Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/D7BL2cxlMrdnwInTsnAZy-6MM48.roa
File: D7BL2cxlMrdnwInTsnAZy-6MM48.roa (raw, json)
Hash identifier: wgyVwS/nY3b2lEAHZKARJLqNEgxYNuLysCDbXuqaptM=
Subject key identifier: 0F:B0:4B:D9:CC:65:32:B7:67:C0:89:D3:B2:70:19:CB:EE:8C:33:8F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 084E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D7BL2cxlMrdnwInTsnAZy-6MM48.roa
Signing time: Tue 29 Sep 2020 09:51:54 +0000
ROA not before: Tue 29 Sep 2020 09:51:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 123.204.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2126 (0x84e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FB04BD9CC6532B767C089D3B27019CBEE8C338F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c2:22:fa:ca:81:46:6a:01:3d:4f:ea:fe:aa:
57:94:f1:ba:28:d4:b5:79:75:b7:a1:54:b0:1e:ad:
f2:b9:ee:40:06:57:c5:f7:e8:f6:43:b1:1d:9b:7d:
33:79:c8:34:84:06:87:6a:3a:59:3a:e8:8a:e9:28:
0b:9b:5b:7f:ef:ac:4c:bc:7e:d6:87:2a:1d:19:32:
c1:a1:8c:d8:76:0b:2d:90:93:29:60:82:fe:a0:ad:
22:a3:22:86:d6:63:38:aa:5c:8f:c2:29:9c:68:cc:
c0:0a:8c:33:d8:09:94:6e:9a:91:e3:3e:c4:83:59:
cb:99:6c:99:82:0c:61:79:71:19:72:0d:96:bf:70:
43:73:9b:d2:49:56:6f:3f:58:83:49:22:8d:f9:22:
ea:7d:32:17:8b:6a:9e:6a:b4:d9:72:7e:db:77:2f:
a7:88:1e:ff:c1:75:1c:76:04:57:77:ca:f9:54:35:
d5:1c:76:07:9d:7e:f2:ca:82:b1:ab:ca:5f:64:06:
4a:1d:11:04:50:39:95:da:10:ef:44:17:be:b9:0e:
33:7a:1b:0a:ee:a0:4f:67:36:96:10:c7:aa:0b:7a:
e3:81:44:41:c9:9a:fd:ab:84:07:44:a2:c7:93:7e:
da:24:2f:8b:69:5c:c8:84:31:69:10:6b:f5:ad:36:
65:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B0:4B:D9:CC:65:32:B7:67:C0:89:D3:B2:70:19:CB:EE:8C:33:8F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D7BL2cxlMrdnwInTsnAZy-6MM48.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1e:3c:f5:94:42:98:ac:4e:78:31:7c:8d:7b:11:42:66:a1:bf:
f3:88:e3:6e:72:49:41:0d:13:43:7d:df:d3:63:45:55:f6:42:
49:89:6e:52:31:13:45:0d:54:2e:f4:76:d2:14:75:63:90:dd:
9c:e5:80:f9:50:58:f2:2d:7c:ae:18:79:c3:4d:e5:c4:b8:5b:
49:06:3e:67:27:9b:69:2c:bc:41:c5:de:36:3e:45:09:5c:fd:
01:df:18:0a:7b:b7:47:ff:76:41:bc:a3:a7:9d:07:72:67:6f:
46:5c:b9:3e:84:c9:b2:2d:1b:10:e1:ba:0f:c6:c3:53:b2:b9:
9e:97:ac:9f:70:9b:ba:5b:fd:81:b0:12:f5:98:d8:e5:db:81:
71:c8:89:fc:28:fc:e9:80:5d:c3:8e:3d:ba:1b:6b:3f:0c:4c:
d2:6f:e6:be:28:49:87:a5:a4:b9:3f:9b:37:4b:40:41:cc:85:
fd:e1:a0:c9:4b:3a:ce:97:8f:3b:77:a2:3c:46:03:78:05:15:
36:a4:d8:4c:ac:6c:c9:9a:03:9b:f8:2e:9d:89:e7:3f:d0:c7:
0d:c6:22:3b:41:79:c8:c5:6c:74:74:a7:a2:1a:c9:0a:0b:89:
5a:0e:1e:55:31:f8:60:e4:14:14:ce:a5:0b:a0:38:c6:5e:32:
87:db:dc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org