Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OnMnzbYaWgC77viHU6KicjoAHfg.roa
File: OnMnzbYaWgC77viHU6KicjoAHfg.roa (raw, json)
Hash identifier: zn0AKxVjcbE4f+0nlFEp6rXnp36DOIxJbtm4Kb/6n7k=
Subject key identifier: 3A:73:27:CD:B6:1A:5A:00:BB:EE:F8:87:53:A2:A2:72:3A:00:1D:F8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C0D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OnMnzbYaWgC77viHU6KicjoAHfg.roa
Signing time: Sun 07 Feb 2021 06:45:37 +0000
ROA not before: Sun 07 Feb 2021 06:45:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3085 (0xc0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:45:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3A7327CDB61A5A00BBEEF88753A2A2723A001DF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0b:28:08:a0:3e:a1:d4:9c:48:dd:90:d0:f7:
21:1b:9c:73:1b:bf:e2:01:b2:83:2f:eb:73:c1:2a:
f8:db:ab:cd:8d:18:42:d1:84:be:8a:d1:21:7f:33:
99:47:e2:e8:0e:ea:0e:c2:00:98:83:50:f6:9e:dc:
e5:05:0a:31:00:08:fa:3c:bf:96:7f:54:6f:6f:ac:
a4:ef:7a:51:cb:8f:06:cf:81:22:d0:33:4a:9a:ec:
bc:49:46:a4:39:86:08:17:95:a5:cb:40:9e:b1:dd:
fa:b6:64:19:73:c7:df:f4:72:96:6d:84:f7:6e:e5:
db:40:58:f4:fd:c3:a7:9f:ee:3d:6f:71:05:8c:6f:
f6:ff:ce:a3:17:5c:cb:53:1b:bb:43:ab:a9:bb:22:
c6:d8:4c:df:78:a0:9a:a9:b0:87:3b:40:c2:8b:f5:
a1:26:bd:20:2d:d7:09:e9:e4:53:74:a4:71:a9:9a:
ca:da:a4:02:34:d2:19:c9:14:5e:5e:24:55:bd:89:
8f:42:1d:db:91:35:b6:f5:a4:30:58:37:58:3e:cb:
a9:ac:a8:4f:90:e2:32:91:a7:bc:df:83:e3:8e:49:
2e:d6:a0:a4:77:f6:5c:b3:f6:a9:4e:ae:9b:dc:72:
7f:5f:06:54:5b:3c:44:23:68:8d:1b:c9:f3:2b:8f:
ad:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:73:27:CD:B6:1A:5A:00:BB:EE:F8:87:53:A2:A2:72:3A:00:1D:F8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OnMnzbYaWgC77viHU6KicjoAHfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c9:67:98:4e:27:94:b2:6c:00:c0:59:fb:f5:64:a8:c8:7c:f9:
28:b9:3d:ea:57:f6:f5:ad:70:14:a2:ef:4b:74:34:bd:5c:1b:
f5:60:45:ce:38:cd:e5:70:ae:e0:0a:c4:06:ac:74:21:fa:2a:
0f:6e:20:08:49:93:d6:0b:52:80:aa:69:15:4f:4d:36:dc:8b:
6b:45:95:49:f2:e7:0e:1d:5a:bc:56:02:fa:f8:1c:df:84:9d:
44:5a:3a:e4:12:0e:73:14:7d:f8:1c:32:87:7c:de:13:68:17:
42:3b:1b:2d:2e:ee:68:0f:b1:81:9b:8d:73:e9:8e:5c:65:37:
8a:19:53:8f:00:60:6f:2c:95:e3:58:0c:38:9a:1f:a2:f7:8b:
40:b3:7a:2c:cf:e1:78:38:4d:83:2e:0b:16:d6:c1:86:2e:72:
ab:69:20:50:f1:93:48:d0:bb:26:50:35:79:03:98:a1:ef:6d:
e9:f3:90:76:0a:e3:5b:a3:c8:81:f9:f4:2a:52:7a:c2:7e:f7:
29:a2:f3:28:20:72:02:09:f9:35:bb:a6:04:97:bf:02:e6:d8:
6d:2c:36:b4:6f:07:8b:02:a1:0b:50:95:89:02:70:f6:1b:1c:
b7:7d:76:10:3b:b3:db:19:4e:d7:9c:1e:31:08:99:f2:c4:2f:
fa:23:b8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org