Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NL5xxp6x0WP6XJzvRVBtVVBrC3I.roa
File: NL5xxp6x0WP6XJzvRVBtVVBrC3I.roa (raw, json)
Hash identifier: HXyKxvoVmRL0FAt6g23vqgwQDlX0ncJsFbFoNDDzBm0=
Subject key identifier: 34:BE:71:C6:9E:B1:D1:63:FA:5C:9C:EF:45:50:6D:55:50:6B:0B:72
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C51
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NL5xxp6x0WP6XJzvRVBtVVBrC3I.roa
Signing time: Sun 07 Feb 2021 11:42:52 +0000
ROA not before: Sun 07 Feb 2021 11:42:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3153 (0xc51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:42:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34BE71C69EB1D163FA5C9CEF45506D55506B0B72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:55:98:b2:99:63:67:f0:08:97:3e:74:02:
61:17:aa:2d:49:84:63:00:8e:16:d2:ea:d4:fa:79:
87:a5:30:2a:3b:61:16:b7:d6:cb:b7:4a:7d:b1:01:
7f:0a:80:87:12:5a:12:37:13:ad:55:a7:e4:98:b3:
ff:bc:e3:7d:5d:8a:61:46:fb:3b:95:55:34:b8:f4:
ef:ad:f8:28:08:c7:90:10:95:92:92:71:87:a8:dd:
06:1e:ad:41:35:4a:5d:66:2a:80:b8:d6:29:36:cf:
1f:d1:00:bf:ad:ab:c5:eb:c1:b4:d6:36:81:fa:5a:
a1:6d:96:67:a0:49:ba:b4:78:47:81:9a:b9:79:89:
9f:71:22:9b:13:f1:be:e3:c7:c7:06:69:64:7c:8b:
1b:d3:22:ad:00:61:8a:0f:fb:9d:c3:b7:5a:8a:8b:
25:ae:c9:11:2b:9b:3f:eb:9c:96:4e:64:f5:1f:9b:
cf:fb:4a:c6:40:d6:f6:51:40:f1:64:d1:58:d0:31:
51:53:69:8b:c6:29:3f:57:17:d8:21:74:a9:f1:df:
0d:57:64:b3:8a:0f:da:32:44:d1:d6:04:2f:64:00:
ab:2b:9a:1e:ce:36:f2:38:fd:7a:a7:f6:17:b9:2f:
35:fe:e9:93:14:8d:f3:d7:bd:a8:88:a8:6f:ff:7e:
39:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BE:71:C6:9E:B1:D1:63:FA:5C:9C:EF:45:50:6D:55:50:6B:0B:72
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NL5xxp6x0WP6XJzvRVBtVVBrC3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8b:ec:9f:53:6a:77:73:33:26:ac:f7:79:3b:de:ee:4a:1c:4e:
83:77:bf:71:b4:71:b2:c2:60:ca:2a:3e:cc:83:93:01:1f:d9:
a7:80:d7:a9:35:81:c0:1f:a9:cd:61:55:48:6e:97:25:78:92:
34:33:72:66:95:cc:b4:30:12:95:af:c7:0b:11:51:9f:0c:f8:
ce:08:7e:b5:69:8f:98:73:49:83:c7:b5:61:3b:95:b7:c0:0f:
18:bf:c6:e8:6e:0b:fc:3c:98:9f:6c:08:b9:b1:af:c1:3d:24:
93:df:1e:da:a5:0d:d2:bb:29:88:f5:3c:5a:75:54:7b:a0:67:
87:a7:02:93:bc:bf:24:c6:ca:dc:99:dc:d7:89:85:9f:9c:e7:
2d:c9:0b:d1:ec:70:f4:14:8f:5d:32:47:ac:0c:e6:2f:9c:e1:
41:77:11:75:46:ea:6b:87:ca:b3:ad:9e:83:00:28:ea:ed:f4:
89:1e:1c:01:42:fd:84:7e:69:19:0d:6c:a3:65:b3:6d:da:b5:
d5:28:95:5c:1a:cd:8f:32:48:65:ed:15:83:a6:99:43:57:22:
d1:ae:be:c4:b2:6e:93:a7:26:2d:97:4d:96:e0:f8:00:58:0d:
58:0f:f4:ce:4f:41:8c:28:e3:17:45:3a:27:53:31:70:75:3c:
01:d5:89:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org