Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PHTF2Qr2RlC7JOkM4hZhVXuhDSQ.roa
File: PHTF2Qr2RlC7JOkM4hZhVXuhDSQ.roa (raw, json)
Hash identifier: vR+GW2hGxSO1ytI7cdhi0ws2Ax/0NIk4FL1iE+xmK8U=
Subject key identifier: 3C:74:C5:D9:0A:F6:46:50:BB:24:E9:0C:E2:16:61:55:7B:A1:0D:24
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PHTF2Qr2RlC7JOkM4hZhVXuhDSQ.roa
Signing time: Wed 29 Sep 2021 02:44:02 +0000
ROA not before: Wed 29 Sep 2021 02:44:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3795 (0xed3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3C74C5D90AF64650BB24E90CE21661557BA10D24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:19:b8:aa:48:43:a0:8d:69:27:5f:2e:00:5d:
12:9d:e1:34:98:8c:47:46:d5:11:78:2c:39:80:1b:
b6:ce:a7:07:37:d3:9d:27:1f:57:72:9d:22:41:81:
5e:e4:68:6b:4c:89:ba:4f:89:ba:99:32:5b:b2:d6:
63:45:48:24:f1:42:d1:89:ca:ee:3a:e5:d5:0b:83:
bc:d2:24:fd:88:f8:2d:fc:0f:47:d0:46:32:e9:5b:
bb:2a:66:d5:95:6c:bb:3e:43:46:77:65:32:9f:4e:
57:61:cc:b1:99:95:ce:3e:8e:75:ff:69:a7:f2:7e:
82:ab:ca:0c:1a:a7:68:06:1a:7d:04:3d:63:90:c1:
d3:41:91:db:8b:62:75:2d:87:32:c3:6f:9b:8b:63:
64:a8:10:5e:22:b3:c1:fc:3e:fd:51:b2:b7:4d:5e:
98:91:64:04:31:22:4a:0b:c9:1e:d8:07:07:5c:b4:
bf:c4:2f:e0:a2:f0:8d:d4:a7:b6:7f:95:da:5b:3c:
4d:aa:0f:84:e3:97:cc:fe:bc:bc:a3:51:cd:fe:ff:
1c:59:07:99:5c:fa:ea:74:4a:e5:a8:cf:4a:c3:6e:
8d:06:a7:f2:98:2f:5d:aa:1e:a8:07:c3:bb:8b:d8:
c3:38:81:c0:a6:fb:09:fe:53:7a:81:d7:d0:3e:7f:
b9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:74:C5:D9:0A:F6:46:50:BB:24:E9:0C:E2:16:61:55:7B:A1:0D:24
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PHTF2Qr2RlC7JOkM4hZhVXuhDSQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:92:7c:6c:cf:54:34:4d:73:24:dc:fb:74:e5:e8:34:99:70:
d5:f9:de:a0:2d:de:bc:52:1b:d4:b9:05:9a:01:14:d7:33:af:
69:c5:cd:d2:fd:ba:bb:d1:76:31:b5:f1:04:ac:db:c2:38:d9:
3e:f9:f3:8e:d0:ba:75:e9:c4:6a:84:37:8d:c1:d1:a3:a7:78:
03:51:e6:17:f1:93:04:bb:83:93:55:92:1c:44:06:3b:f2:9f:
50:67:18:0d:94:2d:9b:ef:f0:06:cf:bf:c6:ca:d9:15:f0:1c:
bc:32:56:24:b3:d4:38:a2:12:b9:1d:a1:40:95:0c:92:9b:3e:
d2:4e:ba:7c:ff:6f:5f:59:b8:a2:e7:b1:46:44:70:11:52:ef:
c6:e0:ee:3d:bb:ff:29:4e:91:81:02:62:55:25:15:0f:31:dc:
a6:7f:52:d4:9e:ec:e0:97:13:1f:40:5c:89:08:b3:52:5f:d8:
46:6d:00:ac:3a:dd:9a:14:b7:2d:84:75:0b:2f:ea:16:b6:c3:
44:7e:9a:a4:a7:a8:64:b8:ee:43:f4:39:a3:55:1e:d7:e2:67:
af:ef:0c:b5:84:74:34:f8:44:d3:5f:cb:1c:b5:6b:87:1b:d4:
1f:64:37:cd:f9:c3:09:ef:70:b7:b2:48:95:ff:ae:e9:74:d2:
be:b2:8c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org