Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NU5RlsY2h-FJTwK-BXOkli4FhlY.roa
File: NU5RlsY2h-FJTwK-BXOkli4FhlY.roa (raw, json)
Hash identifier: JEpDEp35jveUg23L+PYRgrQfRr0NPBOAmZ1vBu4SWpQ=
Subject key identifier: 35:4E:51:96:C6:36:87:E1:49:4F:02:BE:05:73:A4:96:2E:05:86:56
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 087C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NU5RlsY2h-FJTwK-BXOkli4FhlY.roa
Signing time: Tue 29 Sep 2020 09:52:04 +0000
ROA not before: Tue 29 Sep 2020 09:52:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 60.245.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2172 (0x87c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=354E5196C63687E1494F02BE0573A4962E058656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:38:55:23:a6:f5:b6:fa:2f:fd:fb:fb:ab:d9:
28:13:a5:21:51:eb:95:16:21:82:e9:d8:e0:9a:f0:
52:73:11:0c:45:e2:31:dc:23:f6:c6:b3:06:98:57:
dd:2d:fe:13:05:00:8e:9e:d4:d7:26:39:66:40:3b:
07:5b:07:05:9d:ee:0f:2a:15:52:3a:e3:8e:bb:a5:
07:5e:f9:36:c2:15:8c:e2:54:47:22:17:1c:6a:60:
0c:e0:fb:68:a5:7d:f2:85:e2:33:8b:d1:c3:d4:e2:
14:fa:8c:15:ec:b4:5c:bf:75:30:58:1a:34:78:e4:
8e:80:44:be:68:d2:17:77:55:30:6c:99:35:ee:53:
44:ce:ef:7d:21:c4:d5:ea:4d:83:20:8c:ae:ee:de:
9a:74:ef:b3:b0:27:6e:22:08:b2:bd:09:5f:16:c6:
4b:c2:c9:a1:29:2f:c5:6f:65:88:ed:27:97:96:2e:
66:56:e0:fc:f9:fc:9e:94:84:40:e0:db:de:f4:fb:
d6:f4:09:33:15:da:25:cb:29:20:15:19:c4:5d:94:
bb:83:41:8e:c8:20:27:ea:d6:7e:78:43:7e:82:d1:
f6:08:d1:b6:9a:9f:c9:8c:14:ee:1e:a9:2e:5e:08:
19:22:01:45:05:9d:f2:a6:13:15:8b:d8:c3:70:a0:
1c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4E:51:96:C6:36:87:E1:49:4F:02:BE:05:73:A4:96:2E:05:86:56
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NU5RlsY2h-FJTwK-BXOkli4FhlY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.96.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:29:d6:62:e4:c8:07:54:29:e9:f7:a7:83:1e:29:47:39:19:
ee:4d:3a:43:31:3e:1e:d4:b0:fa:2c:a8:56:b1:ff:d3:17:3e:
b9:30:09:df:ae:fa:5f:0e:24:96:c8:59:9e:53:d9:29:33:dc:
d6:94:9a:d2:e9:eb:04:d7:f3:cb:8f:12:00:b3:d0:a6:6b:fe:
7e:72:40:f8:f9:40:7d:8e:ce:e9:ab:00:d4:2c:be:d7:bf:3b:
4a:5a:41:9b:75:ed:25:51:87:e6:e6:3b:ea:01:6f:1c:b5:96:
f2:db:8b:2e:b9:a0:9d:91:ad:96:e7:15:91:00:1e:25:44:40:
50:92:cc:8e:5f:d0:69:6b:51:ef:fd:0f:07:3a:14:b2:10:fc:
ab:e9:97:55:d0:a6:eb:20:51:b4:e6:2b:f3:82:2d:97:ef:00:
64:13:9f:db:3d:99:15:d5:f5:a6:39:ed:2c:3b:30:0a:20:86:
7f:21:86:03:c4:4d:84:98:be:9e:6e:3d:8c:97:69:c5:c5:44:
ba:c1:6e:7f:5a:35:c3:13:5f:fd:85:fe:e5:e0:7c:2d:85:b0:
6b:ca:03:18:18:9a:0f:b4:d1:a2:b0:c2:96:4c:62:4f:2c:ae:
cc:76:2a:f7:79:f1:eb:a7:de:6d:3d:2a:0f:6b:38:45:81:19:
d4:b5:dc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org