Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lo2p2SRl-Xb0yeYhjsX_BqGRSpI.roa
File: Lo2p2SRl-Xb0yeYhjsX_BqGRSpI.roa (raw, json)
Hash identifier: 1F5OmGgEj0wfDUW41mW1KNdn+NlqweBseyfonH5GgGU=
Subject key identifier: 2E:8D:A9:D9:24:65:F9:76:F4:C9:E6:21:8E:C5:FF:06:A1:91:4A:92
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E27
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lo2p2SRl-Xb0yeYhjsX_BqGRSpI.roa
Signing time: Wed 29 Sep 2021 02:43:14 +0000
ROA not before: Wed 29 Sep 2021 02:43:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3623 (0xe27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2E8DA9D92465F976F4C9E6218EC5FF06A1914A92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:b3:03:5c:3f:77:b8:87:a2:2c:b6:b4:a6:
4d:f1:71:fb:6c:ac:6b:3e:c2:21:12:74:76:59:03:
5b:0a:a0:23:22:fd:21:bb:5b:4f:c7:75:8c:7b:3f:
50:f3:9e:92:17:e0:41:f2:58:84:1f:f8:59:60:3f:
2a:8d:7d:a4:11:13:37:53:56:1a:53:02:e2:6d:9b:
73:fd:ee:8d:2f:e4:cc:17:3d:fa:5c:b6:97:d3:1e:
ff:db:aa:79:48:c4:c6:cb:9c:14:3e:91:ca:7b:69:
38:a4:28:2e:52:2b:e9:df:0b:21:1b:61:1c:c3:c7:
5f:ae:76:65:66:0a:5b:36:f4:96:3c:e0:6f:6b:de:
d9:15:1b:c5:7d:4f:c1:89:4b:0d:cb:b5:37:5a:3d:
a7:e9:72:40:f2:ec:99:e0:3b:94:d9:b7:cd:58:51:
54:65:f8:84:d2:6c:44:6c:4d:ef:91:94:0c:99:d8:
e3:49:5e:9d:d6:e8:8c:45:d8:fd:97:18:d4:87:e2:
82:9c:cc:52:4a:75:01:d8:d5:b0:9d:24:a8:71:c0:
da:bb:3e:ea:82:8a:ef:26:86:7d:ed:87:24:46:56:
02:e5:d2:e1:82:ee:3f:5a:e5:35:21:e2:54:f7:fb:
a8:b6:87:a6:1b:93:aa:a4:ff:88:71:59:6c:f2:c4:
4f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8D:A9:D9:24:65:F9:76:F4:C9:E6:21:8E:C5:FF:06:A1:91:4A:92
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lo2p2SRl-Xb0yeYhjsX_BqGRSpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:d1:11:69:a6:59:8c:4b:ce:df:6e:17:8e:39:83:ef:16:83:
ac:e6:38:fc:63:c0:8b:6d:48:a2:6b:3e:a2:86:a7:13:1c:b1:
1c:76:85:f9:8e:10:1d:2f:e3:4c:60:6a:92:48:44:1a:49:e9:
b7:0f:e6:a4:8d:83:bc:b8:53:cf:6d:8d:3f:83:2f:81:8a:2d:
c0:19:fc:61:d6:18:8c:8c:3d:49:12:c1:1f:c6:66:2d:e3:82:
b3:00:d2:13:82:f1:17:3c:0b:82:dd:63:20:7a:97:90:1a:4d:
c7:3c:7f:be:4b:e7:5e:3a:8b:17:3c:42:df:f1:9c:b8:5b:e8:
70:47:61:b4:c0:12:62:bf:4a:e3:32:9f:4e:c8:d0:03:e5:c9:
03:71:f2:ec:6f:fa:c6:9a:ca:6e:5a:f5:46:7e:69:d7:16:39:
9e:58:a8:7b:77:ca:55:4b:53:d7:d2:e9:54:8f:02:5e:91:5f:
2f:89:bd:52:99:89:2c:b9:6e:da:44:4d:c1:85:c5:2b:64:87:
e0:9f:5a:3c:6c:7d:e2:ee:b5:f2:ae:82:0b:73:30:46:40:56:
5b:78:e5:8a:cf:9f:d9:90:bf:fb:95:fe:e0:d8:2e:3d:f7:46:
e8:41:44:d5:c7:30:b2:3c:18:f8:26:3b:0c:dd:ef:7d:97:9b:
8a:de:b9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org