Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/L4GyNZrrh2PD1wQYsJ9fumOwh2k.roa
File: L4GyNZrrh2PD1wQYsJ9fumOwh2k.roa (raw, json)
Hash identifier: B9G5+6cXYdSRY/lq8nA3ASVSrfEqCMfmJhRfwhBluV0=
Subject key identifier: 2F:81:B2:35:9A:EB:87:63:C3:D7:04:18:B0:9F:5F:BA:63:B0:87:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BCA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L4GyNZrrh2PD1wQYsJ9fumOwh2k.roa
Signing time: Sun 07 Feb 2021 06:35:24 +0000
ROA not before: Sun 07 Feb 2021 06:35:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3018 (0xbca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:35:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F81B2359AEB8763C3D70418B09F5FBA63B08769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:33:6e:94:6e:68:55:76:79:a2:76:d1:00:da:
59:f8:3e:ce:7f:95:c0:e4:89:20:c9:5f:ec:dc:ef:
27:e0:ed:9e:77:6f:f0:d1:b7:34:89:39:9a:8a:9f:
da:50:19:fe:31:6e:7f:94:62:6b:0b:8d:ec:95:36:
f1:bc:f4:2e:2a:f9:9f:74:6c:f7:2d:cf:8a:69:9c:
b9:72:08:6e:23:26:d5:8c:03:f5:48:de:d3:88:61:
49:02:36:72:c0:05:05:1b:77:b6:4c:53:32:2a:48:
56:09:e5:fa:81:a1:b0:10:a5:f2:e1:e4:b9:ce:6c:
38:fe:57:63:39:cd:f8:46:36:50:a8:3d:22:65:d0:
ad:f0:53:93:f9:33:80:53:d1:41:67:98:b4:54:d6:
4f:dd:62:5f:e0:4f:c4:12:de:2f:4e:67:b9:c9:05:
23:e2:e4:4f:4b:66:ae:c3:6b:9c:16:50:32:ff:bf:
c7:53:b0:30:b8:d2:b0:60:8a:2e:e8:7f:db:7f:65:
21:bb:9a:b8:ef:f8:15:c8:9a:f1:ba:46:87:a1:56:
4d:9a:59:b9:99:a4:46:b0:5f:12:1d:05:91:44:70:
c5:d5:7b:6e:2c:5b:79:33:5f:bd:2d:95:3e:c3:9f:
e9:f0:5c:c2:0c:72:3c:70:01:e5:b9:a4:8d:6e:e6:
5f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:81:B2:35:9A:EB:87:63:C3:D7:04:18:B0:9F:5F:BA:63:B0:87:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L4GyNZrrh2PD1wQYsJ9fumOwh2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
26:76:23:66:dd:e9:04:4c:4f:36:90:90:c4:5f:8b:b2:9d:fe:
f4:ba:ac:d5:3a:b4:0a:04:57:5b:3f:70:fb:85:b8:06:10:2d:
b6:e6:8e:ec:c3:c6:ac:4d:0c:b6:a3:b5:e2:3e:2c:91:84:f9:
59:ef:4f:56:b5:50:86:f6:d6:59:ca:b9:6e:25:14:45:fd:0b:
2f:90:c3:9e:23:94:b7:f0:6f:9d:dd:59:03:5b:87:ff:18:2b:
45:36:55:fe:9f:b3:84:0e:0c:0b:cd:bf:6c:78:fb:8e:7d:89:
11:1f:fa:77:6d:07:85:af:65:0c:6a:a9:98:60:43:ce:d0:17:
61:ce:de:55:45:a9:d9:d9:1f:18:d8:bf:d0:63:df:0a:18:33:
2e:93:7c:38:bf:e6:69:3b:11:3d:28:65:38:42:ad:2b:d0:c6:
d8:4f:d8:0d:7a:12:05:4b:e5:cc:fa:d9:74:7c:cd:01:59:f1:
eb:dd:41:c0:a1:d4:4b:16:f9:a8:10:e2:a1:95:05:5a:34:79:
89:55:a9:18:29:62:8b:40:9f:53:2b:5b:56:dd:7e:88:d9:d7:
b1:13:66:08:cc:0d:c6:a6:24:d7:39:be:5c:ce:3f:82:ef:05:
21:76:04:eb:f4:42:4f:36:5e:a6:ab:15:e7:4b:ff:21:9a:86:
13:7b:a9:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org