Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FzJWWP3h_TJBvRb2rs-Jdb0VxIQ.roa
File: FzJWWP3h_TJBvRb2rs-Jdb0VxIQ.roa (raw, json)
Hash identifier: ZFysbmZp4hZSU02CIwoyv3iQnjPO4njKmdb1sL/XZDc=
Subject key identifier: 17:32:56:58:FD:E1:FD:32:41:BD:16:F6:AE:CF:89:75:BD:15:C4:84
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C59
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FzJWWP3h_TJBvRb2rs-Jdb0VxIQ.roa
Signing time: Sun 07 Feb 2021 11:43:00 +0000
ROA not before: Sun 07 Feb 2021 11:43:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3161 (0xc59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:43:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=17325658FDE1FD3241BD16F6AECF8975BD15C484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:47:91:79:f0:7e:59:21:bd:30:1b:83:85:aa:
86:a5:ca:9d:b6:6f:bf:48:ee:e4:c8:ae:51:02:22:
ef:06:d8:9a:fb:84:d7:ea:f2:97:0a:74:73:35:4b:
5a:32:5a:fd:77:16:57:fb:d8:ce:32:d7:35:d9:f6:
57:d4:e5:34:50:dc:df:63:52:c7:aa:e8:a5:cf:7f:
f9:95:31:18:1e:be:9c:27:ac:7d:6f:78:38:cf:e9:
3f:81:30:41:8e:3f:e1:35:fc:a9:e8:3b:f3:dd:13:
71:74:44:40:34:ae:7c:92:b2:6f:a7:71:96:d3:19:
8e:9c:ab:44:47:de:e3:6f:77:a7:c7:28:4d:3c:79:
d2:88:91:74:7e:de:c6:b1:e9:77:08:29:3c:e0:7c:
10:3f:d8:e9:58:83:02:79:83:4d:e0:f4:20:65:e5:
ee:b6:f3:0c:4f:26:ae:d9:44:a2:11:c5:4b:04:d5:
45:78:08:77:e9:05:42:0d:7e:f6:3e:6e:48:23:ff:
bb:89:22:67:93:50:71:43:69:1a:80:43:6c:8f:e1:
82:73:88:c2:cc:22:2a:eb:81:ba:d6:00:77:6f:57:
b2:b3:10:88:72:f2:54:fd:9b:7e:ff:69:6e:28:a9:
84:26:0c:5e:16:ff:14:52:f6:3d:77:6c:bd:e5:cf:
e8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:32:56:58:FD:E1:FD:32:41:BD:16:F6:AE:CF:89:75:BD:15:C4:84
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FzJWWP3h_TJBvRb2rs-Jdb0VxIQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.128.0/17
Signature Algorithm: sha256WithRSAEncryption
88:df:81:a4:59:70:c9:56:8a:85:be:31:41:99:b9:51:4c:9d:
0a:1b:92:88:b7:8d:08:f2:58:5e:0d:76:ec:d3:11:18:ab:0c:
1f:17:12:e9:cc:0c:b1:51:b9:66:b8:aa:8b:ad:e0:7a:a1:57:
25:c0:23:bf:9a:cc:f9:79:66:7c:f5:5a:2a:09:41:71:c3:8d:
fc:10:08:aa:c9:d7:73:5b:46:65:82:d9:be:c6:c5:9a:f0:31:
c2:7a:39:5f:1e:44:46:f4:58:a1:d9:3a:3a:ff:40:b6:25:5c:
f8:51:e8:05:6c:c6:96:dd:64:c8:bb:ee:c2:c4:27:a4:93:42:
5b:45:f2:92:b2:61:fe:10:72:5e:0b:73:56:bb:79:f2:8f:4c:
5d:db:98:6e:e4:2e:3b:45:a5:e6:25:48:4e:b9:76:ff:de:38:
a2:53:e3:53:ff:53:16:9a:84:81:92:a2:74:2c:2f:8f:07:d3:
63:91:99:f9:b1:9f:31:78:60:67:8a:1a:c8:7c:24:6e:85:0f:
50:08:fa:a4:d4:4a:89:3d:da:a4:91:2a:b6:fa:d3:02:ef:e1:
c2:97:ed:9c:8c:47:48:68:d9:c5:77:62:b1:77:79:81:39:57:
4c:4f:f8:34:dc:7f:37:5b:8c:c6:20:42:26:f6:8b:12:19:64:
28:cb:3b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org