Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QnenRJvA-fRxWKuE_6yrHOps2ZE.roa
File: QnenRJvA-fRxWKuE_6yrHOps2ZE.roa (raw, json)
Hash identifier: OsdwGpuUYjr1J+6caB2VObKsTP1z5591CrNPNWlOliw=
Subject key identifier: 42:77:A7:44:9B:C0:F9:F4:71:58:AB:84:FF:AC:AB:1C:EA:6C:D9:91
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B98
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QnenRJvA-fRxWKuE_6yrHOps2ZE.roa
Signing time: Sun 07 Feb 2021 06:26:28 +0000
ROA not before: Sun 07 Feb 2021 06:26:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2968 (0xb98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:26:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4277A7449BC0F9F47158AB84FFACAB1CEA6CD991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:34:89:4f:d9:ed:82:05:db:02:50:fd:8a:
17:de:12:ed:7e:b3:96:5c:7b:7b:db:89:84:37:77:
f8:ec:c0:8b:14:0d:7f:34:9d:19:0a:fc:4c:0e:c6:
03:92:7d:ee:bf:99:da:cf:f6:2d:68:68:12:bf:55:
08:31:3c:ef:35:8c:74:01:d6:50:0e:ec:99:77:d1:
af:a1:90:21:c3:c9:99:d8:63:41:a9:fa:71:17:81:
1c:a7:6d:ac:ce:c1:37:0f:45:05:72:fa:8a:21:90:
ed:08:78:b6:75:a0:3a:be:b2:60:34:68:e4:d9:ef:
83:4c:3e:f3:6d:e2:f8:df:e9:92:6c:9e:8d:68:ad:
49:ae:33:ef:f6:0a:da:a2:fc:19:02:95:07:2c:84:
0d:00:9d:65:bd:4d:ef:44:eb:4b:af:2d:88:1d:6d:
82:4a:34:4b:c7:be:7f:83:00:62:d1:4a:82:c7:49:
13:d6:67:1d:d9:93:57:80:17:5f:0a:db:a3:81:51:
12:07:04:8f:bf:7e:a8:f7:77:5f:12:1e:c3:e1:ff:
82:c0:b7:27:88:a9:93:a9:9e:1e:70:1e:81:62:9f:
96:d7:ad:f1:24:17:e1:6e:5f:8d:96:4a:a3:02:be:
75:8c:56:ff:3a:93:96:02:29:bb:98:b1:84:4a:88:
71:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:77:A7:44:9B:C0:F9:F4:71:58:AB:84:FF:AC:AB:1C:EA:6C:D9:91
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QnenRJvA-fRxWKuE_6yrHOps2ZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
24:75:50:db:33:95:d2:5d:2e:a8:74:02:11:b2:51:4a:c8:d0:
6c:3e:7b:de:50:bc:a1:1b:fe:49:d8:52:c9:03:dd:f4:46:c6:
b0:28:6d:df:0d:ca:99:c4:a0:2b:82:10:d1:96:17:ab:dd:4a:
3d:c6:79:63:7b:e5:c0:11:71:04:e8:9f:83:6a:1c:cb:b3:1a:
b9:24:71:52:56:60:5d:e6:d1:11:33:e6:6a:4b:b0:cb:c6:35:
c1:7e:54:cc:e9:15:e1:e0:91:49:e7:43:e5:33:d1:ce:14:f8:
50:97:1c:ed:da:3a:15:d2:52:ca:56:6d:b9:60:3a:73:8f:d4:
63:d5:51:a7:14:f9:c7:7c:46:80:6c:40:89:b9:c4:ec:d4:1a:
6e:a2:a5:32:65:a5:f9:70:df:5f:23:f8:d2:d1:8f:e6:07:b2:
a5:88:ce:5c:28:25:6a:67:b4:f0:81:6b:c5:0b:f2:d8:e0:0e:
37:06:a9:b7:51:be:22:74:8e:b2:2c:fe:75:dd:fe:cd:f4:4a:
e5:31:bf:64:c5:3f:46:81:12:90:f1:d4:62:0d:3e:63:62:fe:
f4:7b:a2:31:27:b1:ab:71:81:d5:db:a8:64:c5:98:c1:2e:6f:
18:a6:e3:99:69:f3:f1:41:16:9e:b3:8d:f4:56:ae:a5:d9:39:
bd:8e:1a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org