Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GOvmsqgBLlDcs8oPQ-wKRrjzLIY.roa
File: GOvmsqgBLlDcs8oPQ-wKRrjzLIY.roa (raw, json)
Hash identifier: 0gzppHE5Cc+8K4rDqgxRe94JSw65oDuxjMfC6LOmsxI=
Subject key identifier: 18:EB:E6:B2:A8:01:2E:50:DC:B3:CA:0F:43:EC:0A:46:B8:F3:2C:86
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08F5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GOvmsqgBLlDcs8oPQ-wKRrjzLIY.roa
Signing time: Tue 29 Sep 2020 09:52:39 +0000
ROA not before: Tue 29 Sep 2020 09:52:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2293 (0x8f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=18EBE6B2A8012E50DCB3CA0F43EC0A46B8F32C86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:8e:41:a7:85:3b:4a:d8:34:5d:c8:91:ad:
a1:5d:8a:88:dc:c0:d8:12:86:8a:fa:51:62:3b:47:
75:75:0f:23:c2:98:08:1f:e0:07:ea:9a:a4:2f:bd:
b3:22:e9:17:1f:d2:b2:50:0f:9b:61:ea:68:68:1f:
a3:66:db:12:ff:5a:b3:1f:55:85:7c:49:9b:34:6e:
bf:79:a7:05:77:4d:7c:f4:9f:e4:2d:74:8c:75:02:
04:01:80:24:29:a1:10:bd:58:ee:16:73:38:a5:a3:
57:1b:a5:ea:cb:89:b8:75:ac:f4:bc:32:d3:df:69:
4c:f9:c8:cd:dc:0a:a6:8d:23:f4:14:b5:b1:bb:58:
ae:11:22:78:8b:8d:74:6d:d0:a6:4d:86:9a:8e:3c:
ad:1c:eb:63:57:aa:14:ea:dd:d0:4b:34:5b:e4:13:
bb:be:4e:55:29:92:1e:54:a0:76:41:5c:fd:bb:a9:
df:8a:2d:a1:c7:9b:d6:ae:2a:ec:7a:7f:f2:2e:b1:
cb:66:88:3e:61:4d:0b:e0:b4:28:c7:85:8d:3d:a9:
4d:50:1a:ee:e9:67:c0:3e:4f:ba:34:ec:04:e0:40:
3e:aa:ba:5a:64:bb:3f:ab:ff:51:81:53:df:6d:54:
38:c8:2c:eb:0c:9b:f8:b1:a6:97:0a:37:44:c3:94:
0c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:EB:E6:B2:A8:01:2E:50:DC:B3:CA:0F:43:EC:0A:46:B8:F3:2C:86
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GOvmsqgBLlDcs8oPQ-wKRrjzLIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:96:ef:a3:5d:8f:0e:48:5c:ef:74:eb:11:18:74:3e:4d:c6:
da:c1:85:1c:4e:6a:be:1c:62:42:94:da:7f:7c:a1:d3:21:8a:
38:2d:83:86:0a:6d:1d:1d:c6:d0:eb:cc:13:a2:f9:da:26:0c:
62:69:35:80:d7:3c:dc:50:2f:56:e6:55:3a:b8:e2:fb:a5:a4:
e4:85:55:cf:f7:ff:e1:b0:42:51:9f:88:76:c3:b4:03:33:e6:
0f:61:34:37:31:8c:5f:fb:cc:5c:2a:06:fa:4e:19:65:2e:e2:
0f:ea:8e:39:3e:72:8a:2c:1f:fc:82:16:af:52:d2:e9:fe:08:
a2:36:23:e7:43:bd:04:06:4b:0e:c0:eb:d7:18:13:f5:b8:54:
10:ba:66:53:13:59:7d:b2:fc:32:1f:4a:f3:6d:ca:01:46:83:
5b:3e:7f:3d:bf:52:42:1e:6c:bf:c6:bc:6a:65:f9:1e:5d:6d:
24:64:a9:61:8f:61:12:a1:69:aa:60:56:11:64:aa:ad:8b:2c:
03:35:80:bd:44:b8:d0:53:ec:34:2e:b3:a7:51:e7:82:1c:aa:
33:f0:f6:eb:40:7c:49:a2:39:f7:3e:a2:f4:f5:93:d9:1f:49:
25:e5:20:15:29:54:39:f4:1f:80:66:fb:07:86:ed:b9:89:bf:
ed:b0:bf:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org