Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FnV_3mv4QO1747NO6pj2jy6mgMg.roa
File: FnV_3mv4QO1747NO6pj2jy6mgMg.roa (raw, json)
Hash identifier: tGvr437dZNlBjqpCEvQAsSnEpSwDQCN+ooLKc0nK1J4=
Subject key identifier: 16:75:7F:DE:6B:F8:40:ED:7B:E3:B3:4E:EA:98:F6:8F:2E:A6:80:C8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DFB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FnV_3mv4QO1747NO6pj2jy6mgMg.roa
Signing time: Wed 29 Sep 2021 02:43:04 +0000
ROA not before: Wed 29 Sep 2021 02:43:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3579 (0xdfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=16757FDE6BF840ED7BE3B34EEA98F68F2EA680C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f7:e3:05:04:82:7a:8d:f5:7a:8d:55:66:78:
10:c9:50:f7:1d:0e:43:6f:e0:9d:13:60:a9:12:9a:
c0:a6:8e:65:00:d9:fe:f5:47:4b:56:01:7a:0e:dc:
8f:01:4a:d9:4e:88:ec:a2:fa:ad:a2:fa:b2:dd:33:
e6:95:14:79:84:10:ca:59:01:7d:ef:53:42:60:bd:
e3:e8:3b:6d:1d:92:5d:0d:7d:3a:d8:b3:3f:e1:0a:
84:f5:26:8c:df:88:62:6d:18:75:f7:21:7c:9b:5e:
92:b2:8a:ad:ec:c0:8b:17:71:cb:fe:a9:1a:04:55:
fd:fd:01:cf:6c:94:4e:61:c6:c0:eb:88:46:f5:aa:
91:15:ce:69:e7:ad:ba:af:ff:ca:6a:e4:1b:47:24:
22:fc:5c:4c:c8:d6:f8:ad:34:eb:1e:8c:71:0b:6c:
e5:68:f8:b3:0d:e3:e3:a8:e4:e9:e6:93:ad:35:58:
61:6e:43:14:9d:86:c9:80:a4:6a:dc:6c:a3:ec:39:
44:21:ed:28:0f:34:18:8b:d6:13:31:00:e3:ee:e8:
df:f9:22:ea:30:1c:0b:a4:08:b5:8d:51:8f:72:d4:
91:a4:c3:bd:82:86:57:62:cd:92:4e:39:f7:4d:ba:
78:bf:65:13:ba:bd:3e:37:1c:c1:03:76:cb:32:b0:
b4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:75:7F:DE:6B:F8:40:ED:7B:E3:B3:4E:EA:98:F6:8F:2E:A6:80:C8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FnV_3mv4QO1747NO6pj2jy6mgMg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:a4:08:33:61:a4:a5:75:86:74:1e:fd:7e:f7:2d:82:a4:3b:
70:dc:ad:9f:39:b4:60:dc:19:14:53:37:5e:2b:15:73:b3:4a:
3d:95:2f:57:2d:bf:c9:95:c6:83:fe:45:48:6f:98:c5:1a:b3:
5d:54:64:6f:bb:0b:3b:e9:be:8e:9b:9d:06:da:f1:83:85:ba:
96:b1:ad:0f:48:d8:30:02:4b:c9:d2:c6:96:e9:8d:e1:bc:77:
e4:f4:0a:7e:06:88:03:fd:29:56:dc:c1:d5:0a:b5:84:d7:50:
13:33:fa:1d:a4:6e:03:00:ec:93:ce:9c:ec:4f:e2:14:fb:95:
54:47:e9:b1:07:82:09:ad:fb:33:22:21:6b:ec:7a:ba:ca:29:
bc:52:56:5f:db:25:74:24:de:03:62:db:07:ab:77:21:03:04:
1d:11:a3:66:56:2f:b5:0d:2d:76:d2:f0:36:05:b4:27:ca:0d:
bb:74:50:81:a5:84:38:ce:c9:2a:40:64:4e:2a:b9:93:5b:8c:
1d:de:45:98:0b:ad:7d:aa:05:79:58:a0:d1:89:a2:eb:81:ab:
88:8c:f8:6f:ad:dd:bd:b9:cd:21:6c:2c:b1:41:07:08:99:0f:
a8:e9:c4:d7:1d:55:5f:7e:7e:e5:1f:78:80:de:91:60:2b:e1:
e4:73:c4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org