Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HTsfC7pQVpwhUVz8J1-I9iQx3Ao.roa
File: HTsfC7pQVpwhUVz8J1-I9iQx3Ao.roa (raw, json)
Hash identifier: R4uWrKQovazLFlkg+2n5cRdozRtEvsDN6W54JcOW9s8=
Subject key identifier: 1D:3B:1F:0B:BA:50:56:9C:21:51:5C:FC:27:5F:88:F6:24:31:DC:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BB3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HTsfC7pQVpwhUVz8J1-I9iQx3Ao.roa
Signing time: Sun 07 Feb 2021 06:30:19 +0000
ROA not before: Sun 07 Feb 2021 06:30:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 112.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2995 (0xbb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:30:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D3B1F0BBA50569C21515CFC275F88F62431DC0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2b:23:14:dc:49:38:2f:d5:80:56:18:d7:5f:
76:87:f4:39:11:de:ad:0f:80:7d:f4:0a:b4:41:02:
b0:90:c4:c4:56:da:9f:2c:c3:2c:96:ef:5d:bc:1c:
56:61:bf:bd:4c:72:a3:e8:63:f6:8a:e8:82:28:98:
99:e5:ff:3a:41:20:9e:c5:84:12:50:89:08:35:eb:
5a:92:f5:6c:ae:a4:76:11:cf:3a:62:fa:8d:96:4a:
9f:75:4c:5e:66:65:09:d2:15:d3:f6:79:2b:0e:1a:
2e:31:4d:bd:12:71:1e:4e:e4:5c:8e:01:ab:09:f3:
35:70:f5:28:b0:49:28:a1:9b:13:a3:19:0b:c3:2b:
03:a5:cb:6b:02:13:47:71:ae:f6:0a:69:0a:27:7f:
f9:5d:87:6c:77:63:af:7b:ce:3f:3f:af:c1:85:67:
7a:34:cb:51:f6:1c:4b:5c:2b:16:d2:7a:8d:7b:e6:
2a:1f:6d:aa:e5:50:48:68:2a:01:b1:90:37:af:51:
dd:8b:e3:dd:76:fa:1f:6c:05:19:42:0b:b0:17:72:
94:b3:86:f3:00:85:65:19:e9:5f:06:e4:38:bf:2b:
a9:4e:5a:ca:ba:78:78:c7:e5:be:2d:d0:cc:e5:d7:
d3:54:27:ec:7d:0a:3c:1d:5e:a7:c2:04:5e:01:f2:
d8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3B:1F:0B:BA:50:56:9C:21:51:5C:FC:27:5F:88:F6:24:31:DC:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HTsfC7pQVpwhUVz8J1-I9iQx3Ao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
10:dd:d1:7a:4d:41:16:eb:07:49:f3:a5:8e:ec:78:9b:79:88:
64:3f:ca:32:51:83:0f:6e:48:cf:3d:2a:03:d3:d6:83:19:d1:
1a:ca:4c:58:90:e7:55:d1:89:29:41:1c:08:80:3c:7f:e7:7e:
cd:00:0f:20:d3:01:2f:cc:d0:62:1f:9c:d1:c4:d6:0f:3a:6f:
c7:3a:44:ae:2a:14:70:c3:60:c9:0e:70:a6:0c:f3:42:ce:f4:
68:6d:1f:e2:55:dc:63:87:f1:92:e2:09:88:68:fd:72:17:bd:
a7:96:00:23:b1:0c:6c:25:2d:38:73:ba:dc:66:6b:d7:b8:8c:
84:26:e7:99:6e:df:e4:bd:66:b3:a4:19:0b:da:44:95:ef:27:
20:c8:8f:07:5b:9c:f6:75:b3:12:69:fd:f5:ac:e7:d7:58:f6:
4c:32:c1:01:0a:7e:65:d3:f8:3a:fc:8e:7b:55:d6:a6:f3:f4:
1b:d0:4f:28:9a:bc:c9:5c:79:42:29:65:46:d7:8e:94:46:30:
6b:1b:99:ce:a3:7f:df:4e:e5:0a:8d:22:0a:aa:7c:9a:28:48:
f5:d9:77:b9:c0:9a:14:65:88:6b:9e:49:e1:8b:84:7b:4e:29:
c0:34:1a:56:49:81:36:2c:84:d4:11:55:0a:a8:60:5f:0c:ec:
ec:52:7f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org