Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kb5lK5J7V1ODE4YWIb4S39jZek8.roa
File: Kb5lK5J7V1ODE4YWIb4S39jZek8.roa (raw, json)
Hash identifier: /NyHMr9IFAmKtM0Z704ToJBxMfoK/QSQiJLNQ2xeSRE=
Subject key identifier: 29:BE:65:2B:92:7B:57:53:83:13:86:16:21:BE:12:DF:D8:D9:7A:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CA9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kb5lK5J7V1ODE4YWIb4S39jZek8.roa
Signing time: Sun 07 Feb 2021 11:44:28 +0000
ROA not before: Sun 07 Feb 2021 11:44:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3241 (0xca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=29BE652B927B57538313861621BE12DFD8D97A4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:75:83:66:fc:b5:3e:5e:ef:f9:97:3c:c4:
a0:96:e6:cf:3f:95:e7:4a:62:93:88:8e:4c:e7:ab:
a1:1c:29:d9:be:20:93:35:b1:9e:7e:bd:2c:40:53:
4f:9b:7e:3a:3e:7b:cc:3f:13:d3:fc:4d:1e:11:88:
77:c6:32:93:ca:bd:1a:d5:6d:a3:dd:88:be:7c:60:
e5:33:89:c7:63:3e:d3:22:7d:6a:07:de:2d:80:a7:
6a:e7:dc:f4:dc:15:a2:da:80:22:99:c2:79:1f:b3:
eb:99:7a:a5:26:b5:02:35:a6:f9:36:15:4f:89:9b:
a9:e5:fa:21:f2:5f:8a:6b:6d:fd:14:43:b9:35:05:
b3:b3:f4:ec:42:a0:00:f4:a9:46:7c:dd:f7:da:2c:
e4:22:73:d9:7e:b3:e5:5d:ea:c8:bb:9a:de:26:ad:
69:13:c0:1d:1e:61:85:ff:c3:3b:6c:00:d7:0d:9f:
78:b2:a6:f9:ac:27:90:13:20:0c:7a:a9:0c:52:14:
2f:e6:d2:ec:f8:80:14:74:a2:9d:0a:86:c1:87:21:
e0:c8:66:09:ec:4d:e5:82:29:77:5a:83:cd:f8:f2:
7e:4a:5a:a0:63:55:9c:b9:82:39:54:de:46:88:4e:
d9:ee:84:99:78:ca:7d:ae:84:98:7e:74:33:7e:0d:
aa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:BE:65:2B:92:7B:57:53:83:13:86:16:21:BE:12:DF:D8:D9:7A:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kb5lK5J7V1ODE4YWIb4S39jZek8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
69:13:16:c9:7c:b5:ed:d6:76:62:23:b1:74:88:5d:d7:52:8c:
73:e2:d9:6f:30:02:66:38:31:4a:9a:d8:19:43:32:4a:a1:21:
df:ce:07:76:18:70:81:53:07:62:a2:6d:ff:79:8a:26:6b:d8:
8e:78:26:be:e1:7a:6e:26:35:0f:4c:e3:0b:e4:fe:51:6a:d0:
24:f0:61:59:aa:2f:fe:9d:cc:9f:81:c3:f9:09:02:fb:67:d9:
17:94:3b:13:a7:9f:0b:ea:76:9e:c7:a9:11:14:a1:33:a9:df:
02:4e:7f:8f:f0:dd:4d:b4:c6:03:06:7c:71:24:5a:ce:e0:eb:
ab:35:71:09:c1:8b:85:a2:cb:2a:60:30:40:4d:d2:7b:07:d4:
9f:0d:2d:c5:0d:7a:84:d9:4f:88:8c:2b:ab:1f:2a:e0:d8:bc:
e8:55:31:c5:ee:09:70:18:9b:f2:99:4f:c9:4e:97:ef:3b:b9:
ba:83:3e:7d:7c:25:46:f0:3f:45:75:58:21:4b:b1:e4:8f:f4:
3b:1c:ce:74:78:93:64:a3:cf:54:e0:1a:f4:78:21:3e:c4:1b:
54:db:aa:15:87:9d:b3:fa:e5:6d:2c:f7:ed:d8:ed:f0:22:fb:
19:52:45:23:11:78:f6:14:f3:3a:69:f3:11:6c:64:31:a5:cc:
51:c0:c9:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org