Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/H7NnCM65KhxK-7cDl3018mEbqlo.roa
File: H7NnCM65KhxK-7cDl3018mEbqlo.roa (raw, json)
Hash identifier: CFB3FVnxR0WEmyqfSxQx6EOLtUhPVWOM3k6l8bCwOJs=
Subject key identifier: 1F:B3:67:08:CE:B9:2A:1C:4A:FB:B7:03:97:7D:35:F2:61:1B:AA:5A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C4D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/H7NnCM65KhxK-7cDl3018mEbqlo.roa
Signing time: Sun 07 Feb 2021 11:42:48 +0000
ROA not before: Sun 07 Feb 2021 11:42:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3149 (0xc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:42:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1FB36708CEB92A1C4AFBB703977D35F2611BAA5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ec:3d:4e:de:04:06:69:96:df:95:fa:5b:ca:
d9:25:99:e2:c5:cc:72:2e:cd:80:d2:d7:0c:51:e9:
fa:bd:8f:9a:bd:af:fd:89:d2:47:0a:08:20:06:f5:
02:f6:04:6e:8d:2d:4c:34:c0:ef:f6:b5:69:2c:dd:
1f:11:0a:00:95:e9:de:85:2b:dd:86:dd:16:9f:67:
af:23:60:fd:5c:ce:14:7d:4d:69:de:dd:41:f0:f0:
94:80:d1:aa:cf:18:74:94:d3:67:40:64:f5:e2:41:
40:0c:c3:02:2a:1b:71:ee:7c:02:7f:cf:8c:02:d9:
84:8d:78:1a:83:81:92:7f:1b:d7:86:16:f1:ca:1a:
5d:85:34:88:7a:b7:3e:21:91:d5:e7:fb:e1:bf:0a:
4f:22:2f:c8:55:e0:30:83:89:d1:69:77:ec:9a:63:
51:62:22:3a:e3:d6:4e:9a:8e:c9:14:d3:ac:a8:fc:
56:01:f5:57:b4:de:f1:38:18:e4:24:2e:d6:07:bb:
aa:f8:8c:35:d9:81:1e:b4:9c:1a:76:8e:37:9a:00:
f0:aa:5c:bf:87:f7:3f:75:88:04:b6:02:4e:78:74:
e9:e6:24:76:d3:6d:ed:68:ae:c6:01:7f:4f:27:32:
e5:f9:f9:f7:27:60:97:a7:d2:1d:e1:dc:92:47:08:
8b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B3:67:08:CE:B9:2A:1C:4A:FB:B7:03:97:7D:35:F2:61:1B:AA:5A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/H7NnCM65KhxK-7cDl3018mEbqlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/17
Signature Algorithm: sha256WithRSAEncryption
06:24:92:2e:97:2d:dc:91:24:88:53:7f:81:9f:0d:5c:2b:24:
b6:03:aa:fb:2c:35:b3:9d:fa:e5:7a:62:d9:4e:e3:77:6a:06:
e0:0b:41:65:f4:43:25:c7:af:0d:98:1c:41:9f:0c:b0:63:ba:
e6:8d:72:6f:36:dc:1a:fc:f0:d4:f7:60:73:af:1a:a7:92:90:
49:93:5f:e8:6d:97:ce:bd:51:b7:48:99:1c:0e:9c:81:4f:4a:
ae:5e:50:c2:88:43:0c:02:4b:14:5f:72:6a:d3:24:a2:5d:50:
05:44:e4:a0:bc:6a:5a:9a:34:38:b8:50:df:18:a4:e2:3f:23:
2b:7e:29:4a:bc:fd:ba:fc:8b:d9:8c:7d:e3:c8:6a:05:1c:05:
cc:23:8b:55:8d:82:2a:fb:27:a8:43:23:92:58:92:03:3f:cd:
19:5f:b1:50:f9:24:3f:5a:d5:41:f7:1b:a6:0e:0f:06:25:40:
fc:c4:cb:e7:6c:69:d8:80:4a:fb:a6:79:a7:68:fc:15:81:38:
88:2d:bf:a8:61:b7:81:f5:84:62:5b:11:bd:96:5a:c1:fb:b7:
a6:cc:22:54:ef:ab:4f:89:ff:62:a3:b2:75:fc:da:17:15:39:
e9:89:01:34:34:cb:33:17:28:06:7d:06:88:4d:43:9d:94:22:
7b:6c:a9:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org