Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/M983JDTVHL7-MvnkfkpOf0u-WtQ.roa
File: M983JDTVHL7-MvnkfkpOf0u-WtQ.roa (raw, json)
Hash identifier: W6f5bLrfByZbaMQX1M90oGeXp+GC+oBd29bd8h389Qo=
Subject key identifier: 33:DF:37:24:34:D5:1C:BE:FE:32:F9:E4:7E:4A:4E:7F:4B:BE:5A:D4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E8B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M983JDTVHL7-MvnkfkpOf0u-WtQ.roa
Signing time: Wed 29 Sep 2021 02:43:43 +0000
ROA not before: Wed 29 Sep 2021 02:43:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 218.210.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3723 (0xe8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=33DF372434D51CBEFE32F9E47E4A4E7F4BBE5AD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:41:f7:f3:1c:5c:2e:e8:a1:8c:54:4a:af:85:
c7:04:5b:b3:bf:70:49:f8:92:f7:36:31:84:12:ea:
53:2b:f5:51:97:88:16:fe:4b:c8:a8:28:68:7f:1c:
8b:d9:7c:d6:8f:3f:d0:e7:c3:02:f1:58:d1:78:fe:
70:3d:01:fa:71:0d:08:8a:05:47:ad:c4:20:1a:00:
f8:c8:e4:3f:68:6d:b7:18:4e:a8:30:fa:73:ed:f8:
c9:6e:da:81:2d:57:6f:35:38:8b:ae:89:4c:2b:61:
45:a5:a0:5c:cd:8a:8d:a2:fe:2f:45:22:0d:c6:13:
a0:d0:a3:8c:27:bb:37:8e:98:40:c5:2f:46:e7:0f:
88:4c:44:32:06:f9:6a:ac:85:24:f7:ae:8d:55:1d:
57:54:1b:58:56:08:2e:94:49:57:6b:57:09:59:bc:
b0:fd:f6:4e:fd:7c:50:f1:65:9a:8f:aa:ce:dc:75:
34:4d:d8:0c:68:29:bd:b0:22:80:21:70:59:cc:af:
e3:83:05:30:fa:29:8d:c2:e7:70:b9:6e:88:fa:6e:
9e:42:17:3f:ef:81:48:81:98:a8:2d:63:0c:e8:df:
62:e8:96:81:48:3b:55:6c:f5:cd:9c:72:3d:2b:dc:
9d:7b:ac:32:ae:fe:f3:39:fd:7a:63:c5:7d:22:af:
ca:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DF:37:24:34:D5:1C:BE:FE:32:F9:E4:7E:4A:4E:7F:4B:BE:5A:D4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M983JDTVHL7-MvnkfkpOf0u-WtQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.48.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:b5:89:8b:3d:42:ea:58:ea:6b:4c:ac:70:e8:0e:c4:2a:19:
26:88:46:68:4a:d7:57:96:55:fc:e4:fb:4b:37:94:17:ee:c9:
18:5c:08:3f:35:13:27:ab:08:4e:5c:39:82:56:80:df:8d:8f:
2d:1e:f2:31:20:7a:da:8e:1c:1d:98:ed:22:8d:ab:e4:1f:ea:
c7:71:92:a9:4d:07:e9:bb:9e:13:ae:78:15:4c:b0:4e:80:3e:
ae:e5:9b:01:28:a5:6c:7f:ab:1f:fe:59:2c:0b:71:65:06:03:
a2:01:9f:7d:ed:6d:d5:1e:c3:22:40:54:3d:1c:de:10:cc:85:
a2:ac:61:1e:3b:08:dc:66:e1:e3:9c:8a:18:7b:cf:03:2c:ae:
dd:9c:88:bb:2b:93:e5:36:fd:dd:4c:6d:18:c4:30:b5:b1:ac:
4c:9e:19:64:cc:f8:e0:49:4e:e0:6b:06:78:d1:bf:49:3b:20:
2f:94:2f:bf:49:09:1a:f2:05:94:eb:94:83:72:11:e2:41:07:
68:4b:49:dc:9c:7c:1c:0b:47:36:3d:88:3d:75:6d:b3:08:74:
ad:f1:cb:aa:ac:7d:d8:bc:23:38:57:5d:31:c0:24:cd:3c:ab:
e0:86:aa:48:c6:a4:98:fb:4a:2b:4a:b9:34:61:6f:99:a1:5b:
2c:bf:41:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org