Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Retw2aEJih_hgunQ1WPuQv120MA.roa
File: Retw2aEJih_hgunQ1WPuQv120MA.roa (raw, json)
Hash identifier: C1TXlO8dbN8lcFgZG67zpfZaaYeS2/ruOcfaW8zyyuw=
Subject key identifier: 45:EB:70:D9:A1:09:8A:1F:E1:82:E9:D0:D5:63:EE:42:FD:76:D0:C0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08FD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Retw2aEJih_hgunQ1WPuQv120MA.roa
Signing time: Tue 29 Sep 2020 09:52:40 +0000
ROA not before: Tue 29 Sep 2020 09:52:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 112.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45EB70D9A1098A1FE182E9D0D563EE42FD76D0C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:ef:66:79:c3:a5:06:0d:96:84:71:bf:66:
24:78:75:c2:80:d7:2f:38:71:49:12:3c:d5:46:67:
d8:84:62:f9:68:77:54:e0:e5:ae:ca:fd:3a:ec:ff:
c8:a9:a0:8d:63:02:68:fe:b4:cd:c8:bb:ea:61:e5:
cb:1e:47:58:85:29:22:0c:ea:c3:95:fe:3f:5a:a8:
1e:9c:77:7f:f9:17:60:11:60:91:b1:df:50:1d:e8:
a2:73:f3:a2:dd:9f:a0:a6:b1:4b:f3:ee:6b:4a:bc:
dc:1f:b7:5b:f6:6e:30:19:a4:16:55:65:2a:2c:57:
ce:55:2c:33:18:c4:02:1e:fe:40:3d:b0:05:84:7f:
90:7c:14:cf:e3:e1:ad:48:de:09:68:09:98:2f:4b:
95:c1:ff:a2:ff:83:0f:0f:6f:c7:99:e7:56:28:65:
3c:fe:a2:2d:4b:7f:a4:e2:87:0b:3f:f2:31:00:20:
4c:d3:0b:03:fc:e4:7c:7a:c6:39:d1:ff:78:1c:a8:
2e:95:4f:8e:5a:69:cb:5f:9b:df:37:de:0b:b2:80:
10:02:67:51:25:e0:d3:ef:15:dc:f7:b1:fa:33:66:
b6:ac:28:9f:1b:a4:69:eb:b5:b5:28:dc:60:5e:d6:
2c:81:15:e7:b6:cb:fa:24:b6:97:ff:70:3d:2e:03:
f1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EB:70:D9:A1:09:8A:1F:E1:82:E9:D0:D5:63:EE:42:FD:76:D0:C0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Retw2aEJih_hgunQ1WPuQv120MA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:2d:8b:d1:b2:b2:40:c0:8f:a6:fe:1b:48:bc:e3:f2:40:92:
2a:f6:46:6f:f9:2f:79:a0:42:85:6a:0c:46:23:67:d9:03:fd:
e4:41:07:ee:30:f3:7f:3a:6b:e7:81:b0:f1:ce:a0:91:63:8e:
c9:33:b9:4d:ea:6a:fb:11:45:64:f7:08:36:a9:c3:c1:81:55:
f3:b5:82:93:63:34:e3:6e:ed:6f:f3:9b:92:7b:1c:61:46:d4:
d6:a4:ac:50:4c:0c:af:a3:57:75:01:1f:54:70:f4:fd:b8:44:
bd:e7:d9:81:96:12:17:64:0a:28:6c:01:19:e8:14:6c:62:57:
a4:d0:d1:87:ac:ff:c3:46:bf:22:a3:42:bb:b7:c0:7a:79:8d:
07:00:fe:43:32:0a:69:23:5f:88:3f:2a:35:46:b6:4a:24:23:
5b:46:0f:53:45:0c:28:ad:ac:34:d3:cf:ed:ba:88:f3:2d:b8:
9c:11:96:0b:1e:0b:23:a7:5d:56:5b:a3:b0:45:67:aa:c9:62:
aa:e4:1c:33:91:1f:0f:3a:3a:fb:b7:2c:43:c8:76:7b:11:b3:
f6:21:f8:e0:4b:52:db:10:07:30:ce:6d:2b:05:1f:8f:c2:c3:
3e:fe:7e:92:c0:1e:1d:96:7a:d4:b6:26:80:31:fa:a7:cb:d4:
ce:3f:46:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org