Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LwIZYZGVZ1BiuaUzHUqIcujPYoc.roa
File: LwIZYZGVZ1BiuaUzHUqIcujPYoc.roa (raw, json)
Hash identifier: Ibpq+HN3x7moL2M76U2kQ/vqxL6nye5jTk1WH5UA0S8=
Subject key identifier: 2F:02:19:61:91:95:67:50:62:B9:A5:33:1D:4A:88:72:E8:CF:62:87
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E81
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LwIZYZGVZ1BiuaUzHUqIcujPYoc.roa
Signing time: Wed 29 Sep 2021 02:43:41 +0000
ROA not before: Wed 29 Sep 2021 02:43:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 123.205.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3713 (0xe81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2F0219619195675062B9A5331D4A8872E8CF6287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d7:d9:46:70:0d:75:3a:90:12:e9:a4:85:92:
07:98:90:26:10:6a:ad:e3:23:05:32:24:87:a8:12:
9b:b3:5c:94:d2:fa:2f:1f:f5:52:0b:9d:0a:2c:2d:
bf:52:bc:24:6c:81:ef:7b:26:a6:1d:63:f0:32:20:
bf:96:dc:c1:1c:ba:e1:d0:c4:3a:89:d3:6c:8c:f2:
f5:dd:9d:9c:c3:fc:f8:15:92:4d:74:84:2c:bc:3d:
12:77:f6:fa:33:0d:f6:2b:7a:39:ac:3a:88:58:ed:
1d:66:d8:88:61:2f:0a:97:fc:48:69:a7:d1:11:75:
06:00:c0:21:22:1e:ce:02:44:97:06:08:b3:0e:ff:
0c:27:b7:15:c2:af:32:fb:4f:ad:0e:1e:4e:12:9b:
5c:74:c9:ab:db:2a:1a:cf:ee:c5:b1:e1:52:8f:54:
8f:9b:c8:d3:8f:c8:b0:41:ea:ea:37:59:8c:79:3c:
d9:04:12:bd:89:a0:c0:c8:3b:a4:53:fc:7f:2f:e6:
19:50:00:3a:18:6c:8a:1a:10:72:9a:bf:11:78:4f:
d7:6c:71:45:e0:28:6a:81:ee:52:ff:64:ee:ff:9a:
63:f8:ad:24:46:88:a8:ec:2d:a7:96:bb:99:fd:9c:
90:21:5e:68:eb:6e:88:cf:40:f9:b2:4b:bf:82:74:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:02:19:61:91:95:67:50:62:B9:A5:33:1D:4A:88:72:E8:CF:62:87
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LwIZYZGVZ1BiuaUzHUqIcujPYoc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3f:ea:d4:42:42:3c:19:db:06:78:5c:a0:90:8f:ab:18:08:c8:
b6:ca:dc:3c:75:c0:ac:97:34:9b:6d:c8:2a:d7:75:dd:7f:17:
f8:59:78:72:fa:09:39:20:c7:fe:82:60:21:a4:9d:3c:c1:b8:
ab:35:ff:3e:2c:9d:3d:1b:9e:af:96:83:ec:73:69:fa:e0:50:
47:68:8f:d7:60:1c:e0:94:84:d6:0d:3a:98:dd:6a:c9:70:57:
c4:4c:ee:93:7a:8e:03:73:82:cf:f6:41:d7:c3:4c:05:2e:fd:
8e:91:1e:ec:ce:a6:52:ff:9d:62:02:da:cd:f8:b0:f1:00:86:
30:5f:85:56:eb:f4:5b:f5:0b:c2:83:45:60:4e:2e:41:cd:b5:
4a:b7:30:b1:f0:a0:42:73:72:70:18:1c:17:c2:fb:6d:bf:b1:
b6:97:33:ef:c6:a0:d3:6e:ce:7f:16:5d:df:ae:fa:ec:56:fe:
76:8a:e7:93:2b:8e:fb:59:07:a4:9b:e6:a3:84:ff:fe:b2:28:
09:8c:95:78:84:51:b2:6f:f1:97:c9:95:c0:26:57:77:1f:89:
63:f6:de:2c:78:01:91:46:1c:1f:c4:b0:5a:c1:d2:86:8a:2d:
3b:0c:1b:dc:49:08:44:0a:01:ba:04:0f:d5:e7:c4:96:9c:bd:
99:d9:50:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org