Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RtLDGeQKvF0yygugCWcUj3Pek70.roa
File: RtLDGeQKvF0yygugCWcUj3Pek70.roa (raw, json)
Hash identifier: qcb2vAt6NVQSgC7iiElt2e99J2UqeLOuYKrA1DRz4VM=
Subject key identifier: 46:D2:C3:19:E4:0A:BC:5D:32:CA:0B:A0:09:67:14:8F:73:DE:93:BD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DE8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RtLDGeQKvF0yygugCWcUj3Pek70.roa
Signing time: Wed 29 Sep 2021 02:42:58 +0000
ROA not before: Wed 29 Sep 2021 02:42:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3560 (0xde8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=46D2C319E40ABC5D32CA0BA00967148F73DE93BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:41:91:ac:2d:ae:a1:aa:8c:b6:52:7f:e7:99:
f2:9b:35:dc:2b:ce:78:6d:2a:00:03:31:01:15:32:
4d:64:48:68:0f:c8:59:58:a5:93:45:ef:09:e1:29:
78:2b:d5:f0:77:48:2c:ff:ab:5c:5c:51:a7:39:aa:
21:29:20:5c:ef:bb:94:61:aa:57:a4:57:50:bb:33:
2d:fb:35:26:22:94:1c:35:65:39:31:8b:8b:e1:2d:
6d:91:ad:06:38:68:7a:a2:2b:5d:de:bb:a7:88:9a:
86:17:df:54:1d:d8:2a:3b:6d:55:5a:b2:61:7e:23:
da:95:b9:78:87:8f:7c:28:df:b7:34:d6:c3:cc:8b:
ae:1b:1a:48:60:68:ae:05:d7:83:b5:06:40:26:27:
bd:7d:73:e8:a2:29:7f:34:c6:35:0e:df:10:b2:95:
5f:b4:57:aa:07:b3:d0:3b:14:33:66:02:fc:44:84:
dd:91:35:de:62:4b:8f:b5:d5:1c:cc:ab:02:47:b2:
3e:26:36:49:e2:ea:0a:f7:dd:fe:1e:83:0b:6c:7c:
f2:fa:35:26:a4:e1:fe:c3:f0:93:bc:ed:51:1a:8c:
36:25:d0:c0:b1:72:5b:c9:d1:32:36:3a:14:38:3c:
ae:f8:4a:3a:11:ae:ce:7b:0b:6b:59:75:e2:b8:bf:
de:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D2:C3:19:E4:0A:BC:5D:32:CA:0B:A0:09:67:14:8F:73:DE:93:BD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RtLDGeQKvF0yygugCWcUj3Pek70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
99:5d:10:4e:59:cc:e7:42:c3:31:69:93:c7:8c:8e:13:5c:c1:
bb:83:99:1f:01:9f:07:f7:6d:a3:c6:ae:c5:b5:a6:c3:73:8b:
24:ea:59:cf:1a:fb:1b:21:cd:fe:9f:db:e7:42:be:77:ae:a6:
94:e3:9f:00:c9:66:bb:e7:b9:f8:d7:01:9a:43:1e:34:7b:5e:
75:23:e0:f3:8f:4d:4d:fe:a9:7d:df:95:9a:ae:51:cb:83:fe:
f1:f1:ef:56:a6:1d:bf:49:e0:62:45:4f:db:81:3e:9c:1c:d7:
11:f9:c0:f5:39:57:52:46:d1:d7:58:d8:8e:fd:c5:ce:e1:87:
43:df:0c:9f:42:f8:09:1b:73:73:8a:b0:47:fe:48:a9:47:2c:
b0:33:a7:68:dd:eb:4f:c6:62:27:3a:89:24:88:96:c8:d4:7e:
57:ef:21:aa:4b:f8:e3:5e:f1:f9:24:49:0f:f8:e9:9a:42:98:
66:b8:64:b7:06:a4:72:6f:01:11:43:e6:c0:2b:c1:22:e9:4b:
de:55:1c:d7:fe:07:7b:ff:f8:46:8b:8a:3c:fe:45:b2:b1:e5:
fc:cc:d6:e9:5d:2c:df:c5:6d:4b:f9:64:79:f9:e4:32:0a:85:
e9:5a:5f:db:ad:21:b7:05:aa:c4:36:b0:7a:2b:a4:5a:8f:90:
a1:e6:af:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org