Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HpadTfeEkHzf-DY_IBBeGahiKQM.roa
File: HpadTfeEkHzf-DY_IBBeGahiKQM.roa (raw, json)
Hash identifier: Y+pVFHqQuBaR8TrtVOpSMnsHedG5xHM1+GpnYLU/Cvs=
Subject key identifier: 1E:96:9D:4D:F7:84:90:7C:DF:F8:36:3F:20:10:5E:19:A8:62:29:03
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C1F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HpadTfeEkHzf-DY_IBBeGahiKQM.roa
Signing time: Sun 07 Feb 2021 07:03:50 +0000
ROA not before: Sun 07 Feb 2021 07:03:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 175.183.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3103 (0xc1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:03:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1E969D4DF784907CDFF8363F20105E19A8622903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:48:53:25:5c:3e:74:28:35:eb:b0:be:05:cd:
8b:13:a5:ae:6b:87:64:eb:72:f9:a2:f5:3a:69:6b:
7a:e4:0b:45:20:67:4c:f0:38:20:ac:15:08:10:b6:
82:94:5b:52:be:4b:ec:dc:3c:39:50:33:f8:e8:b0:
47:95:c4:96:c2:6e:61:53:45:ab:11:a2:2a:cf:80:
7f:c5:52:b1:ab:d8:98:b4:c7:91:c6:e5:ad:54:2b:
5a:6e:9c:7b:6f:e1:b6:81:25:c6:aa:67:10:ca:c5:
9d:83:bb:4d:2a:71:f9:20:80:12:49:12:e7:91:f2:
96:5e:50:85:23:f9:29:43:15:fd:6b:49:58:70:ae:
e9:11:1b:03:b5:94:97:4a:7b:3d:eb:30:26:16:1f:
f0:a9:19:4b:8b:f7:4c:7e:e5:21:be:0b:21:9e:cb:
df:a0:7e:41:7a:f8:09:86:83:46:ae:70:0a:4e:8c:
58:cf:57:04:fa:0c:46:8b:2d:03:6d:a8:03:2d:32:
1d:d4:db:48:98:fe:29:fb:0e:4e:c6:dd:1d:64:56:
50:d2:4d:c2:ab:11:bf:19:e2:15:df:52:27:13:e9:
7c:20:1f:80:c5:61:c6:ad:8a:db:00:4b:3c:e1:cf:
36:fe:89:57:2f:14:14:d6:5d:7f:68:ce:9a:42:62:
7f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:96:9D:4D:F7:84:90:7C:DF:F8:36:3F:20:10:5E:19:A8:62:29:03
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HpadTfeEkHzf-DY_IBBeGahiKQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.64.0/20
Signature Algorithm: sha256WithRSAEncryption
68:c2:74:9c:5f:c1:19:1d:85:ff:cb:73:ae:11:f6:d4:82:03:
53:04:4f:15:9e:76:fa:2e:b8:32:96:11:51:d3:6b:10:ad:0c:
a4:0c:e0:c9:66:54:17:88:ce:c2:44:10:8a:01:1b:cc:80:e6:
7b:08:b8:80:a9:49:de:ed:18:86:ea:12:fd:70:88:7a:d7:a0:
e1:3d:d5:90:a2:55:5b:32:94:c8:81:77:e0:35:1c:58:60:f6:
d5:63:56:c8:27:60:c1:80:35:c8:eb:6e:72:9b:1a:73:81:97:
75:9d:70:49:4b:77:a5:16:89:3c:84:38:4e:ac:85:93:16:fb:
a5:68:8a:c3:ae:22:26:55:99:28:a6:09:83:3c:04:59:94:7a:
92:44:f7:16:eb:9a:da:1d:89:33:32:6c:b6:91:7d:5a:4c:0b:
05:df:d3:1f:a0:22:25:06:b0:d0:a0:7f:b5:c9:47:35:03:48:
c4:d5:7c:92:af:af:d0:b6:99:1e:16:fc:de:f8:f8:b9:50:bd:
05:02:83:64:12:41:22:dd:7c:e2:28:10:bd:48:4a:81:20:e6:
4d:c2:21:51:94:8f:a5:07:c2:da:39:54:f1:e5:c0:06:9f:ef:
4d:c4:f7:24:3b:90:da:4a:8a:bb:87:99:7b:b0:7b:d3:89:bf:
09:bc:04:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org