Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzSdJfyNhzWwaPxMoiWdMghPoUg.roa
File: NzSdJfyNhzWwaPxMoiWdMghPoUg.roa (raw, json)
Hash identifier: yZMptpYSKH6ozMhLajQk512Bxa1qiwdEuUPP66nVp3c=
Subject key identifier: 37:34:9D:25:FC:8D:87:35:B0:68:FC:4C:A2:25:9D:32:08:4F:A1:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzSdJfyNhzWwaPxMoiWdMghPoUg.roa
Signing time: Tue 29 Sep 2020 09:52:27 +0000
ROA not before: Tue 29 Sep 2020 09:52:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 218.210.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2248 (0x8c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=37349D25FC8D8735B068FC4CA2259D32084FA148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:06:b3:d5:2e:05:b1:2a:e8:a0:c0:d1:8b:b0:
f1:cc:7a:c3:51:17:dc:29:04:43:04:f9:ef:11:75:
b4:06:e1:17:1b:17:f0:57:0d:3f:f0:c5:17:c7:17:
a0:c6:38:0c:b7:41:6f:13:db:72:19:4f:f2:91:8c:
8d:b5:ee:4d:00:7a:f8:08:a8:38:af:6f:8b:a2:f0:
71:46:35:e6:3f:98:63:ac:a7:b8:47:d7:da:15:7b:
a5:c5:24:f4:69:97:d5:fe:ff:16:dd:df:f8:61:6a:
84:7d:22:9e:84:09:86:35:b4:62:bb:7d:1a:ed:2c:
c2:99:ea:b4:23:6e:5f:ce:ec:46:7a:f2:4f:cf:07:
9b:32:61:40:72:25:09:8c:2e:b5:bd:1e:15:d2:6a:
e3:89:c2:f8:4d:64:85:71:07:02:33:78:09:23:a7:
d2:67:43:bf:bc:d6:8d:18:d4:b1:79:36:f6:fc:31:
66:7d:6c:3a:08:f3:06:c7:e3:d8:33:81:e0:2f:1a:
63:f2:2a:96:30:fa:0f:e3:8f:30:42:c0:5a:ea:66:
7f:0f:b9:5c:bd:db:ca:ee:bb:38:0c:06:a4:04:f7:
c2:32:4c:ef:54:fb:a5:1a:aa:c3:52:26:dc:a0:2e:
e4:78:08:14:2a:85:9f:c6:03:0a:44:00:e6:ef:f2:
df:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:34:9D:25:FC:8D:87:35:B0:68:FC:4C:A2:25:9D:32:08:4F:A1:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NzSdJfyNhzWwaPxMoiWdMghPoUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.32.0/20
Signature Algorithm: sha256WithRSAEncryption
63:19:67:99:1c:d2:e3:d6:0b:2f:6c:51:fa:23:11:95:cb:8b:
33:02:8d:6c:17:d7:22:23:05:4e:d8:b1:69:97:ca:85:f1:63:
63:bc:a1:15:7b:9e:62:29:d8:c3:14:ad:c4:24:65:3c:79:4f:
98:2d:6c:f1:1c:db:9f:2c:1c:9a:c0:00:91:31:c2:57:34:06:
c8:76:fa:9a:2e:7a:84:ae:62:c3:ef:48:fd:08:02:70:cd:7a:
81:59:74:a7:8f:92:6a:12:ce:27:74:dc:f3:41:d9:1f:56:4f:
7e:63:e2:ee:75:2b:ce:ac:d1:13:38:fc:9f:cb:b5:69:71:18:
ea:22:e9:5a:47:4a:4d:fa:58:78:e6:4c:c4:87:8b:71:13:f5:
a0:43:12:60:26:f7:4b:f7:4a:82:92:12:bc:e8:16:81:a3:72:
07:2f:89:dd:67:1e:db:90:ae:55:b1:ee:74:ad:46:da:3f:c2:
98:23:94:2f:c1:14:73:8a:91:f0:86:19:42:28:b8:a8:be:ae:
d6:a9:d3:e6:3b:20:3f:d5:3f:64:f8:4f:29:65:7a:03:d4:41:
cc:c6:d0:bc:ca:75:00:3a:4e:61:f2:1d:9a:8e:6d:20:d3:6e:
e7:44:40:00:db:48:1e:52:59:a2:10:dc:90:dc:22:2c:a8:f8:
0d:27:b1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org