Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q5kvtp0KdrKXVYuBepYY0EXPIqk.roa
File: Q5kvtp0KdrKXVYuBepYY0EXPIqk.roa (raw, json)
Hash identifier: vSVP9ju9e9cdCO/NiWiiYfRcyLSdrrFjKnxaOvyIq00=
Subject key identifier: 43:99:2F:B6:9D:0A:76:B2:97:55:8B:81:7A:96:18:D0:45:CF:22:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B80
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q5kvtp0KdrKXVYuBepYY0EXPIqk.roa
Signing time: Sun 07 Feb 2021 06:22:57 +0000
ROA not before: Sun 07 Feb 2021 06:22:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 60.245.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:22:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=43992FB69D0A76B297558B817A9618D045CF22A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c1:20:b6:6e:82:21:7f:c6:23:46:7d:97:2d:
7d:08:52:2d:3e:18:b4:c4:a5:dd:e7:75:1f:35:f1:
00:36:4c:a4:2b:a8:88:e4:34:13:53:d2:84:da:11:
7b:23:e2:a6:c7:de:4a:7f:ee:24:9c:9c:aa:ab:e2:
e2:bb:d9:20:e1:a2:d4:3b:d4:b8:72:ce:bb:7c:df:
78:1f:52:f2:66:08:fb:e4:3d:2c:3e:a8:8a:09:cf:
27:5e:4b:7f:ac:fc:9d:8b:7c:d4:57:13:e0:f4:96:
cb:89:fa:aa:d3:74:5a:94:42:03:69:72:94:97:66:
c3:d5:4d:44:fa:6e:80:dd:37:d4:5f:ed:78:35:9a:
f0:fa:b1:3d:26:a0:da:10:c5:a4:4f:e1:37:fd:dd:
92:06:d0:f9:3b:f1:b5:dd:aa:02:b8:c2:37:78:f1:
79:33:cc:e8:40:c4:5f:bf:bd:9e:18:1d:39:60:09:
da:7d:95:f8:ed:89:19:9a:33:d6:6b:99:8e:3d:88:
be:4b:b3:66:27:2e:60:00:30:e2:d8:f1:e3:4b:44:
d5:e7:9a:25:6f:42:f8:28:f0:22:2f:03:56:d5:31:
f0:af:2d:73:ee:e5:d4:5e:c4:5c:5c:1f:c4:83:52:
49:82:cd:f0:90:d8:40:12:a4:f1:f0:5e:b1:a2:eb:
c8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:99:2F:B6:9D:0A:76:B2:97:55:8B:81:7A:96:18:D0:45:CF:22:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q5kvtp0KdrKXVYuBepYY0EXPIqk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.64.0/19
Signature Algorithm: sha256WithRSAEncryption
22:e4:e3:5d:ae:9e:e9:6c:2f:f1:10:88:68:70:49:07:fb:e7:
bd:33:46:2e:c0:5e:5f:36:7d:1c:e5:63:5b:09:82:4c:70:de:
f0:35:b8:50:a5:1a:ad:e6:1a:07:ab:0b:4e:7b:e2:f2:7f:6e:
4d:25:1f:67:8f:e8:95:de:6f:f5:4d:20:9d:fe:de:89:f8:cd:
bc:dd:e2:5f:4d:d4:79:53:f4:68:21:23:97:0c:f0:70:a2:37:
56:a9:08:c0:02:b2:cf:ee:83:a6:f5:7e:7a:ad:db:a6:4f:0e:
54:17:e5:94:58:65:61:a1:f0:68:a0:46:95:79:c1:40:de:55:
98:e5:e9:21:b1:c9:aa:c7:c5:72:e0:9a:00:38:9e:94:8e:10:
0d:49:68:8c:46:f7:3d:bc:ac:7b:e9:79:d3:c1:57:86:6b:2b:
61:40:bf:20:7a:b8:46:fc:7f:43:04:ad:9f:6b:52:11:cb:0d:
24:06:61:85:d3:03:cb:f8:c9:58:c1:e5:f3:c0:c8:c5:0e:71:
72:58:5f:96:14:26:28:d4:42:d6:e6:cf:ba:93:6a:4d:4c:1f:
dc:5c:3e:94:53:96:2b:2f:ad:de:26:9a:8f:ef:e9:ab:c6:16:
71:55:c8:7d:fc:0d:9d:c8:7a:bf:70:69:bf:da:28:1c:e0:e4:
f0:e7:34:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org