Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/K5EtZjaVOUEhD5WaI8izqVn6_8I.roa
File: K5EtZjaVOUEhD5WaI8izqVn6_8I.roa (raw, json)
Hash identifier: R1b28J80G8RhstBkScytPWYQ8RB6YvQtWkhMY9+lD5E=
Subject key identifier: 2B:91:2D:66:36:95:39:41:21:0F:95:9A:23:C8:B3:A9:59:FA:FF:C2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EB8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K5EtZjaVOUEhD5WaI8izqVn6_8I.roa
Signing time: Wed 29 Sep 2021 02:43:53 +0000
ROA not before: Wed 29 Sep 2021 02:43:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.205.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3768 (0xeb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2B912D6636953941210F959A23C8B3A959FAFFC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:cc:7e:d8:35:05:9a:8e:e2:a3:48:77:5f:
04:59:b2:17:da:91:ae:fe:fd:1b:4a:01:1b:88:f8:
22:1c:75:d8:7f:ce:70:4f:34:d2:40:70:11:70:5d:
c3:80:b6:0c:5c:08:3e:4d:c2:47:c8:bd:a8:b9:1f:
fb:fc:6d:7b:88:92:16:5d:b4:23:81:88:75:47:4c:
6f:da:d5:4a:b8:30:c3:7e:2e:c7:53:96:4c:60:ad:
08:86:09:91:af:38:6b:ab:5a:30:91:3a:60:01:26:
78:a3:18:4b:26:4b:74:1a:89:98:9b:5a:89:87:f4:
66:f8:a9:dc:02:3b:51:59:ea:0d:14:bc:17:61:4b:
73:fb:96:b0:20:7e:b9:b2:28:6f:32:2b:9d:52:2b:
42:d5:0f:82:91:90:ca:ee:70:ce:36:d1:11:02:74:
49:19:ec:0e:02:0b:7f:01:3b:93:de:95:f5:a6:34:
a3:f4:df:a9:54:74:c2:32:a2:94:ed:99:d4:d3:1b:
ea:65:4f:5c:b4:3e:6a:1a:b6:7a:6a:e9:b8:06:3f:
24:44:1d:6e:5f:39:bb:ec:13:16:33:6d:6d:17:18:
3e:f9:74:7e:bc:59:24:4e:ab:da:a3:19:53:b3:9e:
34:84:cd:0e:2c:98:f1:3f:17:1a:48:c4:c4:35:80:
b7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:91:2D:66:36:95:39:41:21:0F:95:9A:23:C8:B3:A9:59:FA:FF:C2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/K5EtZjaVOUEhD5WaI8izqVn6_8I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:e7:b5:91:31:2e:43:46:15:e0:3d:64:18:8f:0d:0e:31:8e:
18:98:49:75:05:6b:e9:59:56:72:23:06:87:fd:91:dc:46:66:
c6:26:f2:84:be:0a:10:80:49:4f:46:eb:37:b3:53:82:8a:3c:
2f:43:53:9b:b6:95:96:98:d1:04:7c:98:c8:20:15:c6:1c:1c:
3b:b1:53:5b:30:24:37:53:95:df:83:ee:07:b6:c5:ad:b5:15:
ac:b4:23:56:1d:d7:d7:1d:99:9c:6b:89:5a:f3:99:8a:56:47:
cb:a6:b5:0d:ac:80:c7:fc:bb:04:45:15:05:ff:18:52:88:b3:
0b:27:5e:48:f1:c4:8d:fd:2f:71:eb:2b:b1:b8:56:f4:5f:10:
6e:9a:f8:69:e3:ac:39:f1:a4:c9:03:5a:7e:46:43:d9:da:d2:
bd:58:ea:ab:9e:91:98:93:d4:d8:77:20:43:6a:04:76:dd:00:
ff:a6:23:6b:e0:b6:3d:a6:e7:47:62:f4:e2:ba:6f:4d:34:80:
3a:40:19:f9:3a:6d:74:33:11:4e:ca:37:19:4e:86:8f:22:7f:
f4:28:c4:12:54:87:8e:24:e6:b9:42:04:fc:a0:a7:60:70:42:
e8:fb:0e:69:a3:fd:e7:8a:e8:08:39:98:ed:58:1f:18:bc:b5:
c0:b1:7f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org