Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2RsS0rvaChgwB7KSX9GJBbUJI8.roa
File: M2RsS0rvaChgwB7KSX9GJBbUJI8.roa (raw, json)
Hash identifier: ILmcZatl6jfBptz2A/hMlza+wvfMUvLPB0hpyPzkfEI=
Subject key identifier: 33:64:6C:4B:4A:EF:68:28:60:C0:1E:CA:49:7F:46:24:16:D4:24:8F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BEB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2RsS0rvaChgwB7KSX9GJBbUJI8.roa
Signing time: Sun 07 Feb 2021 06:40:44 +0000
ROA not before: Sun 07 Feb 2021 06:40:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3051 (0xbeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:40:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=33646C4B4AEF682860C01ECA497F462416D4248F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:76:ae:13:e9:8d:3a:69:22:e6:7e:e9:93:cf:
46:39:00:f6:84:13:7b:32:9c:0e:b4:aa:36:ed:a4:
f6:ee:d9:0c:eb:a2:94:4f:5e:74:ca:9e:3f:aa:18:
29:a7:83:9f:02:5a:4a:db:9d:1f:7b:42:f5:c4:48:
8e:5f:c5:fc:ee:51:72:2d:ae:9e:80:bc:72:39:32:
a2:aa:8c:a8:33:33:23:5e:6d:78:e4:22:d5:28:ac:
94:30:34:77:d1:75:f0:21:bf:6f:99:3b:bd:0e:f9:
c3:14:30:05:36:49:43:a5:20:16:15:79:64:9f:12:
e3:e1:66:8a:d4:4e:93:2b:55:1b:be:e4:ab:39:da:
40:f2:9c:e7:99:4d:41:46:11:b4:56:1c:e0:2b:f4:
20:32:09:24:89:97:69:c7:e3:43:bb:a8:5d:df:bb:
39:cf:43:22:6f:2b:36:6c:f6:a8:d1:4f:34:b8:8d:
93:46:e1:3a:c1:6b:0f:8c:08:fe:2f:f8:35:70:52:
c8:5d:ca:c9:08:93:a8:7a:5e:7f:8c:ed:90:f9:b9:
21:bf:32:88:fa:1d:1d:bc:24:7d:84:1d:37:00:c1:
8a:96:01:aa:07:5e:8c:c5:05:0f:59:d0:6a:09:67:
51:7d:ff:fc:4f:02:2f:0f:27:57:d1:c7:76:1f:47:
57:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:64:6C:4B:4A:EF:68:28:60:C0:1E:CA:49:7F:46:24:16:D4:24:8F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M2RsS0rvaChgwB7KSX9GJBbUJI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9a:84:2c:24:7e:8c:a0:3f:82:ce:19:63:86:ef:84:5c:88:73:
c3:1b:79:36:e1:4e:03:fc:48:2d:f4:68:2c:43:8b:51:74:7e:
d2:85:ba:d4:3f:ae:10:8a:32:4d:d6:ea:3d:a6:46:8a:87:2a:
a8:0f:51:38:27:91:40:3f:0d:6b:9a:af:13:05:67:a1:da:37:
c1:6a:8d:76:bf:f6:1e:dd:b9:3a:6f:a1:cb:ed:85:88:5e:b5:
ff:d8:48:7f:d4:b9:22:94:c2:f2:85:83:df:43:aa:ea:15:77:
37:fd:ef:5a:b3:37:06:4d:56:e2:42:a0:90:d8:72:78:b8:21:
e4:f5:03:0f:5d:a9:52:c9:74:b4:a5:af:4f:b1:f2:a0:61:2e:
cb:98:cf:10:d4:08:e8:bd:6f:4c:0c:42:55:bb:66:d1:3c:3e:
4f:9d:8c:84:45:03:e9:a4:f1:59:35:45:ce:56:72:4e:68:3c:
f0:68:ae:6b:da:68:f8:40:7f:50:56:34:47:fd:fe:9f:ba:3e:
fd:e6:20:05:bb:cc:c2:26:58:cc:91:07:a2:93:46:5c:05:b5:
12:63:4a:d5:bb:a6:87:f9:23:48:e1:ef:c5:5a:23:17:be:d7:
a9:d2:18:9f:08:2d:44:9f:2b:7c:58:be:96:c4:b3:2f:7e:f3:
a6:51:18:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org