Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lglqxb9TfPsLlb0v4yN8FH_G6pE.roa
File: Lglqxb9TfPsLlb0v4yN8FH_G6pE.roa (raw, json)
Hash identifier: ptEwu1/65ZrGE+46TEiS/ToANCbzpEeYuWyf6dw7Vdc=
Subject key identifier: 2E:09:6A:C5:BF:53:7C:FB:0B:95:BD:2F:E3:23:7C:14:7F:C6:EA:91
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B69
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lglqxb9TfPsLlb0v4yN8FH_G6pE.roa
Signing time: Sun 07 Feb 2021 06:18:36 +0000
ROA not before: Sun 07 Feb 2021 06:18:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2921 (0xb69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:18:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E096AC5BF537CFB0B95BD2FE3237C147FC6EA91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:60:2d:84:46:1c:c1:69:78:a1:c9:29:a0:57:
84:d3:dc:1a:75:0b:4a:1a:da:b0:6f:07:64:2e:b3:
8d:fd:66:6a:26:80:a4:13:a8:bf:77:e7:65:07:ab:
b4:62:26:a6:05:a4:8e:3c:62:66:3e:91:0d:ed:70:
50:72:36:5e:c5:30:3a:bd:9f:cc:e2:bb:76:e2:d0:
50:a6:15:c2:60:8e:28:a7:ac:99:fa:21:dc:fc:2b:
3a:66:7d:ba:7c:53:4b:3a:5a:2e:69:2a:51:53:5f:
68:a7:63:8d:b1:50:4e:ce:a2:e8:85:41:55:51:0a:
c0:65:64:46:2e:33:c7:48:8a:56:ef:85:01:8f:5a:
07:00:69:3a:74:25:2f:ba:36:d5:20:51:5d:8e:b4:
d8:e8:97:4f:96:a3:ec:7e:c2:69:00:fb:22:6c:10:
86:dc:76:06:6a:f5:b2:80:37:13:96:68:78:0f:ec:
e8:69:76:ea:70:79:a2:6b:f8:8f:f8:dd:25:fa:93:
20:29:07:90:03:d6:47:7a:31:c8:bd:4d:df:eb:fe:
9e:c2:08:fd:34:41:36:32:18:99:f8:ee:62:07:09:
c6:e8:ac:e6:f1:27:36:59:31:c3:b2:2d:ed:e7:7e:
78:af:a4:e6:91:e4:94:28:0b:93:55:43:d6:cd:f8:
12:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:09:6A:C5:BF:53:7C:FB:0B:95:BD:2F:E3:23:7C:14:7F:C6:EA:91
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lglqxb9TfPsLlb0v4yN8FH_G6pE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:38:6e:86:8b:1d:dc:9c:2a:a4:0b:ad:24:3a:b1:4a:ec:50:
b6:ee:11:c8:34:42:7d:0b:be:e0:37:c5:ca:eb:e0:f9:bc:1b:
ab:35:f1:d5:7a:1f:a3:90:d3:16:2e:b5:6a:41:5d:7d:08:53:
e7:fd:fb:59:2a:8e:bc:87:b1:59:42:69:c9:ea:f6:a0:6d:bd:
1a:ca:66:ab:4b:df:e6:99:83:aa:1e:b1:12:20:05:15:d0:d5:
93:da:4f:b5:f2:2d:44:ac:ad:01:87:f3:14:9b:eb:45:f5:cd:
03:0b:74:06:0c:1c:38:e9:ee:09:cc:44:c7:c2:7e:6a:40:70:
7b:27:c9:26:52:bf:7f:ac:22:b7:13:b4:53:f7:16:3d:74:66:
a7:bc:2d:8f:67:5c:ab:eb:e1:e5:58:1f:97:3e:dd:3b:fb:f7:
3f:11:82:06:4b:a3:a1:38:ef:01:3b:ba:8b:51:17:93:13:d0:
7d:82:8a:3f:cc:91:12:91:7d:ae:ca:cb:50:3e:2a:03:10:be:
f3:b0:a0:07:30:53:40:d6:b7:de:4a:f0:c6:bf:0e:c0:df:52:
3c:36:68:08:39:48:c5:35:7f:ec:e7:cf:78:89:86:91:28:c7:
6b:61:55:ca:9e:c7:c8:75:78:20:72:c8:41:0f:c9:6f:50:c0:
f6:cb:e1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org