Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MT720bkTVQ_lHpUTso91Y2gG2HE.roa
File: MT720bkTVQ_lHpUTso91Y2gG2HE.roa (raw, json)
Hash identifier: i9lt2ODdwwnn/ARzkYzbBZwyqXAjE3Fy3LV2ac6tunE=
Subject key identifier: 31:3E:F6:D1:B9:13:55:0F:E5:1E:95:13:B2:8F:75:63:68:06:D8:71
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 084B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MT720bkTVQ_lHpUTso91Y2gG2HE.roa
Signing time: Tue 29 Sep 2020 09:51:52 +0000
ROA not before: Tue 29 Sep 2020 09:51:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2123 (0x84b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=313EF6D1B913550FE51E9513B28F75636806D871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:90:dc:36:62:a1:4a:90:1a:d8:06:2b:34:59:
bc:4a:1b:64:47:74:f7:38:e4:08:6e:30:75:c9:b3:
6c:62:11:00:f6:87:50:3f:37:94:f8:64:c3:ee:14:
14:0b:32:44:6a:11:a1:f4:57:cf:d0:e8:4c:00:26:
08:e3:2e:f3:39:dc:c8:09:61:8c:b4:01:4d:a0:ca:
99:14:bd:23:6b:28:0f:86:8d:d3:45:7e:42:5d:d3:
0d:92:31:02:e0:d2:82:b3:27:9e:71:56:cd:d0:ec:
36:42:5c:13:85:14:d0:4b:db:3b:3b:cc:1c:e7:fe:
d7:33:ba:f8:1c:ab:cb:01:5d:80:42:df:0b:c5:71:
78:54:a5:6a:3d:4b:23:6b:f0:39:45:07:9b:9e:5d:
46:0c:d1:7b:0b:27:73:9d:89:d8:58:82:a9:3a:2b:
c5:df:16:85:c0:c4:07:46:c3:af:28:ce:f3:87:ff:
a8:34:5f:a2:1f:18:37:63:27:96:2d:c6:dc:c8:6f:
df:04:6f:6e:9f:38:df:9b:12:8d:16:89:44:c9:4d:
d2:6d:92:cc:58:3f:86:8f:67:fb:41:61:c0:10:d2:
0a:a9:80:13:91:d4:bf:81:85:0d:0f:f9:3a:cd:88:
1c:69:d2:73:f3:d9:d2:44:38:f7:a3:77:e2:5c:f7:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:3E:F6:D1:B9:13:55:0F:E5:1E:95:13:B2:8F:75:63:68:06:D8:71
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MT720bkTVQ_lHpUTso91Y2gG2HE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.128.0/17
Signature Algorithm: sha256WithRSAEncryption
69:85:80:50:d0:db:36:10:12:60:07:64:a5:37:e9:e7:03:af:
89:0b:e6:2e:8a:5a:bc:13:be:44:d7:3c:23:49:0d:06:a4:aa:
c8:a6:dc:fe:03:60:16:ef:e2:7d:0d:60:6f:34:ff:76:cd:21:
62:30:ed:27:0b:8f:bf:98:d2:96:f5:7d:eb:b8:65:08:35:2a:
5c:a6:8c:40:b5:0c:6e:fb:b9:3a:cf:a6:bb:c1:4d:3d:8a:a1:
2c:d4:11:ad:44:b3:48:7b:40:34:57:48:a7:72:77:ed:18:cd:
0a:f1:7a:9b:77:6f:df:f4:b8:6d:7d:1d:c5:21:05:d9:33:09:
f6:b4:c5:5c:f4:40:1d:c2:bd:78:69:c9:cf:34:ab:47:44:09:
eb:98:44:03:87:bb:f6:02:92:72:c4:02:ae:23:01:69:8e:bb:
7e:26:85:eb:b5:31:27:42:7a:1e:90:92:46:49:82:b7:f4:3f:
35:c3:eb:71:de:ff:7a:4e:e6:04:3d:65:5e:ea:04:5c:04:77:
2d:49:9b:91:fc:22:1a:e7:c8:73:9b:13:25:e1:1a:95:ee:91:
fd:8f:87:8c:92:ef:b9:46:b0:90:88:b2:25:be:38:01:a2:d3:
c9:8e:f3:c0:f5:3d:2b:c4:1a:0f:8d:a9:4e:79:cc:e4:e6:74:
d8:5c:4b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org