Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q99c8C-WyFKvXu_IVL0Mzs7YM34.roa
File: Q99c8C-WyFKvXu_IVL0Mzs7YM34.roa (raw, json)
Hash identifier: 71mbYF2/xLId1VnK45LsXycRaLXY6ivicpUkY54LSxw=
Subject key identifier: 43:DF:5C:F0:2F:96:C8:52:AF:5E:EF:C8:54:BD:0C:CE:CE:D8:33:7E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E4E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q99c8C-WyFKvXu_IVL0Mzs7YM34.roa
Signing time: Wed 29 Sep 2021 02:43:25 +0000
ROA not before: Wed 29 Sep 2021 02:43:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 210.244.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3662 (0xe4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=43DF5CF02F96C852AF5EEFC854BD0CCECED8337E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:dd:9f:ce:5f:46:ca:85:27:56:fd:6a:46:50:
ed:c7:b0:3b:f8:cf:7c:42:96:0f:04:7e:4e:a7:72:
6a:f4:23:d5:dd:6f:c0:e1:1a:af:e9:db:a1:ae:26:
66:75:c0:6f:78:4b:f9:11:87:24:1e:0a:9a:1d:69:
df:0c:9e:b9:01:25:76:d7:94:2c:a3:f7:57:cc:42:
17:b6:99:03:86:92:e8:d6:7d:09:e4:dc:71:c2:69:
dc:fe:24:1c:b5:f4:11:26:67:91:4c:27:ce:15:d9:
8b:4d:b0:4a:a0:ef:17:78:93:99:23:d1:9f:f1:ed:
bb:cc:1a:87:5c:e5:18:df:d1:e3:f7:50:13:c4:50:
6c:99:b8:72:98:eb:b4:6e:e6:da:56:ea:04:b1:44:
b4:f7:32:ca:37:79:60:f7:39:f7:dd:f3:ca:84:23:
c8:d7:a1:26:a8:79:7f:6a:b4:fc:c7:51:6d:b3:4f:
ba:30:4e:78:34:72:61:8d:62:6e:dd:f9:1c:a9:9a:
60:dd:83:7e:6f:bb:19:f3:1e:90:5e:3d:76:a2:00:
96:00:2d:c2:43:a0:85:ae:01:27:09:7c:8d:98:fb:
ec:36:cd:fc:d2:ad:54:77:ec:88:9d:f5:77:bf:68:
6c:ef:5e:2c:cf:18:ee:b8:a9:dd:23:e2:36:21:ab:
b3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DF:5C:F0:2F:96:C8:52:AF:5E:EF:C8:54:BD:0C:CE:CE:D8:33:7E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q99c8C-WyFKvXu_IVL0Mzs7YM34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.84.0/22
Signature Algorithm: sha256WithRSAEncryption
43:0a:79:36:13:b9:93:5d:bb:f3:39:e6:c9:28:03:f9:b2:e9:
37:38:9f:d5:fd:96:ea:ce:fc:ce:83:e8:02:2a:16:fc:79:a6:
38:14:a2:dd:5f:a0:76:ca:14:c6:20:88:f1:f0:73:7e:e6:5d:
ff:7f:a5:8f:9c:80:53:7a:36:41:05:0f:04:07:6d:2b:db:40:
1e:72:66:2d:bb:8e:f2:30:d1:3a:89:83:2f:cd:61:58:04:ac:
bf:67:e7:c0:f0:86:66:b2:80:34:8f:c7:8d:8a:37:af:08:62:
f1:86:fb:90:be:54:84:2a:6a:cf:f1:56:33:09:47:eb:43:2f:
70:91:cf:7e:c1:96:78:89:c8:04:13:cb:c7:65:22:49:e3:27:
ab:5d:8d:db:7d:c6:23:c0:4f:c7:06:78:50:7d:b1:05:4c:75:
78:e2:ea:74:3d:79:b9:bc:1e:9c:9d:ac:8e:53:ef:40:e5:34:
eb:56:75:ac:76:2a:7d:d7:41:59:1f:01:4d:fe:9f:d0:ef:aa:
8f:92:66:95:3d:8d:2a:4f:a8:9e:f9:45:12:9b:ec:89:c1:33:
59:c9:83:b3:7f:71:7e:28:33:64:b4:7a:79:f2:b8:8a:8a:c1:
e0:9e:72:56:a6:31:7f:3d:3f:23:bf:24:45:7c:af:95:b2:95:
49:e8:a1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org