Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qh2UFTFue-DmJwht85wgwS_jzEk.roa
File: Qh2UFTFue-DmJwht85wgwS_jzEk.roa (raw, json)
Hash identifier: wvjN4c33wBXxZnFOGXcZiir0Y1EJf3zSHccHshTiCSI=
Subject key identifier: 42:1D:94:15:31:6E:7B:E0:E6:27:08:6D:F3:9C:20:C1:2F:E3:CC:49
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BF7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qh2UFTFue-DmJwht85wgwS_jzEk.roa
Signing time: Sun 07 Feb 2021 06:43:06 +0000
ROA not before: Sun 07 Feb 2021 06:43:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3063 (0xbf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:43:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=421D9415316E7BE0E627086DF39C20C12FE3CC49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2d:e2:26:32:1e:95:b0:63:49:66:8c:49:27:
59:5e:bc:bd:4c:bc:46:34:35:54:70:58:18:06:e9:
72:67:2b:ea:a0:38:0c:a8:71:13:e0:4f:13:74:73:
6e:ac:78:e9:85:13:d4:ea:c4:f9:9d:75:8e:1d:42:
ea:43:ef:41:07:ab:12:0b:73:31:33:fd:85:84:1d:
36:4f:72:59:bb:9b:6c:fd:01:e1:eb:0c:84:de:b9:
68:bc:f9:a6:09:93:00:49:d2:f0:99:b6:a3:16:a3:
83:94:32:c8:e2:59:3e:e5:48:eb:dd:10:ff:0d:17:
82:a3:05:e1:d3:f6:04:e0:85:b5:37:f2:6d:0a:48:
9c:f5:e0:37:08:e4:0a:57:9a:75:0a:7e:52:8a:f8:
71:a0:7c:2a:10:af:d9:c6:f9:39:62:1f:eb:67:6b:
0f:93:33:fa:96:29:4d:e8:1f:2f:9c:cb:7e:30:37:
60:24:bd:39:91:e7:7e:80:2d:ce:38:42:13:72:7a:
7a:24:05:3b:ea:19:15:b9:3b:1a:85:68:c8:ac:e9:
64:7e:22:f0:de:46:2b:b0:7b:d4:6a:ed:b4:39:a6:
12:f2:5c:36:85:a3:71:33:a4:8b:19:e6:ae:3e:fc:
2c:89:2a:bd:93:16:73:64:8e:2c:d0:4a:c9:1c:6f:
55:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1D:94:15:31:6E:7B:E0:E6:27:08:6D:F3:9C:20:C1:2F:E3:CC:49
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qh2UFTFue-DmJwht85wgwS_jzEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:e2:ab:92:d8:91:f1:59:4d:96:ef:dd:ca:d3:32:27:62:1e:
1f:c1:17:36:de:85:04:3c:21:ab:fd:5f:6b:8f:70:e3:06:de:
5e:4d:be:a7:a6:eb:98:98:6b:da:7c:58:02:b2:1d:26:ea:39:
f4:17:7d:3c:d2:ab:df:cb:7c:32:fe:ee:cd:e2:41:45:28:4a:
0e:09:9e:75:92:f6:89:e6:67:57:9d:47:9e:40:bb:93:64:1e:
66:0e:bc:e4:ab:98:8a:f3:8c:ce:f9:e9:e6:be:0d:ce:2e:82:
86:01:03:ab:36:73:c0:96:7a:92:90:f2:14:c4:4b:7c:8b:c8:
af:33:63:4d:73:ca:24:be:89:24:2e:c7:5c:10:05:74:20:23:
b5:e4:f0:6c:a5:4c:52:6c:02:90:3c:d4:53:30:a5:ba:22:75:
f0:8c:ff:b4:ab:2b:37:39:ac:66:fa:6e:3b:70:53:be:49:7b:
ed:96:3f:d0:fc:81:ee:7a:d6:6f:73:38:12:29:72:35:7e:34:
ba:c0:9b:ed:ef:d3:37:9a:41:eb:a9:14:98:29:6a:16:48:90:
55:89:a2:31:6d:46:12:33:03:bf:af:4a:03:7d:e2:7c:b7:6f:
14:56:45:66:18:a6:8e:53:4c:37:3f:52:2f:e0:31:35:19:26:
a6:90:31:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org