Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JesNASt6JPslhHM2KYgvNkhj7fs.roa
File: JesNASt6JPslhHM2KYgvNkhj7fs.roa (raw, json)
Hash identifier: L/n/PR6AHntGZJRa0/lqXZTrb2F2gSofRqYRDIRRD38=
Subject key identifier: 25:EB:0D:01:2B:7A:24:FB:25:84:73:36:29:88:2F:36:48:63:ED:FB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E1B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JesNASt6JPslhHM2KYgvNkhj7fs.roa
Signing time: Wed 29 Sep 2021 02:43:12 +0000
ROA not before: Wed 29 Sep 2021 02:43:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3611 (0xe1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=25EB0D012B7A24FB2584733629882F364863EDFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:72:1a:73:93:9f:77:d1:3d:99:11:34:91:b8:
ef:5b:ea:75:27:2c:72:7c:a7:e6:99:16:9a:45:14:
15:b2:69:3a:05:32:24:a9:94:c2:07:cc:8a:3d:b2:
42:a1:96:e2:4d:28:e0:99:b5:c5:db:3b:ff:6d:b3:
2d:49:eb:2f:09:b0:f0:02:27:94:d1:5c:fd:78:3c:
67:5f:cf:07:51:27:d8:a2:a0:dc:83:d2:25:4e:9c:
a8:0f:f3:87:e8:92:a7:6a:80:51:5e:2c:ba:0c:03:
d4:c9:df:3e:b6:c1:19:e7:bd:c1:fd:7d:ae:e3:30:
db:93:06:f5:d4:22:17:5a:eb:27:28:b9:fd:c5:66:
4d:af:df:28:1a:9b:76:b5:32:0d:0f:7c:9c:f3:fb:
e0:d0:22:49:c1:13:8e:6a:3b:3a:73:78:39:1a:e9:
e3:40:fc:f9:86:b6:1f:03:2b:c5:8a:8c:a0:ad:9b:
5f:72:52:d4:7d:79:90:a7:28:4e:5e:c9:98:e2:d2:
34:d8:af:0d:13:40:b8:8d:02:cb:f0:96:e1:c4:f6:
cc:79:11:54:4e:fd:81:87:b7:76:05:4a:7e:72:12:
7e:01:2b:21:42:1e:5e:a8:2f:fe:03:ca:28:bb:35:
2a:0f:31:8d:5f:45:22:8b:5f:64:c8:35:51:79:42:
02:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EB:0D:01:2B:7A:24:FB:25:84:73:36:29:88:2F:36:48:63:ED:FB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JesNASt6JPslhHM2KYgvNkhj7fs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
29:e8:74:91:e0:cc:2a:8d:cd:e4:45:42:f0:d0:14:af:44:f7:
b4:51:ee:95:99:d2:48:35:5e:bc:18:36:ad:b9:28:f6:b1:c6:
2d:c0:dc:6f:f6:c3:78:9a:1c:bf:db:e0:59:53:2d:df:5c:bf:
99:8f:e7:12:57:d5:0c:7e:21:84:21:59:60:d0:29:f1:77:12:
2a:21:af:cd:f4:a0:19:87:e4:10:83:92:dd:0c:f0:80:88:bb:
d2:f9:74:1c:f5:c8:a0:6a:c9:5c:0a:00:b0:13:2e:eb:c2:57:
bd:58:bd:ab:0c:2f:1c:c3:46:b8:38:d8:32:7c:dc:6b:fa:4d:
e7:2e:45:a2:84:5c:d4:9f:30:7d:2c:aa:6e:99:1f:46:27:01:
15:ef:b3:06:aa:76:e1:44:7c:c3:29:3b:3a:a6:6d:52:29:c3:
eb:9c:2d:05:91:ad:d9:32:4d:b7:ba:84:12:1b:c3:f2:f8:4e:
60:2f:32:2d:25:e0:93:c0:fa:78:29:9c:ea:97:dc:b1:c5:68:
8c:b2:eb:0a:66:87:11:b9:40:a2:f6:bd:12:d6:88:84:69:61:
b3:2d:2a:60:81:32:3d:71:a0:d1:52:02:34:ec:70:b1:f4:75:
c9:e2:3d:f7:bc:8c:56:26:34:6b:62:72:dc:86:64:ef:74:d4:
6c:42:2b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org