Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q0-5OAuiqO0zq1FvteNMwTSem_c.roa
File: Q0-5OAuiqO0zq1FvteNMwTSem_c.roa (raw, json)
Hash identifier: PdMVujbI3aFJ8PZ7xqUNqJALmZ1j4D8qNMj3D7+3BWI=
Subject key identifier: 43:4F:B9:38:0B:A2:A8:ED:33:AB:51:6F:B5:E3:4C:C1:34:9E:9B:F7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0908
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q0-5OAuiqO0zq1FvteNMwTSem_c.roa
Signing time: Tue 29 Sep 2020 09:52:43 +0000
ROA not before: Tue 29 Sep 2020 09:52:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 175.183.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2312 (0x908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=434FB9380BA2A8ED33AB516FB5E34CC1349E9BF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:bf:fb:c6:1c:a0:bc:7e:a5:38:2f:62:c8:
52:32:af:a9:ec:f1:4d:5b:0e:70:c3:7e:55:40:c4:
92:2c:27:7a:b5:cb:95:7b:ec:a1:34:b3:fc:c2:eb:
d1:19:36:05:ca:6e:88:64:45:20:7f:80:bb:68:55:
98:a8:2b:8e:0d:6f:dd:14:1a:d5:46:1b:92:e2:7f:
e0:a5:a4:60:5a:1e:31:1c:65:58:b4:ad:4c:b4:8b:
a6:79:8d:21:fb:c4:b9:53:62:38:ae:53:88:9e:cd:
61:b2:ef:da:d0:3a:4b:77:15:4e:36:42:6e:54:44:
70:a2:de:d5:c8:b7:b8:10:0d:a2:50:e6:bb:51:34:
91:66:61:7d:be:51:c2:23:50:31:fe:52:8a:f8:d0:
fb:97:4a:6f:6e:75:96:cf:de:b6:6f:89:37:be:a0:
55:82:ca:77:1e:37:1f:28:08:22:07:78:88:37:31:
c9:c7:d0:97:15:42:e3:34:f0:86:df:6f:ca:eb:61:
d1:f6:1c:7d:34:aa:ef:0a:18:65:31:ae:6d:83:bf:
f9:56:21:2a:e9:78:aa:f1:8c:98:50:d1:be:41:ce:
01:a0:e1:e3:03:4f:cc:83:50:70:ce:c1:da:76:e8:
51:cf:55:1b:3f:cc:1a:2d:a5:24:30:dc:7a:a9:ce:
c5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4F:B9:38:0B:A2:A8:ED:33:AB:51:6F:B5:E3:4C:C1:34:9E:9B:F7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q0-5OAuiqO0zq1FvteNMwTSem_c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.64.0/19
Signature Algorithm: sha256WithRSAEncryption
41:13:64:11:b0:79:d2:6d:2f:55:1c:c9:53:f5:a0:3d:fd:70:
21:de:21:96:07:e6:d7:54:f0:68:5a:4d:a5:80:75:36:da:5e:
c6:b7:38:b1:24:e0:9b:0a:0b:82:ba:f7:06:b0:af:f5:76:c7:
e3:96:28:e0:77:e7:43:98:f5:3f:69:99:c1:69:1e:5e:62:cd:
cd:d0:ed:22:85:69:57:e1:df:11:9a:9a:b8:91:8f:16:c0:19:
66:94:f8:f7:74:1b:a2:e0:1b:7e:0d:01:22:ed:ea:cb:cd:7d:
d3:c5:46:af:75:de:ba:01:29:6a:d1:d2:c3:1c:c9:32:bf:42:
c6:a9:4f:03:4b:8a:a3:6c:69:f8:27:a9:7c:da:c8:ec:73:f4:
a8:7b:e9:e3:42:1c:ac:6c:f6:51:2a:f4:89:eb:c4:5a:45:1d:
c6:c1:42:e5:02:20:72:01:b7:79:c3:a8:03:e3:29:c2:89:a4:
4d:d3:6e:54:e7:fd:f7:fd:e9:d1:4d:90:04:8b:eb:d2:36:60:
50:36:f1:ae:cb:9b:d2:d0:73:6a:90:ad:d2:d7:71:4f:c0:ee:
53:bc:ca:2f:d2:a5:a9:ef:0e:f6:e9:28:2f:25:22:76:a8:97:
9a:c3:0d:fb:7d:99:71:9e:1a:b2:7c:64:61:39:d2:ce:40:c9:
a7:4f:f0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org