Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dkmtn2NVQIBiBjDRCHotU_hZoTo.roa
File: Dkmtn2NVQIBiBjDRCHotU_hZoTo.roa (raw, json)
Hash identifier: s8EdniSvj32PJu2U52w0TtgBTBbeAHW+7KM7im1WmeE=
Subject key identifier: 0E:49:AD:9F:63:55:40:80:62:06:30:D1:08:7A:2D:53:F8:59:A1:3A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dkmtn2NVQIBiBjDRCHotU_hZoTo.roa
Signing time: Wed 29 Sep 2021 02:44:01 +0000
ROA not before: Wed 29 Sep 2021 02:44:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 45.64.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3792 (0xed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0E49AD9F63554080620630D1087A2D53F859A13A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:9f:e4:19:c3:19:68:0e:dc:60:ef:71:11:
1c:1c:d6:3f:45:27:ba:bd:7c:77:bc:45:37:30:b4:
92:f2:1e:b1:13:51:4f:43:bd:87:b8:8e:ed:a0:c0:
e9:0f:91:67:10:e1:f1:54:e8:2e:95:3c:2a:e9:5c:
ee:e9:5b:46:56:a9:0a:b0:72:49:f5:fa:61:a5:6d:
aa:36:4b:d4:60:51:10:08:b2:ff:94:30:3d:35:ba:
b7:bf:53:a6:4f:f1:5b:34:26:cd:d7:e6:e4:bb:a9:
0a:69:19:31:f0:a1:6c:fc:54:e5:66:d7:10:fb:c8:
9f:18:4f:36:e4:ab:7d:bc:10:0b:e9:b3:5c:43:47:
a9:47:56:b6:6c:5e:ac:81:3d:22:a4:39:6d:09:1b:
87:4a:93:8f:7e:a6:84:49:60:f6:9f:b5:a0:80:7b:
56:18:07:78:e7:d5:7d:d8:18:fa:a2:d2:0b:9e:57:
5b:2b:98:e1:aa:a5:66:3c:3e:dc:89:96:08:17:39:
12:bf:d2:21:d7:30:bb:1e:59:b7:ce:e5:ab:5b:ca:
1e:fc:c9:2c:95:75:2d:12:c3:15:5c:63:ce:1a:ed:
18:38:ee:fe:e0:32:75:ad:1c:f3:1d:b1:f6:b6:7c:
c4:74:65:18:0e:75:78:95:4a:ae:90:d4:68:a1:06:
af:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:49:AD:9F:63:55:40:80:62:06:30:D1:08:7A:2D:53:F8:59:A1:3A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Dkmtn2NVQIBiBjDRCHotU_hZoTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.228.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:48:85:f0:f3:05:71:16:4c:63:58:6d:bb:fb:cc:e1:e0:43:
fc:9e:0b:ad:1c:2f:4a:5a:d3:b4:3a:19:98:54:16:f7:54:a7:
f1:50:99:4f:2a:1c:b9:3e:a7:86:99:8f:f4:ea:54:5b:93:ca:
59:43:5c:70:6f:3a:01:ea:46:28:fa:c2:cb:96:b5:58:40:58:
bc:87:0a:e8:86:a0:3c:d8:71:7b:e4:d5:fe:b8:47:a8:2e:e6:
bc:fb:ad:e7:d0:c0:f6:4f:9c:34:26:9b:59:1a:1f:32:c9:96:
e8:4d:9c:d4:ce:23:6d:97:ee:65:34:fe:6f:3d:39:cb:10:f4:
f1:b3:aa:8c:32:b7:7e:09:a3:01:44:f4:99:f6:d9:d7:e4:46:
30:e6:02:43:c2:e1:62:af:87:a1:80:a8:9a:db:d2:4d:19:64:
d9:93:0a:67:d2:19:dc:68:0a:6a:be:da:0b:d2:8c:fd:f1:dc:
54:ec:d2:c5:2f:10:a7:dc:4d:54:2b:b0:3e:5a:1d:24:49:c2:
86:e9:86:10:41:f2:97:15:60:37:8a:1d:f7:ce:af:d8:e1:e5:
07:81:01:3d:10:a2:c7:25:97:fe:95:0a:0d:ef:a0:71:9b:5d:
4d:35:a4:b9:4d:ce:c8:f0:c5:7c:3b:86:6b:42:57:ae:f6:ca:
c1:08:2d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org