Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVpMvdiVOkSvsiwZBBe72dDaC2A.roa
File: MVpMvdiVOkSvsiwZBBe72dDaC2A.roa (raw, json)
Hash identifier: 4qUl88dmA5Xtpp2aHEgf8k3ClIC0iMoBTkoRndaPCz4=
Subject key identifier: 31:5A:4C:BD:D8:95:3A:44:AF:B2:2C:19:04:17:BB:D9:D0:DA:0B:60
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E11
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVpMvdiVOkSvsiwZBBe72dDaC2A.roa
Signing time: Wed 29 Sep 2021 02:43:10 +0000
ROA not before: Wed 29 Sep 2021 02:43:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3601 (0xe11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=315A4CBDD8953A44AFB22C190417BBD9D0DA0B60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:bd:9e:44:2f:4a:27:e6:99:01:ad:9f:83:
16:9d:74:c7:ee:82:d2:12:fe:92:e9:62:dc:ae:4b:
aa:b9:5c:96:6b:be:56:03:76:9a:e4:01:0d:d8:fa:
63:25:5b:75:3a:75:43:b5:81:4f:11:e5:97:42:e5:
cd:bc:21:cf:d6:d0:19:fc:72:19:16:78:c4:b1:86:
e9:f5:a0:13:11:ea:81:f0:ce:c7:09:2d:84:d4:3a:
cd:cf:c5:4c:1f:af:dd:e8:a5:0c:98:69:86:76:4b:
95:eb:63:79:8a:8b:9a:29:34:17:70:39:f0:1b:b5:
c6:84:50:b1:8f:2d:ef:4a:c5:8b:81:0d:aa:a4:1e:
c3:4b:22:f0:a7:32:93:ca:30:97:0b:b9:e5:92:6c:
27:a6:b4:86:71:43:3c:b6:f6:13:db:76:bb:c8:ba:
5d:a2:e8:86:21:da:9c:83:7a:48:47:d0:41:6b:62:
da:6c:36:85:cb:ab:eb:74:6f:87:e8:ef:06:a4:7b:
e7:a9:2f:e8:89:ec:18:23:e0:f3:7f:99:02:2d:87:
31:f1:9e:3c:1f:fc:f9:18:4b:91:78:21:c3:f2:06:
f0:32:85:67:42:32:30:6a:03:7c:ec:8a:86:07:6b:
2f:74:bd:8e:35:0a:08:2f:5c:66:18:5e:79:8b:e7:
01:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5A:4C:BD:D8:95:3A:44:AF:B2:2C:19:04:17:BB:D9:D0:DA:0B:60
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MVpMvdiVOkSvsiwZBBe72dDaC2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:1a:56:a3:ab:c5:2c:85:3b:57:a7:01:24:40:00:8a:44:28:
ab:26:18:67:a1:4e:47:77:83:f0:d3:22:60:15:08:99:db:f8:
45:80:c6:3d:59:9c:5d:66:89:bc:c8:6e:e9:fb:bf:e5:d8:8e:
07:6d:43:6c:96:a5:f2:12:9a:0b:78:8d:05:39:7b:ef:ba:dc:
79:35:44:c6:fa:92:29:77:20:b4:e2:23:d7:67:d9:a2:22:05:
2d:01:33:d3:79:67:a1:ac:cb:04:66:a7:84:03:91:07:ce:a9:
4e:c5:cc:ea:53:45:ca:47:6a:5c:ac:c3:ba:8c:4b:59:c9:ab:
31:05:47:5d:f1:e5:b7:7b:33:55:88:6f:49:92:34:30:68:f2:
7b:d3:81:48:81:a0:21:67:3f:94:8d:40:81:18:80:8b:52:cc:
e1:a9:0d:20:5e:0e:f4:a5:0e:29:d8:30:c6:e7:a9:c6:30:d8:
aa:ab:51:9e:7a:0f:fc:42:8f:55:8d:4d:c1:91:ec:d5:b1:a1:
8b:c4:9c:74:58:94:33:d7:ec:56:d5:53:c5:01:6d:a0:01:5c:
80:93:3c:6e:a8:67:04:d0:ff:d9:1c:7b:9c:d5:3f:b2:ab:7f:
42:1b:e0:9c:88:3f:0b:e8:c3:e7:a2:b3:7c:c6:ff:78:44:ac:
f4:05:f4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org