Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RHfI4QQLmtXJaHwY2LKxZz3LhfM.roa
File: RHfI4QQLmtXJaHwY2LKxZz3LhfM.roa (raw, json)
Hash identifier: aZMdybDx+nR7E9ektn8pTSrwZePczvdl44H00sSkVAo=
Subject key identifier: 44:77:C8:E1:04:0B:9A:D5:C9:68:7C:18:D8:B2:B1:67:3D:CB:85:F3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B6B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RHfI4QQLmtXJaHwY2LKxZz3LhfM.roa
Signing time: Sun 07 Feb 2021 06:18:49 +0000
ROA not before: Sun 07 Feb 2021 06:18:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2923 (0xb6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:18:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4477C8E1040B9AD5C9687C18D8B2B1673DCB85F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:90:19:8b:a7:83:d4:8f:39:0c:11:df:86:
e9:e4:b1:e2:9a:b1:22:a2:51:b0:2e:7a:bc:08:29:
f9:77:9a:08:2d:31:0e:8c:b7:5a:10:1e:44:c6:db:
63:a8:90:6b:56:af:46:e7:31:d6:e5:51:81:43:c1:
4d:42:27:43:e0:22:c5:8d:a0:aa:06:f7:7f:5b:6e:
17:31:a0:c0:5c:07:6f:c8:41:b5:45:80:34:9b:9e:
c5:70:80:6e:2f:f4:b2:cb:db:78:8f:81:f0:83:57:
55:a6:62:65:52:56:c0:48:bb:0a:6c:dc:49:dc:f3:
3b:d5:01:ec:da:fe:cd:85:1d:32:3c:fa:b8:1b:5f:
45:fd:9a:b0:45:02:99:7d:0f:ee:76:4f:7f:33:c0:
3b:8f:2e:5e:2d:41:52:53:ed:7f:07:48:38:a6:e1:
9b:44:a3:96:3f:70:10:04:b4:84:68:6e:c7:09:58:
b9:0b:25:a0:21:5d:64:0c:03:e5:17:c6:d9:e3:91:
e1:18:01:2e:65:c0:32:13:df:1f:fd:e8:cc:c6:dc:
42:9f:f2:1b:45:d3:f4:bd:c5:ad:15:5e:a3:a3:d6:
83:1c:bc:3c:47:5f:f4:44:55:46:06:61:7f:37:21:
3d:9f:67:1a:5b:94:61:ab:21:96:1c:ac:a9:7c:e7:
01:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:77:C8:E1:04:0B:9A:D5:C9:68:7C:18:D8:B2:B1:67:3D:CB:85:F3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RHfI4QQLmtXJaHwY2LKxZz3LhfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
71:73:14:c3:5c:81:6c:53:8c:dc:69:a2:71:5a:54:a2:f8:ff:
ae:d6:87:ad:a9:28:cd:2d:46:10:4c:0a:ac:e0:78:12:8c:51:
d3:d8:71:5f:1c:54:c5:65:af:cd:bc:ef:9a:9c:ae:c5:7e:2e:
47:43:1e:78:78:5d:0d:c6:77:2d:4e:f2:25:50:ef:4d:0b:06:
49:96:36:65:e7:4c:ad:a4:96:cd:b4:f8:5c:62:f0:7f:6a:32:
c2:19:ba:45:29:3d:71:5c:a2:d7:9b:09:c0:e6:2a:3a:a4:f0:
32:bf:f8:47:aa:5e:8f:1f:d4:a5:69:6f:6d:14:f4:ef:e1:c8:
fc:77:d8:5c:6d:05:2a:04:ed:9d:e0:8e:84:ec:57:65:7b:e4:
f4:d2:ce:84:6a:d8:08:9f:74:7a:c5:7f:d5:ff:67:b1:4d:a5:
d4:48:c8:df:d9:c3:d6:6b:10:10:b5:e2:7a:68:07:f9:e2:3c:
1f:cb:8d:92:87:92:ce:c1:71:a1:8d:f2:37:58:d2:67:ad:86:
59:00:5b:d5:12:1a:dd:8c:5a:9b:29:fb:f6:ac:49:6c:0f:12:
10:d2:06:28:d1:bc:c4:58:dd:91:fd:f3:af:c1:83:8a:d6:9e:
36:6b:4e:d5:8d:30:7a:27:68:20:74:9f:a6:7a:0c:96:9a:53:
3e:a0:a1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org