Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MpzOjsWpmDiJIPTCeRxOrjQfqOU.roa
File: MpzOjsWpmDiJIPTCeRxOrjQfqOU.roa (raw, json)
Hash identifier: 6NIjFYMPA1jylALwZ6+KbOJxUhkoXioTekv1DBdnszw=
Subject key identifier: 32:9C:CE:8E:C5:A9:98:38:89:20:F4:C2:79:1C:4E:AE:34:1F:A8:E5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0864
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MpzOjsWpmDiJIPTCeRxOrjQfqOU.roa
Signing time: Tue 29 Sep 2020 09:52:00 +0000
ROA not before: Tue 29 Sep 2020 09:52:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2148 (0x864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=329CCE8EC5A998388920F4C2791C4EAE341FA8E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:21:c9:8c:8e:c0:8f:2b:63:36:d8:06:ae:35:
a4:e6:df:4c:37:d2:f2:7e:ec:fa:ec:c4:52:36:3d:
89:37:73:8a:b3:9c:ad:9d:ea:79:40:1b:e2:28:95:
a6:f1:29:ec:4a:ad:1c:ee:5f:f9:fc:29:75:37:bf:
47:15:e8:7a:c2:b5:1b:dc:0a:2b:4e:26:df:8b:6a:
7c:b8:84:06:db:06:55:e0:03:5b:2f:26:4b:f0:c9:
de:1b:eb:ac:1a:c2:32:4e:26:77:ac:19:fa:bd:92:
69:63:f0:6a:51:8f:c1:5e:41:cc:6a:dc:c5:85:dd:
29:b7:44:19:0e:b1:52:72:5d:29:fd:c6:ba:0c:1a:
df:e4:b0:cf:3b:8d:0b:ea:c1:87:3c:7e:6d:fc:18:
b8:37:48:8a:39:85:03:7c:d7:67:9f:56:a9:bb:46:
ef:dd:71:b5:db:fa:3e:4c:b7:6a:a0:71:83:af:67:
be:ec:64:10:a4:a3:ce:7a:a3:b4:0b:5a:f1:77:2d:
1a:8b:09:a5:44:d3:80:76:02:9b:7b:07:76:6b:fe:
95:14:1b:0c:6a:1e:23:a1:d1:67:61:22:be:d7:da:
07:e2:c9:99:83:3d:35:1d:00:99:59:11:31:df:80:
9d:d9:bb:82:20:24:36:5b:c6:c9:71:97:32:10:f4:
79:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9C:CE:8E:C5:A9:98:38:89:20:F4:C2:79:1C:4E:AE:34:1F:A8:E5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MpzOjsWpmDiJIPTCeRxOrjQfqOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.58.0/24
Signature Algorithm: sha256WithRSAEncryption
27:05:9f:8d:cc:f5:1c:c1:79:66:b5:63:7f:35:5c:5f:59:e2:
60:2e:97:8a:1b:73:19:2a:43:b7:39:96:98:75:93:2c:9a:58:
c8:d4:da:32:e8:63:d0:68:19:7b:b4:a4:e2:2c:86:00:cc:19:
e0:68:34:56:e0:4b:15:70:7a:62:ce:e7:62:d1:09:69:9f:f9:
68:38:25:e2:1d:eb:59:c8:a8:89:eb:66:02:ba:a4:c3:63:e5:
15:34:64:38:ac:ab:46:21:4a:14:1f:74:f2:78:34:bd:bc:09:
7e:3e:79:a3:79:5d:a8:17:96:7c:8f:d8:e8:0f:87:3b:98:03:
0f:f0:0c:a7:19:44:93:3e:d9:62:35:20:05:75:1f:5d:de:65:
29:a2:d9:a0:0d:84:8b:34:b8:27:67:d6:03:76:d7:13:19:5d:
6c:d2:52:e5:2b:f1:dc:e4:1e:7b:f6:fc:a3:4a:54:f7:1c:13:
55:60:90:95:cd:51:de:ac:7a:76:37:95:65:64:8f:0a:cf:15:
8e:26:44:3b:c3:6a:e5:26:4d:39:87:d8:e5:1b:a1:67:74:a4:
88:7d:19:7b:9b:0d:9a:a1:58:19:61:27:54:f3:c1:29:30:90:
57:f2:43:93:93:2c:88:a6:60:ae:33:13:01:2b:ce:90:6c:22:
fa:36:1a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org