Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/P5oTZtlburPZEaP0rOB0xS_nNoY.roa
File: P5oTZtlburPZEaP0rOB0xS_nNoY.roa (raw, json)
Hash identifier: 6xEF19vlUjqOUfZ0QYNwT0gF6pxYP1ZgRHpRXs8lPA0=
Subject key identifier: 3F:9A:13:66:D9:5B:BA:B3:D9:11:A3:F4:AC:E0:74:C5:2F:E7:36:86
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E1C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/P5oTZtlburPZEaP0rOB0xS_nNoY.roa
Signing time: Wed 29 Sep 2021 02:43:12 +0000
ROA not before: Wed 29 Sep 2021 02:43:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3612 (0xe1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F9A1366D95BBAB3D911A3F4ACE074C52FE73686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c4:ba:e5:2f:f6:be:d8:28:80:73:fa:04:04:
48:00:a5:bc:a4:7b:8e:0e:e5:ad:e5:73:6e:e5:e6:
5f:39:09:2d:15:36:e9:04:38:59:91:ab:a6:83:8c:
da:89:cd:bd:28:f1:7c:d9:8d:97:61:56:ac:40:09:
ba:af:3d:d0:56:ea:c9:38:99:8d:61:a5:e7:df:f4:
f4:7d:b7:c6:5c:bf:bf:a5:b2:01:7a:04:76:4d:55:
0d:54:31:01:7b:da:b6:a9:d4:e5:4e:83:69:78:64:
f9:6d:a7:aa:af:c5:e8:12:f8:27:00:db:c9:03:84:
ee:7f:b6:fc:c7:e2:80:09:de:8c:76:f6:67:fc:2f:
b4:6f:62:bf:eb:8e:c2:1b:ed:ee:95:7d:e7:b6:72:
5e:85:8a:4c:ad:fc:d1:2d:15:1f:76:49:10:a5:17:
a1:82:5c:4b:5c:7b:e8:70:2c:9c:58:3f:a1:e4:c7:
47:dc:bd:00:c4:64:f1:42:4f:52:90:40:2d:10:cb:
01:27:47:da:a2:12:ff:84:43:6e:d3:36:c6:e0:bb:
13:7b:cd:e3:0b:60:84:09:c4:51:55:1d:bc:1b:86:
3f:94:23:67:5e:74:da:c7:cb:7c:ca:ec:88:9b:20:
d1:0b:42:b7:c2:26:be:aa:16:00:c7:7c:ff:7d:52:
a8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9A:13:66:D9:5B:BA:B3:D9:11:A3:F4:AC:E0:74:C5:2F:E7:36:86
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/P5oTZtlburPZEaP0rOB0xS_nNoY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
82:23:09:7d:fb:4c:e9:38:d4:0a:1d:c8:fc:74:5c:1c:19:05:
ba:57:ba:03:03:9d:80:bc:4a:d9:9c:ce:98:86:79:26:76:a6:
42:2c:e2:b9:e7:2c:04:65:06:bd:49:89:9a:79:f2:f1:2b:8b:
af:cf:7c:cc:59:28:22:e0:97:0a:c4:ab:af:47:92:b9:56:c4:
1f:8b:57:39:10:c1:19:02:dc:11:5c:8c:86:d0:7f:d6:2f:48:
17:66:44:e1:5f:0e:b1:14:93:e3:5b:de:f9:26:88:d0:91:90:
1b:d8:61:fe:88:95:5c:77:ab:86:3d:35:34:ee:c0:cd:39:06:
af:37:45:94:c2:18:74:9d:ec:47:79:c8:dc:bf:d0:a0:26:5d:
7c:bb:3a:d6:44:b6:c6:2b:8b:2d:20:86:03:ec:9c:1a:dd:dc:
db:21:0c:33:04:af:1a:25:0e:4a:39:f5:9e:9a:4e:30:c9:98:
36:68:1d:c7:c8:88:bb:3f:61:9e:ed:0f:7a:b2:a0:70:b4:e4:
5d:a2:08:52:c2:0f:1c:72:25:a1:c7:df:7a:0d:1c:19:7e:b1:
2e:bd:d8:82:25:bc:a9:13:45:3a:c3:91:40:fc:ff:ac:a1:89:
f8:9b:2c:2d:8b:ba:7c:cf:ca:da:9b:ac:97:80:85:7f:d7:f5:
68:63:52:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org