Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZehDINajFACH5sKEYmNJvZIn2o.roa
File: MZehDINajFACH5sKEYmNJvZIn2o.roa (raw, json)
Hash identifier: vVYRyrckx2+oH13/rzJ3b3p/mwpYisxfR8FJkfv2MV0=
Subject key identifier: 31:97:A1:0C:83:5A:8C:50:02:1F:9B:0A:11:89:8D:26:F6:48:9F:6A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ECF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZehDINajFACH5sKEYmNJvZIn2o.roa
Signing time: Wed 29 Sep 2021 02:44:01 +0000
ROA not before: Wed 29 Sep 2021 02:44:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 175.182.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3791 (0xecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3197A10C835A8C50021F9B0A11898D26F6489F6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:08:8c:45:1e:4a:82:0a:f1:38:78:84:db:64:
f3:53:a8:b9:6c:bc:4c:d1:d0:fd:56:c2:3c:d3:1c:
d0:54:de:eb:b4:4b:8e:aa:c0:72:c2:6b:2e:ea:c0:
1d:df:80:1f:85:b8:df:18:57:59:3d:b4:43:b8:8c:
9f:f9:11:ca:40:ac:42:bc:60:d2:e8:4b:ec:51:3c:
d3:c6:a9:d9:b6:f4:2d:d2:25:60:20:7b:70:49:98:
4c:3d:e0:c3:b6:f4:fa:e1:de:f3:8a:e6:d2:b7:1e:
0e:5b:94:3c:e6:b9:1f:fb:22:ac:aa:b2:8a:c0:f7:
cb:13:7a:a1:c9:48:84:9a:a7:79:95:2d:9d:c8:39:
14:12:cc:6a:a8:89:9f:87:8e:10:9d:d2:38:92:aa:
87:41:22:4e:33:df:67:71:ee:38:88:1f:55:d0:77:
35:fe:db:e4:ac:25:63:20:10:d3:b9:3e:67:35:5f:
37:49:2e:9c:c8:99:1d:3d:1c:28:14:fa:08:dc:04:
14:06:0d:91:97:10:c0:1a:06:ea:5e:6f:fd:46:3c:
5f:b8:01:f4:8f:a4:9f:14:3f:37:38:26:70:0f:39:
83:1f:15:f3:84:e2:0d:0d:85:2a:c0:f0:00:cb:30:
4f:46:df:a7:54:4b:81:02:a0:07:c9:7c:27:92:3b:
bc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:97:A1:0C:83:5A:8C:50:02:1F:9B:0A:11:89:8D:26:F6:48:9F:6A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZehDINajFACH5sKEYmNJvZIn2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.182.77.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a2:18:b2:34:42:d8:aa:81:a1:f7:bb:a5:09:e0:74:ae:7a:
3a:08:99:1a:d0:3d:13:47:52:9a:15:b6:bf:f4:80:5c:89:39:
90:56:61:82:aa:4e:cc:9d:4e:fa:30:14:c6:65:08:95:be:83:
bd:cd:62:3c:af:59:15:88:64:23:e4:0f:fb:4d:d9:8b:20:bd:
73:c5:46:96:08:6c:c7:e3:78:55:d3:48:89:e8:1f:41:ba:de:
7a:eb:6b:af:17:44:c7:71:63:b4:c1:b9:43:49:28:2b:69:39:
4d:1f:26:e1:19:d8:e3:d5:9b:3f:81:f5:11:bc:dc:05:75:d1:
1a:e0:ae:73:dd:e8:f9:e7:9d:1e:64:33:a8:d0:ee:ee:56:c3:
36:8e:4a:8a:f0:2c:60:1e:9f:a9:19:f4:99:63:31:62:c8:c1:
d4:dc:24:5d:33:e4:64:cb:77:c2:20:f9:97:ae:cc:db:67:bd:
17:19:d4:0d:2b:d1:12:39:1a:a7:72:7b:b6:e1:44:dc:7e:f5:
11:e1:c8:d3:09:3e:80:8c:32:c0:e8:66:4d:2e:b7:c0:71:a9:
a6:d2:64:50:16:56:14:af:19:08:63:48:1a:4b:8c:18:8c:a8:
05:cd:e7:3a:99:6d:e1:c3:cd:b3:3a:1b:bb:7c:e5:cd:56:0a:
84:3e:38:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org