Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KYd0hGe8q6ZgYUh6dAdGJui2dzU.roa
File: KYd0hGe8q6ZgYUh6dAdGJui2dzU.roa (raw, json)
Hash identifier: iHzkC20J9JGAqIs0ebjwFWkCRW4ADhYQfGFDiiiqKGQ=
Subject key identifier: 29:87:74:84:67:BC:AB:A6:60:61:48:7A:74:07:46:26:E8:B6:77:35
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0854
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KYd0hGe8q6ZgYUh6dAdGJui2dzU.roa
Signing time: Tue 29 Sep 2020 09:51:55 +0000
ROA not before: Tue 29 Sep 2020 09:51:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2132 (0x854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2987748467BCABA66061487A74074626E8B67735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:81:ec:24:95:1b:be:fa:6f:2c:37:af:5c:3a:
8d:2f:8a:b4:b8:7a:81:4b:30:fa:50:ff:00:83:ec:
78:7f:1a:bb:4e:72:77:fc:48:9f:b0:30:46:d7:31:
7d:2b:02:21:e4:53:e2:b4:84:1d:61:e9:9c:23:81:
ee:a8:65:1e:64:7c:b1:50:c8:0e:f1:cf:5f:9a:7f:
18:20:dc:a7:d0:ea:8e:4a:81:17:e6:6c:3d:f7:54:
4e:d2:63:fa:e6:73:99:86:4e:08:9a:79:00:db:20:
9a:de:8c:24:55:71:6d:28:26:3e:f2:e9:cc:70:90:
23:fd:1c:67:f1:03:23:9e:49:95:7c:41:ad:19:27:
8b:29:33:ce:19:0a:01:be:ee:fd:5f:82:e5:da:60:
8a:9c:44:40:64:8a:f1:f4:fd:7d:4f:58:26:4d:de:
36:4d:3d:8e:86:0d:8d:45:e5:c3:95:2e:94:72:3c:
85:c6:18:c5:5e:79:06:d4:bc:ae:bd:6d:28:7f:66:
a4:5b:64:24:c3:17:a8:e5:4b:b6:cf:af:b2:16:88:
a7:e3:03:c0:d4:32:f4:c2:e2:7a:66:a5:40:bd:af:
23:85:a9:49:b0:ae:69:1f:8c:7c:a4:c9:d2:cb:04:
87:6e:83:10:83:bd:36:cf:5d:2d:b1:86:9f:b7:2f:
eb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:87:74:84:67:BC:AB:A6:60:61:48:7A:74:07:46:26:E8:B6:77:35
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KYd0hGe8q6ZgYUh6dAdGJui2dzU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.128.0/17
Signature Algorithm: sha256WithRSAEncryption
61:cd:f1:05:67:52:a0:a1:14:2b:40:8f:98:88:93:09:a0:85:
8f:0d:af:3f:9e:73:2b:21:76:0e:99:a2:9d:de:87:7d:e2:93:
fd:2b:23:f7:a8:84:23:93:c6:75:19:f0:ea:dc:2a:dd:e2:b5:
04:12:3a:f7:75:03:db:eb:0d:63:3b:3c:ad:3c:b4:b5:66:c9:
0c:23:f2:97:5f:88:17:3c:08:7e:04:1f:8a:f9:02:af:cd:1c:
1c:00:fc:4a:78:b2:b8:29:51:52:86:1f:88:1a:c3:75:eb:9f:
48:96:77:24:21:0c:91:9c:df:75:41:62:08:66:7f:1a:e7:0a:
46:a1:71:14:c1:f6:bb:90:75:04:a3:75:63:00:57:dd:ee:0f:
5a:0f:6d:8e:81:67:e9:4f:0b:0d:23:82:0f:a4:72:8e:d6:1f:
9a:0c:cd:2f:1a:24:a7:97:49:96:74:96:aa:91:34:41:b1:81:
2e:ef:ce:33:62:8e:2d:ae:df:42:61:d8:6f:41:17:43:18:15:
8a:ae:7a:84:15:9c:4d:dd:9f:e4:2a:36:7e:e8:0b:bb:de:74:
75:57:54:30:b1:3e:f9:5d:50:9b:bb:09:6e:ae:c9:6b:93:3e:
15:1a:b7:a0:56:b1:c5:5c:15:38:ca:f6:bf:5b:21:f7:ad:aa:
46:78:f1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org