Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NLCygXwFI7K3CnfCTxoEnywu36w.roa
File: NLCygXwFI7K3CnfCTxoEnywu36w.roa (raw, json)
Hash identifier: qKT/Lol/adgO0VZWmupBB1ENrTNnxT+BEVXOxSXtCLA=
Subject key identifier: 34:B0:B2:81:7C:05:23:B2:B7:0A:77:C2:4F:1A:04:9F:2C:2E:DF:AC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B84
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NLCygXwFI7K3CnfCTxoEnywu36w.roa
Signing time: Sun 07 Feb 2021 06:23:43 +0000
ROA not before: Sun 07 Feb 2021 06:23:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2948 (0xb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:23:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34B0B2817C0523B2B70A77C24F1A049F2C2EDFAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:92:93:31:cb:8c:11:cc:de:24:5b:85:4b:
4d:51:45:8e:63:78:ea:3e:f7:39:cc:6c:f6:0b:9d:
c1:6a:55:21:94:7c:d6:a3:ab:1c:02:9a:4a:ad:f3:
7b:11:09:a0:66:ca:1c:21:7c:32:96:67:9f:4f:7b:
99:93:78:03:28:8c:c1:cf:af:32:79:13:1d:8e:7d:
91:cf:17:8b:c8:6e:61:26:62:c2:2b:5a:cb:be:ed:
bb:45:40:6c:28:ba:68:b1:64:76:6e:4b:ba:12:f6:
d3:86:b5:17:88:d8:c4:d9:5b:06:07:33:93:aa:34:
d9:c2:d2:00:8b:af:db:be:b2:a2:98:46:56:5e:aa:
5a:92:7c:de:fd:ec:ee:d9:66:04:9c:14:0c:b7:f3:
e7:59:9c:a0:2c:41:19:7b:03:57:fe:32:19:e4:8b:
99:36:26:1a:ff:18:9f:f9:aa:8a:dd:d3:4d:3d:2b:
6a:c6:34:01:2c:3a:36:10:f4:a1:89:91:5a:c4:ca:
6a:06:7b:66:39:f8:a3:2c:eb:ba:36:0c:49:db:c4:
41:c3:1f:df:67:49:89:06:17:64:1c:34:cd:49:ae:
ed:6d:14:9a:88:7f:fc:26:ff:6c:d6:5e:d8:59:75:
a8:e0:c6:cc:d2:59:c0:bb:df:4f:64:a3:0c:14:a2:
f3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B0:B2:81:7C:05:23:B2:B7:0A:77:C2:4F:1A:04:9F:2C:2E:DF:AC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NLCygXwFI7K3CnfCTxoEnywu36w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
46:bd:2d:08:d8:9d:63:74:9a:b4:cc:82:83:74:7e:39:9f:8f:
7e:c1:89:80:53:07:eb:cb:ba:d4:cb:41:11:c0:85:fa:50:e2:
22:e5:e3:37:e6:21:db:9d:24:71:df:d8:ed:b9:5a:b0:5f:ad:
80:9c:af:60:b9:71:de:24:a9:0a:d0:77:0e:2d:20:38:55:76:
90:93:9e:17:6a:f1:f5:c4:a6:7e:78:51:38:67:d0:24:14:f3:
9a:47:33:1b:4b:b9:d6:84:28:4a:05:a8:2e:9b:ae:fc:31:70:
1c:d1:c3:4a:c4:c6:0f:15:0a:bb:bf:ff:99:d1:6e:ac:06:da:
18:f4:fb:1c:9b:78:08:18:4b:bd:c5:ea:79:8a:d5:fe:ee:7b:
ef:dc:1d:6d:cc:da:16:ad:1a:75:23:f4:57:cd:2d:cf:5b:e2:
de:4d:48:19:d2:a8:e0:ba:fe:79:e4:dc:7e:8f:29:3e:37:b9:
b9:4e:37:a6:73:6c:14:3c:37:32:6a:1d:ef:c2:18:de:56:2f:
e4:1d:45:71:ec:3b:bd:93:63:fd:32:8c:9b:fe:b3:25:4f:14:
42:2f:dd:37:af:84:20:79:7f:56:76:54:3a:c5:5b:a3:d1:2e:
7a:08:c8:73:e2:71:19:ed:2d:4a:fc:89:93:1e:04:08:21:29:
eb:8b:52:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org