Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeT1rjbWqTyk47DfcKV6czT6Vp0.roa
File: LeT1rjbWqTyk47DfcKV6czT6Vp0.roa (raw, json)
Hash identifier: WcfOenwuEbEZk13XnwEMKE1srgnh1+r8rW9Mgimx8MI=
Subject key identifier: 2D:E4:F5:AE:36:D6:A9:3C:A4:E3:B0:DF:70:A5:7A:73:34:FA:56:9D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DE7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeT1rjbWqTyk47DfcKV6czT6Vp0.roa
Signing time: Wed 29 Sep 2021 02:42:58 +0000
ROA not before: Wed 29 Sep 2021 02:42:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 123.205.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3559 (0xde7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2DE4F5AE36D6A93CA4E3B0DF70A57A7334FA569D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5b:16:cc:cd:ec:b1:a2:57:58:55:c2:99:0e:
72:28:84:ac:bc:f4:ed:10:44:d3:ef:fe:5d:d8:a5:
12:64:94:b4:fd:c2:64:04:cf:0a:29:fb:04:70:5e:
71:d9:f3:08:9d:3b:06:6e:c0:c3:76:46:04:6d:a0:
0d:98:e8:32:91:0d:b9:9c:6a:6f:a4:2f:a9:a5:ae:
28:0c:2c:a5:b8:e2:12:5a:73:a5:75:60:28:32:e8:
14:50:4c:82:26:53:5f:07:bc:80:8a:86:12:2e:af:
7f:cb:e8:cc:2e:da:e5:fe:15:db:a4:ba:e3:1f:d5:
cc:96:9e:91:6f:71:ea:d0:51:d0:75:34:25:b0:4c:
cc:4d:77:bf:bd:44:c4:2d:74:ea:f8:56:ad:70:26:
a2:60:e8:e9:c0:04:74:c5:63:94:fb:69:e9:c8:5e:
c0:f1:c5:b1:30:41:01:86:87:01:58:8d:1c:a1:a1:
09:ce:9e:17:47:c8:d2:28:95:fe:b8:71:d8:98:6b:
4c:44:8d:bc:2c:43:40:d0:87:9d:ae:ef:a2:dd:c7:
20:9d:be:48:9b:17:92:70:f7:46:22:30:b5:27:17:
f8:3a:18:79:b4:c7:b6:e2:ac:a8:29:5e:55:48:fc:
7a:df:49:5a:60:0e:ae:aa:38:49:02:35:56:a7:ad:
f9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E4:F5:AE:36:D6:A9:3C:A4:E3:B0:DF:70:A5:7A:73:34:FA:56:9D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeT1rjbWqTyk47DfcKV6czT6Vp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:7d:44:f9:00:24:2c:bd:75:6f:5e:48:bb:e3:7c:c6:07:13:
a3:cb:bc:6e:58:d7:c1:aa:02:1e:97:58:07:72:14:07:7b:ee:
89:27:2d:5e:54:f3:56:b9:3d:12:47:9b:41:7f:7a:f9:36:f5:
3a:8b:24:f5:c0:86:10:52:36:40:68:10:8a:74:5c:f2:2e:4e:
19:53:fc:71:b8:c1:04:3f:12:54:d1:84:69:24:27:ab:42:e5:
fd:a0:10:14:22:73:0b:e9:a0:46:12:83:57:b6:dd:14:c0:46:
8d:b2:02:57:64:e2:b8:98:0c:b9:30:3a:98:2a:69:72:d8:e9:
b5:61:73:7e:e9:04:2c:38:ea:c9:17:ca:4a:8b:d9:b6:f1:ce:
a9:36:72:76:b8:31:b0:df:8e:d1:3e:f7:8b:ed:96:9d:0d:57:
5e:07:d5:7f:a7:86:dc:69:a4:36:ba:83:20:9e:12:1d:80:77:
7c:cc:73:bd:e9:a2:ab:9d:ac:35:f1:6c:f2:21:d0:08:88:a6:
6d:8e:cc:53:92:dd:ca:27:c1:65:53:23:9e:dd:70:c4:3e:51:
45:5a:ac:08:83:52:d9:40:75:b6:4c:a7:76:9c:8c:bd:1b:29:
cc:d9:b3:f2:30:4f:71:d7:ec:54:71:64:e0:3d:be:6d:8a:8c:
7f:8d:7d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org