Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JXqaxRbuC_JeoFJuvbTYbTrk0Rs.roa
File: JXqaxRbuC_JeoFJuvbTYbTrk0Rs.roa (raw, json)
Hash identifier: zzoHWxGY5rtLafus8BcbkdcTBOkbG0uubhys8GMmug0=
Subject key identifier: 25:7A:9A:C5:16:EE:0B:F2:5E:A0:52:6E:BD:B4:D8:6D:3A:E4:D1:1B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E86
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JXqaxRbuC_JeoFJuvbTYbTrk0Rs.roa
Signing time: Wed 29 Sep 2021 02:43:42 +0000
ROA not before: Wed 29 Sep 2021 02:43:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 112.105.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3718 (0xe86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=257A9AC516EE0BF25EA0526EBDB4D86D3AE4D11B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:8d:38:08:fa:c5:2e:bc:ce:63:11:6a:62:
92:4b:0c:ab:c0:43:da:96:07:eb:33:f1:08:72:69:
b1:8b:19:31:a8:05:c6:f1:c3:90:28:d4:82:34:20:
58:0c:ed:d8:f0:b7:d3:3c:7a:b5:83:bd:ff:cc:e3:
2c:4a:71:75:20:6a:fc:15:ea:2d:9f:c0:74:f7:8c:
a4:5b:01:2c:d2:d0:bd:26:05:82:b8:2e:35:63:c8:
d6:f2:a5:1b:5b:65:1b:e2:3e:e0:a7:90:1a:d7:2e:
45:26:1a:af:2b:dc:c9:89:07:fe:92:15:1a:5c:cb:
80:af:4b:6b:2a:ca:8e:8d:0b:b3:00:69:82:b6:fb:
50:ac:52:99:6b:7d:00:a2:da:ed:4f:03:80:af:73:
b3:b5:f9:45:74:5e:bb:86:0b:37:18:1a:5a:8d:87:
3e:83:36:30:c6:4a:55:31:63:1b:8a:17:b2:8e:82:
45:38:5e:10:71:64:39:d8:84:5d:18:93:86:47:23:
f4:b2:16:c3:d8:a0:c7:ef:55:b5:81:3d:98:e4:a4:
cb:1f:db:03:9b:02:7c:7c:1a:81:9b:d6:51:d8:47:
76:66:48:6b:70:52:ea:50:aa:41:bc:36:78:0a:f4:
a1:35:c5:82:9e:5d:11:1f:ef:70:47:c8:8c:eb:8e:
38:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7A:9A:C5:16:EE:0B:F2:5E:A0:52:6E:BD:B4:D8:6D:3A:E4:D1:1B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JXqaxRbuC_JeoFJuvbTYbTrk0Rs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.128.0/17
Signature Algorithm: sha256WithRSAEncryption
26:fe:46:4e:b3:9b:ca:f2:55:90:39:9c:f5:df:78:30:d9:51:
c0:0f:52:35:6c:a4:f9:0b:5f:d9:d4:c8:72:ae:2f:34:4a:c9:
e9:98:22:df:f6:c2:f9:0f:55:97:c5:59:cd:4c:83:f8:1f:e4:
e0:8a:3f:f7:ab:c0:63:26:89:4a:c6:f3:2c:98:ec:4b:77:22:
e3:d3:9d:65:82:95:79:60:76:05:5a:0d:54:3f:c3:a8:0b:53:
45:5e:62:fd:92:96:a3:36:16:91:77:ab:d4:98:26:5b:40:08:
e8:0a:e5:53:be:62:70:bc:63:ed:52:ac:bd:d7:b8:19:54:97:
67:3b:9e:53:db:47:85:c2:3d:84:87:09:82:6e:6b:24:91:f8:
18:34:76:eb:da:e1:ea:74:aa:39:67:39:c9:37:32:c7:c1:93:
06:45:f6:59:9b:e5:dc:c4:63:76:6c:bb:7c:2c:cf:8a:76:15:
71:d8:d9:b7:e5:39:72:33:43:a8:df:21:f3:76:67:ff:28:b6:
3d:b3:b1:b6:9c:03:87:9c:e0:85:8b:fe:07:1a:4b:54:ad:d7:
e2:57:77:db:11:35:ba:6a:c1:90:1a:c9:05:b3:6e:1b:04:3a:
19:00:a0:49:86:64:d6:5f:3c:d6:4e:8b:06:2f:d7:a1:2a:59:
90:0a:a5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org