Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S3_PCNjT8SRwDvOIb69s8OuXZMY.roa
File: S3_PCNjT8SRwDvOIb69s8OuXZMY.roa (raw, json)
Hash identifier: DMeeqi7/0MQknC+sAjDgNVR11FzGqCaK2alLqzG3XcE=
Subject key identifier: 4B:7F:CF:08:D8:D3:F1:24:70:0E:F3:88:6F:AF:6C:F0:EB:97:64:C6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CCB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S3_PCNjT8SRwDvOIb69s8OuXZMY.roa
Signing time: Sun 07 Feb 2021 11:45:15 +0000
ROA not before: Sun 07 Feb 2021 11:45:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 60.245.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3275 (0xccb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4B7FCF08D8D3F124700EF3886FAF6CF0EB9764C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:76:e7:7e:2e:2d:87:fb:15:70:d3:5a:4f:39:
1d:e0:da:20:fa:bc:12:d3:53:ea:43:63:4b:f5:ea:
ad:d6:ad:1f:7c:ee:91:0f:17:ba:10:e3:07:db:62:
0a:e1:d0:30:4a:b5:61:58:88:4b:23:d1:54:aa:ae:
e8:a8:f1:99:ea:62:c1:90:38:cb:f1:3e:68:3c:e7:
c8:0b:30:f9:34:11:b5:df:4f:e9:fe:c0:cc:d7:10:
f2:37:c7:f1:51:ff:be:18:17:d4:44:bd:a5:00:4a:
2f:ab:d4:ef:f8:02:1b:bd:80:9a:7e:04:ab:7f:7e:
4e:e0:5d:9e:e0:53:35:af:c8:38:28:69:de:b3:57:
fa:f6:86:51:12:c6:ac:a9:05:be:0b:c7:14:30:55:
f4:a0:68:b4:38:85:d5:8d:6c:25:bc:59:ac:a4:00:
c4:37:bd:25:f5:17:93:66:d9:a4:58:c0:9a:a7:01:
55:c9:2e:9d:7e:33:48:f2:43:04:13:d3:39:c8:67:
58:82:8c:9f:5e:e9:51:ce:fc:98:8d:de:6f:23:70:
b6:54:9c:aa:c5:55:37:e8:01:08:77:04:a3:da:ec:
80:33:e0:64:12:36:66:fd:22:b4:3b:82:ac:d4:11:
bc:e8:ea:03:f3:06:af:17:db:61:97:19:40:8d:8b:
21:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7F:CF:08:D8:D3:F1:24:70:0E:F3:88:6F:AF:6C:F0:EB:97:64:C6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S3_PCNjT8SRwDvOIb69s8OuXZMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.112.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:aa:88:3a:2a:17:dc:98:b0:31:ef:ce:49:49:b7:fe:67:d4:
80:99:63:22:7d:f6:54:e8:4d:e2:78:0f:1b:a8:e3:45:a6:22:
57:f1:73:d3:93:28:26:a2:47:b4:98:42:0e:bb:f3:a6:d9:11:
05:f7:88:bb:bc:0c:a9:a3:00:37:38:8d:4e:88:21:4a:7d:94:
03:2d:64:6d:13:da:1b:b0:a0:cb:c6:fc:12:95:d7:f3:e7:da:
2c:9d:50:d5:30:fe:78:30:d5:cb:da:40:a4:4f:79:31:eb:be:
b1:21:41:9c:24:26:58:c2:7b:26:1c:34:aa:50:e6:3b:bf:ff:
76:0c:80:92:22:75:4f:bb:f6:9a:b8:49:3b:b8:ec:66:b1:50:
13:3b:f5:69:9b:69:9e:35:f2:27:cd:64:a9:e9:13:55:40:7d:
ad:f6:26:20:56:02:f7:a8:97:96:32:89:f2:57:29:f5:53:11:
6c:34:d7:f4:13:9c:5a:c0:30:bb:b5:45:86:cf:be:dc:e6:31:
b0:ad:2a:07:6d:c4:02:37:80:6e:f5:34:b7:bf:34:c3:44:6e:
43:53:7d:65:69:38:f3:3b:08:59:20:09:ff:e9:4e:60:2f:de:
67:07:75:97:46:85:d6:a4:51:30:74:93:8a:14:84:85:cb:3d:
0a:67:ac:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org