Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Oym8Eh-sZJs8DRsAn6NtRUqPcYY.roa
File: Oym8Eh-sZJs8DRsAn6NtRUqPcYY.roa (raw, json)
Hash identifier: KJH2TJnssedKgyTpfSuqlSwIGs0SflZk8sl+K1TrfgM=
Subject key identifier: 3B:29:BC:12:1F:AC:64:9B:3C:0D:1B:00:9F:A3:6D:45:4A:8F:71:86
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BBB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Oym8Eh-sZJs8DRsAn6NtRUqPcYY.roa
Signing time: Sun 07 Feb 2021 06:33:07 +0000
ROA not before: Sun 07 Feb 2021 06:33:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 115.30.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3003 (0xbbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:33:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B29BC121FAC649B3C0D1B009FA36D454A8F7186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3c:89:5a:b4:0e:c8:2c:ea:b1:ac:82:73:88:
b4:6d:96:ae:15:db:e8:53:59:4b:38:82:44:a8:b8:
68:ca:a3:8d:1f:10:e5:40:4f:01:38:82:ae:04:19:
2c:f6:87:34:95:46:3c:de:3d:df:76:be:c5:ec:11:
35:0d:6c:be:77:83:f5:3a:fb:b3:fb:2c:eb:a1:b4:
67:7f:4a:9d:c0:e8:1a:8d:f4:78:7a:06:a6:9b:1b:
0f:fc:ea:9f:45:d2:76:0e:fa:39:16:b9:e8:8f:2e:
2f:74:58:c8:46:00:10:bd:4a:d0:ff:0e:28:41:b9:
2f:4a:b4:e0:57:fa:a1:91:2e:e7:92:15:fc:b1:f5:
8d:2d:56:ec:e1:e3:43:ca:d8:f5:a3:b5:f7:f1:83:
16:45:6f:e2:c0:1e:07:61:e0:31:11:c2:cb:92:62:
86:8c:11:66:65:f0:98:7b:3b:59:ae:94:5b:ff:78:
6a:7e:0c:3e:fb:8d:61:b3:10:a8:73:61:e4:3a:c7:
43:13:59:5a:b2:59:19:b8:c1:9f:54:2d:0d:41:96:
1f:33:6f:38:52:a3:dd:a8:16:f4:cf:b2:f7:6b:9d:
17:40:1a:a0:14:22:25:74:4d:17:91:c4:46:ad:64:
4e:1e:db:eb:2a:e6:57:16:2d:dc:bc:ec:8a:42:fd:
c0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:29:BC:12:1F:AC:64:9B:3C:0D:1B:00:9F:A3:6D:45:4A:8F:71:86
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Oym8Eh-sZJs8DRsAn6NtRUqPcYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.64.0/18
Signature Algorithm: sha256WithRSAEncryption
06:e0:2c:29:83:c7:7a:e7:57:d3:c0:80:08:53:5a:f2:12:14:
09:6c:f0:3d:fa:20:98:97:92:a4:2a:1f:60:7a:c9:82:67:ea:
dd:98:b1:84:8b:a5:30:b8:1e:2d:65:6a:9d:6e:a9:52:7f:c4:
8c:a7:e0:44:ad:ac:2d:15:8f:5e:b5:49:19:a8:7e:a6:08:48:
1a:c9:68:e2:19:3e:a1:44:4b:84:bf:75:27:30:25:3b:13:03:
9b:7d:0a:3b:90:e0:c9:73:50:df:6a:ec:07:9e:8a:35:1d:b7:
2b:33:b8:88:5b:6e:13:aa:cc:5c:d6:6a:b7:6a:13:cb:ed:cc:
dc:ae:da:48:e1:f3:a4:fa:99:19:71:d4:54:07:42:a8:b7:5f:
d4:9c:18:f0:00:4f:83:51:f9:0e:c8:30:65:ee:a5:08:94:e4:
2b:c8:1a:f6:74:fa:87:9f:f6:0f:73:26:a6:cf:86:94:7c:61:
66:64:a6:ab:1a:98:aa:a2:e8:6c:78:14:fb:56:96:3c:fb:ae:
fe:74:7c:9d:2d:10:e0:75:3d:3c:57:91:40:31:bb:67:cc:7f:
3d:0b:7f:17:b6:f9:7c:d9:a5:38:9e:16:b0:2c:ee:e8:4b:76:
71:97:36:da:7c:8f:dd:3c:cc:83:fe:d6:81:d3:85:85:8e:f7:
e0:90:8b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org