Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GnvRq-x_qSxIBrqq2T3ghracqfA.roa
File: GnvRq-x_qSxIBrqq2T3ghracqfA.roa (raw, json)
Hash identifier: jFsZP3csPwgWRdn10jQrQLPLxB0FG5wAd9dZI9krbrY=
Subject key identifier: 1A:7B:D1:AB:EC:7F:A9:2C:48:06:BA:AA:D9:3D:E0:86:B6:9C:A9:F0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EB2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GnvRq-x_qSxIBrqq2T3ghracqfA.roa
Signing time: Wed 29 Sep 2021 02:43:52 +0000
ROA not before: Wed 29 Sep 2021 02:43:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.205.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3762 (0xeb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1A7BD1ABEC7FA92C4806BAAAD93DE086B69CA9F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:24:04:b3:32:b6:ca:41:1d:65:c9:09:f2:b1:
8c:50:39:c2:53:6c:99:3d:da:94:0a:02:f8:95:f4:
27:81:c9:88:07:85:32:95:47:1c:6b:6f:0c:f7:6e:
35:4f:a0:70:bb:db:dd:78:15:fa:c7:d3:ec:da:a5:
db:77:72:15:0a:bb:2d:66:cd:6a:04:cb:26:a6:1c:
51:d1:12:26:b3:ba:74:75:f2:0e:8a:9e:d3:df:f4:
d1:f9:95:06:4d:f8:37:9e:ba:49:7c:97:28:c9:31:
46:2a:6d:ce:08:d0:a9:ee:c6:27:fa:57:2e:8c:c1:
93:22:41:4d:67:9c:21:58:de:b4:03:4b:13:4e:c0:
42:bb:ea:a1:56:b0:7c:03:2d:96:28:61:6f:5f:8e:
ec:82:34:ac:c4:a3:59:35:23:c1:d2:ec:43:b1:9b:
de:33:13:64:26:91:e5:0c:7a:48:08:54:e6:06:82:
74:86:bc:a3:bd:bd:b3:98:6c:79:cb:01:6b:07:43:
4a:33:f7:79:f6:38:6a:70:1b:b5:22:72:f7:c9:28:
98:6f:97:19:c1:cd:76:1a:d4:b4:39:9a:e7:b7:3a:
41:32:69:af:85:2d:8e:e5:54:ba:a5:f2:cd:db:71:
9c:64:ac:ab:36:48:c1:60:71:b9:cb:ed:f4:e9:80:
0e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7B:D1:AB:EC:7F:A9:2C:48:06:BA:AA:D9:3D:E0:86:B6:9C:A9:F0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GnvRq-x_qSxIBrqq2T3ghracqfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
35:bc:17:68:90:cd:33:10:20:e3:81:d6:d8:4a:cd:df:67:a3:
01:cc:0f:ab:9a:11:8f:7a:e9:2c:9a:92:40:b7:61:29:da:eb:
ec:4a:c2:b8:59:63:e4:f3:b6:8a:29:a2:a0:0b:1b:71:c8:0c:
fb:07:7c:1d:94:1c:16:24:c5:38:af:35:6d:fa:44:4b:5e:c8:
a6:69:b8:61:2e:35:6c:7c:6c:ae:33:13:d4:02:d0:94:64:bd:
94:5e:4c:c0:37:62:62:d9:1c:53:79:d7:8c:f3:6f:02:e8:5b:
d4:10:35:d2:b6:1d:f1:b6:18:b0:a9:ab:22:d7:c6:34:06:7f:
a7:94:ff:47:c2:f0:74:b8:e8:78:dd:2b:50:6a:c9:97:90:74:
d9:75:d6:7f:7a:70:d0:c5:fd:96:ea:ff:1f:4b:a0:77:0f:f9:
10:41:d2:1a:b4:c1:48:6e:22:54:c4:5f:62:59:23:7f:e8:f5:
c7:80:aa:21:d2:f7:d3:01:3e:3d:4b:62:e8:0e:ef:9c:00:f5:
b1:14:ce:82:ca:7f:ce:bf:2a:f7:74:28:cb:71:8c:af:02:e7:
4e:22:bc:7f:a8:e2:a5:2b:ce:05:45:9b:8d:a5:0a:44:c0:e3:
e0:cc:52:79:f5:57:ef:3f:d3:89:0a:b1:85:7e:0b:1d:09:f0:
dc:23:4c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org