Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IX1Manm8RgmIdWx3y57ig1FwjOs.roa
File: IX1Manm8RgmIdWx3y57ig1FwjOs.roa (raw, json)
Hash identifier: QuGSxPtjzrhIx3I1ii4EiW2ujRnv3S14pv90nzNx/VI=
Subject key identifier: 21:7D:4C:6A:79:BC:46:09:88:75:6C:77:CB:9E:E2:83:51:70:8C:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E4B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IX1Manm8RgmIdWx3y57ig1FwjOs.roa
Signing time: Wed 29 Sep 2021 02:43:25 +0000
ROA not before: Wed 29 Sep 2021 02:43:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 210.244.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3659 (0xe4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=217D4C6A79BC460988756C77CB9EE28351708CEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:1f:5b:e9:68:40:1e:7d:c1:f4:da:b1:64:
76:aa:11:5f:31:ee:ff:54:64:70:37:89:a3:48:fe:
60:b4:22:4f:cb:95:0e:15:08:18:56:14:9b:9f:52:
ec:8b:b3:bd:3d:e3:83:82:0d:f1:d6:a6:1f:cc:52:
79:9f:f5:85:a3:57:1c:47:10:fe:99:6d:eb:ae:83:
35:8d:be:22:9f:86:77:be:4b:63:ef:c0:fb:d3:07:
7d:e8:f9:be:20:fe:fc:a0:59:d1:9d:d5:8a:cb:0d:
59:ad:87:7f:d4:5b:7b:ce:24:98:be:49:41:5e:9f:
85:f7:73:64:78:29:15:d5:4e:8f:5f:0d:80:a0:df:
3e:a2:96:ea:b5:22:5e:b8:a7:b4:c2:2f:ec:1b:33:
bc:cc:6d:b4:7b:9d:8f:c8:3f:75:b7:ca:b1:c0:e0:
8f:d9:9c:84:07:2b:7c:46:49:3e:d0:81:fb:bd:7c:
c4:89:d1:0d:1a:2a:e3:8d:e1:1b:3f:2a:9f:24:1c:
74:cf:af:1e:9f:b1:32:a0:24:1b:06:bc:5c:b6:fa:
fc:b7:59:53:ec:1e:3c:8e:21:61:e4:3b:54:7b:4b:
9a:57:ce:32:ac:67:1d:1d:c5:18:33:f7:d0:95:95:
52:11:fa:5e:97:ac:75:85:6b:78:f2:94:3c:99:ba:
da:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7D:4C:6A:79:BC:46:09:88:75:6C:77:CB:9E:E2:83:51:70:8C:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IX1Manm8RgmIdWx3y57ig1FwjOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:37:a4:44:10:45:2f:40:08:88:c2:2e:2d:6f:48:d6:9f:5c:
c0:a8:6c:c1:28:75:cc:51:65:80:b7:61:dd:33:37:cc:8f:a8:
52:c6:8d:ed:d8:e1:87:99:06:a0:7a:03:9d:c9:46:b0:62:b4:
83:03:b9:19:c4:d3:02:27:22:0e:16:7a:7a:3c:93:3d:22:d2:
72:fc:6a:e3:eb:f5:10:58:0d:a7:f5:21:77:98:9a:57:b7:94:
8a:7b:f1:fa:86:b7:34:f8:13:4d:8f:e8:ff:d2:36:47:08:fd:
91:f1:9c:d7:42:f6:45:7f:4b:03:22:1f:42:bc:70:25:ab:a6:
a8:a7:91:d8:83:e6:7d:02:3a:d1:96:24:d5:c9:c8:c2:c3:fc:
a0:ab:e8:8c:c9:2b:ab:43:5f:bb:d7:14:d9:de:d1:a8:43:50:
cd:6e:9d:ed:3c:a1:aa:c0:4e:df:91:45:16:31:3c:be:c9:7b:
88:03:b8:82:8e:82:f4:70:8f:5f:c6:72:82:09:f0:b3:3f:2c:
4c:ac:3a:38:b2:f0:4e:18:c8:6e:bc:4c:8a:80:55:c3:3d:1f:
69:77:d0:a6:47:9e:3e:42:f6:6e:ee:4e:87:56:b0:53:52:87:
16:e0:c5:88:10:8e:f5:09:be:85:64:42:20:9d:2d:2b:fb:54:
cc:75:8e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org