Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJN3ja5L8Ra2OSE-KqqqdgaRlSs.roa
File: RJN3ja5L8Ra2OSE-KqqqdgaRlSs.roa (raw, json)
Hash identifier: RQfi2WG1PuOH/g3aCLdVxstLTyZJgVYl173MhyOEtgA=
Subject key identifier: 44:93:77:8D:AE:4B:F1:16:B6:39:21:3E:2A:AA:AA:76:06:91:95:2B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E06
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJN3ja5L8Ra2OSE-KqqqdgaRlSs.roa
Signing time: Wed 29 Sep 2021 02:43:07 +0000
ROA not before: Wed 29 Sep 2021 02:43:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 221.169.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3590 (0xe06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4493778DAE4BF116B639213E2AAAAA760691952B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:55:f2:cd:6d:9b:83:f7:84:0b:40:06:45:af:
69:48:de:c3:f3:dd:43:19:4a:35:61:ec:2e:a0:0b:
fb:ee:3f:fd:79:27:cb:7f:c3:e5:15:20:4c:77:7a:
d0:a1:0f:e9:ea:13:a5:48:57:20:78:a8:f7:ca:a1:
68:ee:9a:16:74:12:1a:74:09:00:2e:5f:fe:f2:74:
80:9f:15:4a:7a:ea:c5:a9:e4:b9:07:ac:0c:c0:c7:
84:aa:ca:fb:13:d7:82:e0:f3:0b:87:15:49:71:52:
62:f5:31:fb:8f:d6:30:d1:dc:d9:e3:8d:58:e4:97:
19:d8:8b:06:7c:63:4d:f8:09:e6:6f:d0:80:2d:a9:
0a:86:f4:69:ff:65:23:74:4e:f0:55:36:ae:c9:39:
3f:22:44:ce:ff:3a:2d:c1:7d:24:bb:ee:5c:e2:11:
68:7a:7d:5b:d5:88:ab:0f:a1:ee:94:cc:ff:9a:e9:
9d:95:e5:60:0d:08:30:49:ee:d3:3f:65:eb:c5:af:
b6:6a:ac:42:43:86:e1:d5:cf:27:c4:9d:07:0d:48:
45:5b:f0:18:ea:c2:63:8f:48:59:47:dd:5b:96:a3:
80:22:19:a3:09:5a:93:f8:bc:27:e3:c1:23:a4:2e:
07:8a:ee:f7:0d:30:67:cd:30:95:b7:91:26:f3:c9:
f7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:93:77:8D:AE:4B:F1:16:B6:39:21:3E:2A:AA:AA:76:06:91:95:2B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJN3ja5L8Ra2OSE-KqqqdgaRlSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
18:fd:0d:65:ae:01:3c:4b:1a:3e:68:88:6d:72:e8:81:64:ba:
7e:29:c5:9a:99:f8:57:b5:67:35:b2:91:4e:8d:0b:19:ba:9a:
49:32:6c:07:31:f0:10:2d:30:fc:ce:91:80:28:ee:4b:f2:fa:
3f:8e:49:e5:eb:b9:e5:22:e9:f4:c3:51:0a:48:5d:ba:45:10:
c4:7c:b6:0b:d2:7b:6b:6d:79:0f:75:02:60:eb:72:b4:83:0d:
bf:7a:79:75:7f:cd:63:1c:2f:e2:60:ba:1b:61:19:f1:6b:07:
19:58:36:ca:8c:1f:65:64:cc:4c:48:48:e7:71:36:2e:fd:ae:
1d:26:20:09:54:47:90:80:ee:68:89:12:e0:cf:80:ab:bf:df:
18:e5:90:9f:91:d5:45:6d:26:40:cc:33:6d:1b:04:a2:31:19:
b1:39:f0:51:73:5f:d0:22:75:d5:45:56:2e:36:22:92:74:ef:
2c:35:62:35:4b:58:14:68:27:0b:d1:bb:d7:e6:ff:71:ae:a8:
8a:96:a7:54:8d:4b:a9:c5:8a:a8:49:0d:47:af:fc:51:f3:92:
a9:3d:27:2d:84:3b:71:a3:22:82:cb:a7:3b:cf:d2:d2:1d:fc:
cb:25:23:36:56:5c:68:61:a7:47:f2:35:df:a1:14:f4:7f:52:
3f:2d:39:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org