Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QcdHGsBgJAEa_8LnbQ9Ymnqo-k0.roa
File: QcdHGsBgJAEa_8LnbQ9Ymnqo-k0.roa (raw, json)
Hash identifier: jaq1XHT742IUHOpQCyh0ZYOmLGZ3JkO00zGAzg4jNks=
Subject key identifier: 41:C7:47:1A:C0:60:24:01:1A:FF:C2:E7:6D:0F:58:9A:7A:A8:FA:4D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E28
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QcdHGsBgJAEa_8LnbQ9Ymnqo-k0.roa
Signing time: Wed 29 Sep 2021 02:43:15 +0000
ROA not before: Wed 29 Sep 2021 02:43:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3624 (0xe28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41C7471AC06024011AFFC2E76D0F589A7AA8FA4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:51:c3:7f:b4:4a:a4:9a:68:5b:f1:58:0b:
8f:d5:81:83:e9:b7:f6:da:87:58:b4:31:dd:82:92:
37:14:73:9c:35:ab:4e:7e:83:a1:d5:35:b7:c0:84:
45:57:39:4a:33:f0:74:b1:97:72:fe:21:79:08:83:
3f:82:24:2f:d8:55:5a:14:4d:5d:54:d6:e4:32:91:
35:ca:49:46:92:73:d7:be:43:fd:80:59:bc:fe:9a:
f5:e7:9c:f8:77:da:66:dd:61:7b:eb:f5:2c:49:a0:
6a:3d:58:2e:6b:61:1d:0a:d8:2f:d6:18:d1:d9:ca:
d7:1a:6e:8e:08:a4:b7:80:ce:05:10:74:49:99:ed:
f6:5d:4a:96:e2:3c:76:d9:b1:6e:8e:b8:b7:4b:40:
79:40:9b:e3:1b:5a:6d:45:ef:c5:75:40:73:60:27:
9d:af:12:f9:5c:db:c1:84:8e:b5:a5:b6:c7:95:56:
50:43:07:ce:60:b0:91:d2:b9:23:45:4c:ad:f7:3b:
b9:85:dd:3b:d7:1e:25:f8:be:ca:51:a0:4a:0c:19:
42:75:21:54:8d:46:97:77:ba:46:d8:7e:bb:a5:5f:
97:bc:76:c8:51:ea:f6:73:de:20:75:58:13:78:6e:
b3:0e:ac:8b:80:cc:ee:bb:e6:41:4d:58:2f:08:59:
18:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C7:47:1A:C0:60:24:01:1A:FF:C2:E7:6D:0F:58:9A:7A:A8:FA:4D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QcdHGsBgJAEa_8LnbQ9Ymnqo-k0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:ab:61:e8:99:9d:35:91:36:ea:9b:4c:79:3d:67:b4:94:97:
b5:70:7a:9e:64:87:68:36:32:b7:8d:fa:8a:bb:31:33:79:e0:
c1:c7:21:a5:50:9b:ec:fa:b1:28:b5:09:f9:db:18:37:73:24:
57:b5:9d:40:e2:c6:9c:cc:19:c4:43:9b:0b:83:0e:53:57:cc:
f1:f1:29:c3:e1:f5:1a:e4:f0:64:9a:ff:28:d4:39:38:c6:42:
21:4a:ce:ad:2a:61:df:13:92:df:63:c9:e1:68:84:f8:ce:86:
33:4b:71:43:63:ac:ff:63:71:89:54:97:85:3f:ff:e6:ca:15:
ed:be:ad:fa:c3:82:e8:8a:c5:76:e0:40:7e:ef:6b:55:90:0e:
83:e6:71:c0:e4:ee:82:29:28:32:8e:01:e3:ed:48:10:dd:90:
3b:ba:ed:d7:01:b9:b7:b8:cd:47:34:b9:fe:d2:44:9a:7d:9e:
e0:51:68:15:bc:c4:d1:68:0e:fd:6d:71:7d:8b:95:5d:5a:67:
f1:50:5c:ca:93:fd:a4:3a:b9:e5:56:82:11:a6:a4:7b:70:14:
56:db:3e:ba:c5:64:0b:7e:49:44:f1:8d:6c:c0:f1:79:28:95:
db:19:95:1d:ea:ad:79:e4:04:0a:84:d7:6b:eb:d2:55:29:d0:
4e:21:79:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org