Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ISZp9-IIPcg7GG3W6sdsvOSQPyM.roa
File: ISZp9-IIPcg7GG3W6sdsvOSQPyM.roa (raw, json)
Hash identifier: 7C9epi1OSc89ZSEoCRXzX8VBohrkv6Bu4mP3ukmMjyU=
Subject key identifier: 21:26:69:F7:E2:08:3D:C8:3B:18:6D:D6:EA:C7:6C:BC:E4:90:3F:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BF3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ISZp9-IIPcg7GG3W6sdsvOSQPyM.roa
Signing time: Sun 07 Feb 2021 06:42:41 +0000
ROA not before: Sun 07 Feb 2021 06:42:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.68.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3059 (0xbf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:42:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=212669F7E2083DC83B186DD6EAC76CBCE4903F23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:19:b3:c1:91:14:15:26:b9:6f:c2:e2:93:
eb:52:c3:bc:55:21:f0:50:6f:43:13:48:d4:87:fa:
30:87:a3:ef:66:ec:6b:d9:7c:6f:28:5b:46:13:de:
6b:3f:6b:85:6d:c1:c1:dc:6a:40:f2:0c:43:d5:9c:
83:fe:2f:3a:68:aa:b8:7d:1b:0a:77:35:6e:3a:60:
b0:d4:5c:a8:c9:7a:09:77:a0:71:26:4b:7f:83:8b:
0d:c2:be:ce:0e:00:0f:ee:96:ae:72:90:c9:86:82:
ee:f4:7b:58:27:b2:b8:4b:25:ef:a0:48:a9:c8:d0:
55:d8:20:dd:d9:a0:46:b9:02:d0:3c:a0:45:f8:80:
22:71:04:f6:11:de:38:00:6d:ab:b4:8e:02:49:6b:
25:1a:57:04:65:b0:0a:1d:17:2a:07:39:d6:d1:60:
a3:b6:99:e6:e9:5c:25:77:2b:c5:eb:47:a3:50:55:
a0:8e:d7:9a:ad:c3:d3:c4:21:3a:6f:18:e6:01:16:
da:e3:31:4f:a4:49:c1:76:35:0f:c5:81:ee:55:a0:
a3:72:10:8c:44:fd:38:37:5c:df:ad:74:57:a5:17:
9b:40:22:b4:ff:bc:e3:a3:9d:07:a4:88:ba:8b:58:
57:f7:c5:9a:ba:fc:ad:5d:88:3f:0e:ed:5d:32:27:
a2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:26:69:F7:E2:08:3D:C8:3B:18:6D:D6:EA:C7:6C:BC:E4:90:3F:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ISZp9-IIPcg7GG3W6sdsvOSQPyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b5:7d:ce:e2:fb:8d:52:14:3c:c3:56:c5:44:02:16:95:f9:dc:
1f:86:0e:be:41:5e:d5:d4:0c:94:f9:c0:07:ab:e6:db:1f:c9:
da:e3:18:0a:a1:72:ce:70:93:a3:78:cf:96:6a:61:a7:7f:df:
10:24:51:a0:81:e7:e0:7f:40:66:7d:91:72:0a:9f:00:02:dd:
ae:04:de:c2:0d:11:2d:14:e2:bf:41:c8:06:d2:45:74:6b:fa:
f5:6e:97:c2:66:88:42:df:79:b9:de:c3:a0:e0:e3:b4:92:5b:
8b:2a:4e:d7:11:1e:fc:90:25:9c:2e:3f:07:80:7e:50:5a:8d:
48:ad:7a:36:6a:e6:5f:de:a1:0c:6b:34:9b:9f:e0:13:91:27:
fc:60:34:b6:da:7d:a9:74:40:66:0e:b6:28:e1:ef:a2:f1:dc:
39:d9:f6:fa:5f:b2:01:98:f6:09:9e:d4:17:b1:bd:cc:5a:ce:
12:1d:bd:55:ad:e3:43:50:52:69:99:27:10:f2:d2:65:d8:d3:
95:37:32:9c:ca:b8:5f:8d:78:48:68:7f:f3:0a:9e:6d:9e:49:
16:8a:f4:72:38:60:29:62:4e:39:37:0f:1f:03:eb:4a:45:c9:
96:aa:53:73:76:6c:1f:dd:ed:42:f4:2a:57:a6:7f:fb:da:3b:
b6:1a:3b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org