Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JtVlxMzVJkhu__C7v9hnyS3Le2s.roa
File: JtVlxMzVJkhu__C7v9hnyS3Le2s.roa (raw, json)
Hash identifier: XtfkkjqL7i730q0fhvTCIRCHHGY8/pREt0pPa4ro9Nw=
Subject key identifier: 26:D5:65:C4:CC:D5:26:48:6E:FF:F0:BB:BF:D8:67:C9:2D:CB:7B:6B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JtVlxMzVJkhu__C7v9hnyS3Le2s.roa
Signing time: Tue 29 Sep 2020 09:52:20 +0000
ROA not before: Tue 29 Sep 2020 09:52:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 221.169.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2225 (0x8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=26D565C4CCD526486EFFF0BBBFD867C92DCB7B6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:aa:76:f5:a9:d0:d5:b3:5f:53:91:1e:08:91:
a4:3f:c5:7f:85:ed:1d:a4:2a:ef:2e:df:86:56:5d:
7a:6e:49:15:25:32:74:ff:fa:1f:75:89:ae:14:bd:
7b:2d:a2:08:db:d8:97:21:fb:dd:c9:18:e4:7a:dd:
cb:9a:74:e9:d9:9e:74:22:e5:a1:a8:eb:9c:5e:91:
11:1e:6f:c1:4d:e6:fc:04:09:6d:d2:d4:86:00:73:
96:46:bf:71:ae:a7:23:14:89:8a:00:98:94:a6:d2:
c7:3f:bf:93:0d:8a:b1:cd:f4:a6:fa:59:7b:1b:03:
4e:7e:2d:74:9d:71:3c:71:59:77:97:71:f1:20:21:
9d:97:34:ea:b6:21:6b:ba:fc:eb:52:40:e3:b2:70:
57:4c:f6:39:73:44:0f:c2:d0:7a:bd:c7:0e:75:ad:
7a:97:49:16:ae:01:35:ba:9a:fd:3a:d3:44:1d:ca:
a1:e5:19:5e:96:81:34:6c:96:1b:81:fa:d4:b3:f8:
ea:0a:fe:48:8a:36:d5:6e:91:67:64:58:18:15:e6:
83:b5:92:b6:9c:90:29:ae:07:12:e0:11:15:d5:ce:
e5:41:74:28:16:f8:bd:7f:54:b4:b9:bd:8e:d3:d9:
4d:02:a7:2e:59:1a:5e:09:91:51:d8:c1:02:b3:db:
67:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D5:65:C4:CC:D5:26:48:6E:FF:F0:BB:BF:D8:67:C9:2D:CB:7B:6B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JtVlxMzVJkhu__C7v9hnyS3Le2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:32:01:52:c6:f9:2d:90:71:e5:83:49:81:69:d1:26:e2:2f:
21:84:b9:b4:33:72:1c:09:b2:b1:77:f2:6d:2c:14:05:bd:7d:
c6:7a:ad:32:e5:1e:f6:59:bd:65:ea:e8:67:df:74:3d:a4:fe:
5f:59:b7:59:37:2d:54:ce:6b:f2:bf:63:2b:c8:95:d0:38:98:
f0:3d:3f:93:fb:ae:4b:f2:a6:e4:6b:76:f5:11:95:13:6a:a5:
98:88:ad:f0:ed:43:61:ac:4a:95:35:93:62:c2:3a:31:b7:e0:
43:7a:55:df:10:10:44:a2:7e:c0:7b:94:ee:c9:34:c4:07:d3:
1c:44:f6:75:af:42:c8:9c:f2:16:3a:28:f2:ba:ca:45:2e:07:
80:8b:aa:28:40:02:05:55:3c:4d:bc:0e:28:cb:e0:98:4f:11:
3f:9b:f6:95:ca:ae:b1:8b:d0:1c:d8:a0:3e:60:4d:bf:32:3f:
f3:03:59:d5:d3:3d:81:d2:83:6a:b9:13:57:6f:3b:9e:6a:4f:
88:47:75:84:f0:0d:c0:5b:1b:93:f0:05:eb:68:d9:0c:fd:bf:
c7:20:4a:a9:d2:ca:5a:ef:7e:79:9b:3b:24:e4:e4:68:84:cf:
fd:01:a8:c2:c5:f5:e8:be:7d:eb:27:33:a1:48:9c:82:6c:dc:
dd:a3:a9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org