31:c8:a7:04:a4:63:23:de:70:a3:91:
2d:a5:05:8a:b2:0a:40:68:e7:62:58:fa:d7:21:4e:
29:fa:21:98:16:e1:92:48:2a:6b:8e:39:18:fd:c8:
00:61:f2:4c:f4:d0:10:15:d9:c0:23:69:e4:0a:e7:
65:35:09:83:5a:a3:dd:cc:5b:77:be:28:b3:4b:ed:
fb:9b:26:84:59:e7:a1:9c:d9:89:0a:c7:60:8d:a2:
21:3c:6c:87:70:3f:fc:8c:ea:0b:2e:7a:9d:47:72:
df:a5:99:7c:76:0f:65:00:d6:d7:b8:d9:8c:8d:91:
4e:d2:1c:32:c7:6d:47:dc:66:e7:9c:26:23:a4:7f:
26:d8:cc:b1:1a:51:fb:31:4e:60:5b:84:6a:d5:00:
12:4a:b7:2a:ff:ed:01:17:3f:4c:a3:85:78:5c:13:
bd:c9:30:9d:8c:14:23:fe:4a:28:ff:45:2f:15:2a:
35:cb:61:9d:e1:3f:a6:74:be:da:0c:bb:46:aa:92:
b4:82:a2:a9:55:80:bd:ee:2b:21:71:9a:c3:2d:c8:
1d:20:4d:92:35:6f:bb:44:f7:4a:da:1a:17:2c:e2:
7e:5e:9c:38:08:9d:b3:52:3d:62:c5:c5:dd:20:9c:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0B:73:B2:31:0A:9F:2C:8E:E4:23:9E:E8:C5:F7:3A:0B:E2:95:8E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CgtzsjEKnyyO5COe6MX3OgvilY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.128.0/17
Signature Algorithm: sha256WithRSAEncryption
99:e2:51:47:1b:b8:cd:6e:9a:55:06:64:4d:2c:84:34:ea:6d:
14:5c:17:b5:25:57:ce:30:9b:2a:e3:d9:a7:6f:7b:16:68:70:
c0:44:46:1a:e1:cd:99:e7:2c:36:07:05:d2:cf:27:1a:a5:ce:
af:3c:07:df:03:20:ad:df:5d:67:7f:98:17:25:1e:cd:f8:f8:
9e:52:02:39:19:29:35:63:04:5c:54:0d:28:d7:98:ce:dd:49:
94:ce:d1:d6:48:bc:35:ad:ca:a2:2c:73:3a:0b:5f:1c:f5:90:
71:b2:8c:ba:65:22:b4:9a:72:71:da:42:a5:f9:f0:f6:0f:5b:
64:1b:27:44:38:37:4f:a3:e1:44:cf:be:a2:d3:75:86:83:f9:
60:8d:db:da:49:74:9e:26:a7:ef:7a:5b:ad:a2:84:ff:2a:ce:
1c:50:9b:89:16:fb:1d:5e:f3:5a:0a:01:a1:bb:b9:8a:a7:39:
7b:25:5f:d5:96:9b:03:6d:26:d6:bc:f2:ad:47:50:a9:5a:06:
b2:c1:3c:60:9b:45:f0:ab:e4:1f:04:c6:21:fa:6d:c0:fc:65:
00:ab:3a:52:d6:39:b4:51:f2:5a:b6:f7:ca:6b:fa:61:c8:f5:
7e:79:62:e6:8a:be:fc:fe:fd:21:53:c2:87:77:5a:e1:e6:b5:
c8:71:f6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org