Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MPcCwJDZ7UWSZvFdjL-kiFEVGc0.roa
File: MPcCwJDZ7UWSZvFdjL-kiFEVGc0.roa (raw, json)
Hash identifier: pV4VNL9SvuU/XQn47GHWQu38PZOFSS/URvQpwli/NxY=
Subject key identifier: 30:F7:02:C0:90:D9:ED:45:92:66:F1:5D:8C:BF:A4:88:51:15:19:CD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0870
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MPcCwJDZ7UWSZvFdjL-kiFEVGc0.roa
Signing time: Tue 29 Sep 2020 09:52:02 +0000
ROA not before: Tue 29 Sep 2020 09:52:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 60.245.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2160 (0x870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:02 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=30F702C090D9ED459266F15D8CBFA488511519CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:01:d7:e9:72:49:b5:c6:21:13:2a:a4:73:
4a:70:c7:c1:a4:1f:5b:aa:22:45:18:4f:47:3b:b0:
f0:e2:98:98:b6:5f:c9:3f:29:28:c7:2e:52:24:8c:
73:8a:f1:1c:f8:ca:30:ab:00:e5:83:f2:e2:8d:16:
93:80:2d:ec:ae:f1:ea:f2:7c:08:28:97:99:78:45:
ca:c2:60:5b:d5:cc:43:44:91:0c:29:21:33:01:3b:
b9:bc:3e:3e:60:0c:6b:c5:24:20:88:64:a0:0f:d5:
df:75:23:ef:9c:1d:de:36:74:36:9c:dd:22:c8:29:
c9:d0:77:00:37:e5:18:02:53:86:5a:ca:1c:66:8d:
70:70:97:87:4b:17:58:40:40:65:8c:cb:d9:1e:bc:
31:31:5d:14:28:2c:7d:11:d3:3c:3a:e6:22:e3:03:
69:8a:b9:30:4b:2d:b6:15:7c:e5:b0:71:47:a7:87:
ca:bd:49:ef:a8:cb:be:bd:12:0e:c5:ac:6d:81:74:
7e:e4:22:b1:44:c2:b6:8f:8e:f9:57:f0:ab:3a:90:
ee:e7:38:e7:3e:26:c8:55:f9:4c:94:3f:a1:da:81:
c3:58:e0:ec:b9:e9:1c:cb:02:7a:4b:5e:cf:d6:ad:
1b:42:ab:f3:f8:64:0a:e0:18:e5:fc:3c:e9:b1:0f:
d6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F7:02:C0:90:D9:ED:45:92:66:F1:5D:8C:BF:A4:88:51:15:19:CD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MPcCwJDZ7UWSZvFdjL-kiFEVGc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/19
Signature Algorithm: sha256WithRSAEncryption
90:a4:15:5c:5b:24:c4:7d:10:08:cd:9e:0c:b3:40:01:89:d3:
4a:ed:3d:96:7b:d0:c1:13:be:f3:af:04:95:a9:44:20:ca:91:
3e:96:2d:87:29:da:1a:14:58:24:55:46:35:2c:1c:d9:55:4b:
e5:ab:c0:d3:62:93:5f:80:99:ef:b5:b8:5d:f0:80:ad:fb:8a:
76:39:f3:57:c0:8d:4b:45:d1:12:4c:8d:6f:f0:87:d1:9a:0f:
5b:5d:3b:37:86:98:9d:33:d1:87:67:99:31:ee:12:14:67:54:
5a:34:97:b9:1c:0e:1d:4c:7f:df:aa:7d:63:74:c6:57:fc:04:
e8:ad:16:7f:de:b0:48:7e:08:ed:1f:b8:6b:62:ab:7a:b7:9e:
0e:33:85:aa:a3:0a:7a:1c:f0:81:58:f7:a0:f5:b9:1d:69:c5:
03:5f:a0:ba:33:0c:09:76:e8:0e:01:82:65:d4:86:ea:90:18:
ed:9d:cc:40:54:79:04:59:91:69:ba:61:e1:cf:e5:8d:f8:4e:
ce:ef:8f:fd:92:dd:e0:d7:bc:0a:56:ab:a3:26:4c:69:76:a3:
92:e7:f4:57:36:33:01:12:f0:de:c3:95:3e:72:7d:4b:f8:a5:
b0:4e:08:62:36:e1:5f:eb:ec:65:96:bb:42:44:8f:cc:8b:f8:
97:a8:9f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org