Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IeIo8XncJcCgawagIfWI7gcWBx4.roa
File: IeIo8XncJcCgawagIfWI7gcWBx4.roa (raw, json)
Hash identifier: X2OwkF+dYYN9zU7wEJCLb7JQvoclxFUEN84EvDPxOAM=
Subject key identifier: 21:E2:28:F1:79:DC:25:C0:A0:6B:06:A0:21:F5:88:EE:07:16:07:1E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E2E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IeIo8XncJcCgawagIfWI7gcWBx4.roa
Signing time: Wed 29 Sep 2021 02:43:16 +0000
ROA not before: Wed 29 Sep 2021 02:43:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3630 (0xe2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21E228F179DC25C0A06B06A021F588EE0716071E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:44:ea:59:81:d2:bd:00:3d:93:ff:1d:bf:
c9:1e:ca:ce:b0:ad:c2:2e:69:a3:24:6a:28:16:b4:
17:66:a8:d9:45:cb:ac:ec:1a:29:2f:7a:9a:ed:0c:
8d:12:69:4c:57:7f:7a:d4:83:15:dd:3a:29:63:02:
c1:02:22:00:2f:23:92:09:85:5f:52:3a:46:3c:de:
34:2a:80:0a:b3:67:fa:53:cf:72:63:af:c4:6a:c3:
a0:17:45:4c:43:23:49:e0:bf:95:70:14:34:3c:d7:
7a:bb:a7:96:b4:e9:15:c8:05:ff:3c:cc:55:c8:9f:
e1:01:11:71:55:72:f7:96:83:6a:76:d1:36:0b:bc:
ba:15:31:f7:a2:60:23:e9:33:0b:d2:cf:a1:85:47:
9d:3f:7b:e2:e9:a6:1c:a1:12:db:fa:6f:13:d5:e8:
8f:97:4b:94:82:f7:1a:8b:17:dc:41:6c:3b:0f:8f:
84:51:df:98:c0:c7:1c:8e:d2:7f:c6:fa:81:bd:32:
cc:05:d5:b8:e9:fa:17:4d:8a:6e:6b:5c:63:37:de:
6d:df:7e:ac:ee:91:24:1c:cb:3d:0a:39:2a:e3:0e:
7a:01:40:7f:58:36:69:77:8f:90:4a:30:e5:1f:3f:
a0:63:40:56:a0:8f:87:ab:ea:dc:c8:88:ae:7e:1c:
5c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E2:28:F1:79:DC:25:C0:A0:6B:06:A0:21:F5:88:EE:07:16:07:1E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IeIo8XncJcCgawagIfWI7gcWBx4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
56:f9:45:d6:e9:00:1b:2e:2d:75:f0:71:3e:17:c5:be:4f:a3:
00:0a:04:15:e4:67:05:fe:64:49:76:eb:cd:c6:79:4f:a4:44:
9f:ca:3c:50:ca:87:97:d9:e4:4f:6a:ce:99:48:4f:7b:7c:5e:
ca:b8:da:ff:d6:00:7b:32:49:98:c8:de:85:ef:3c:41:f8:a9:
51:01:db:1e:f3:ba:0b:db:6a:c2:c9:aa:06:2d:c9:d8:52:43:
fc:8e:e2:d3:81:9d:f7:51:c0:de:c5:38:32:c3:07:72:8d:ad:
54:b9:3d:48:14:5b:dd:32:da:5a:8f:5f:7f:14:35:ab:d2:cc:
42:4c:bf:5c:14:6d:6e:b2:bb:83:08:40:85:37:d9:26:d8:89:
bf:e4:ef:66:5e:9a:6e:1a:93:5e:df:ea:72:16:3d:9b:e5:b2:
e4:58:0f:e3:83:7e:14:45:3c:b1:40:c9:ef:81:51:60:5a:43:
dc:1e:c7:3e:81:47:1e:0d:e4:98:98:b9:a6:4b:c7:d0:5d:51:
39:7c:1c:24:db:f5:49:d7:aa:05:0e:3e:12:dc:13:1a:23:97:
9f:ba:ce:ec:1c:4e:39:88:d3:ac:03:9f:da:f8:e6:a3:f3:05:
86:b7:7d:f7:53:6a:d2:ec:45:13:15:3f:b5:97:62:5a:3a:3b:
55:bf:dd:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org