Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2KdTmaei0nIaqbOmy0fwSQ5PcY.roa
File: O2KdTmaei0nIaqbOmy0fwSQ5PcY.roa (raw, json)
Hash identifier: DZywPnuXhzigSEj3G+5XNTbRI7jcFYZD+KYeZMyKVbw=
Subject key identifier: 3B:62:9D:4E:66:9E:8B:49:C8:6A:A6:CE:9B:2D:1F:C1:24:39:3D:C6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C01
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2KdTmaei0nIaqbOmy0fwSQ5PcY.roa
Signing time: Sun 07 Feb 2021 06:44:00 +0000
ROA not before: Sun 07 Feb 2021 06:44:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:44:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B629D4E669E8B49C86AA6CE9B2D1FC124393DC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:58:3e:cb:5c:e7:47:9f:9b:41:23:e8:bf:35:
91:7d:ba:cb:b7:4c:41:58:c6:33:2c:38:b4:fa:f2:
a3:78:d2:74:0a:09:a4:c8:1d:55:c0:8c:46:69:65:
5f:20:7c:cd:d9:6e:89:46:1c:78:23:ea:2d:1d:9c:
00:5e:92:4a:86:8c:5d:f9:54:6f:13:df:40:38:07:
2e:08:0c:ba:56:97:58:aa:99:ea:6b:3b:85:df:4e:
2d:2e:ea:45:1e:73:11:18:b0:dd:a8:b8:b0:5a:a8:
f5:f3:93:d4:52:43:b4:16:38:6f:4f:a8:0a:37:28:
17:c5:85:c6:b5:3e:55:4e:dc:df:30:1b:37:b1:ca:
b8:b8:d9:b6:98:7f:d9:c3:43:12:a0:fc:4c:a0:cd:
88:33:da:65:8a:4b:5c:c1:46:84:13:3c:a6:ac:38:
64:02:1b:78:d1:a4:15:8d:49:ad:ad:9f:93:aa:e9:
51:83:07:dd:69:54:70:64:6e:1c:d8:3e:3a:98:ec:
2f:fe:de:3d:15:a2:e3:39:64:0c:33:5b:ea:92:73:
fa:da:e1:09:e1:3a:f1:cc:83:64:40:fc:8d:c8:d7:
87:29:de:d8:b3:84:05:f9:97:23:68:db:0d:f9:fd:
c8:3d:39:db:69:da:22:9b:32:be:74:ad:07:38:6f:
cf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:62:9D:4E:66:9E:8B:49:C8:6A:A6:CE:9B:2D:1F:C1:24:39:3D:C6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/O2KdTmaei0nIaqbOmy0fwSQ5PcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:24:18:9b:56:b4:2d:9c:2e:27:38:3a:8e:0c:4e:bd:c1:fe:
6d:f3:86:86:81:0f:54:18:39:d3:d0:6f:74:6a:fb:26:3d:af:
60:9e:c6:f5:87:7b:1d:de:ee:1a:89:2e:64:d6:e0:61:32:bf:
26:55:6f:db:5e:61:0b:d1:64:4e:de:b4:2d:22:3a:6c:07:3b:
c3:0c:88:4a:01:e3:07:89:b6:00:10:68:cb:98:5a:3c:dc:3d:
dc:a8:fd:cd:3f:cd:25:51:ee:35:d4:15:77:ec:31:84:77:c3:
f8:51:28:36:a9:50:df:86:2c:d7:8b:e4:ec:d7:99:23:88:ee:
0f:f6:49:fe:cf:34:5e:8d:32:3c:da:75:22:96:0e:49:57:1a:
12:af:21:ca:ad:b9:ca:c7:79:bf:b7:dd:72:5c:74:61:c7:1d:
e3:6e:87:b0:48:3a:f8:6a:1d:bb:1e:63:f4:ee:01:05:ad:95:
36:1c:0d:90:58:45:2f:45:41:4b:3f:47:60:fc:b2:05:4a:6f:
e5:c3:dd:b6:0f:b6:26:16:35:29:1e:b6:e0:0a:5c:88:0e:93:
66:d9:ff:1d:53:9a:76:f3:53:53:03:74:f1:06:8a:12:c9:3a:
c0:38:f0:2e:00:a8:bb:ae:33:33:b4:f6:e4:de:76:5b:82:73:
f3:05:2d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org