Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1N-o2OGzULnyaQgo-t2TIy4BPA.roa
File: T1N-o2OGzULnyaQgo-t2TIy4BPA.roa (raw, json)
Hash identifier: KBmhhTfC8Jn9ewLOAVCbfoFG8gcMlOJ2lc8sKzN4IHE=
Subject key identifier: 4F:53:7E:A3:63:86:CD:42:E7:C9:A4:20:A3:EB:76:4C:8C:B8:04:F0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E97
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1N-o2OGzULnyaQgo-t2TIy4BPA.roa
Signing time: Wed 29 Sep 2021 02:43:46 +0000
ROA not before: Wed 29 Sep 2021 02:43:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 113.196.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3735 (0xe97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4F537EA36386CD42E7C9A420A3EB764C8CB804F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:05:18:9b:c7:96:0e:07:74:2a:c8:c0:49:ca:
1f:55:93:34:4d:8f:83:58:8f:bd:82:ec:c6:ac:9d:
8d:8b:87:cd:44:a5:ed:0a:aa:c7:0b:9f:65:e4:bf:
c8:34:06:ea:21:97:70:77:38:78:33:64:70:32:28:
29:9e:65:14:e1:35:38:f5:b1:cd:aa:36:d2:64:81:
d1:df:ec:f8:be:ae:ce:4b:0c:5f:5f:2b:b2:32:17:
5a:20:df:9c:85:31:7d:52:d4:76:eb:2c:ee:0b:8a:
47:a4:fc:e4:4a:20:81:f6:d1:42:13:87:e1:6f:72:
a4:1f:98:1e:10:28:91:f1:21:7a:12:2e:bb:e5:48:
80:00:74:f4:f9:7c:dd:99:b4:29:d3:12:de:23:44:
ff:67:36:31:5c:43:dd:ae:a8:6a:aa:cb:41:64:e3:
36:47:bc:c5:12:31:65:da:b2:13:3a:97:0f:d8:d9:
88:24:7d:ad:a4:98:ec:b7:a0:d2:7e:75:c7:5c:bd:
23:98:6b:f0:70:7c:6a:1a:48:ee:48:3d:ef:30:51:
49:8e:f1:2c:e6:2f:3b:81:38:1e:03:92:98:c3:90:
08:70:73:78:b5:33:fe:29:31:65:e2:75:25:5d:d0:
d6:56:63:8f:1d:af:b5:5e:0f:95:9b:c2:29:95:92:
d2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:53:7E:A3:63:86:CD:42:E7:C9:A4:20:A3:EB:76:4C:8C:B8:04:F0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1N-o2OGzULnyaQgo-t2TIy4BPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.128.0/20
Signature Algorithm: sha256WithRSAEncryption
24:f5:76:8c:34:d5:2c:4f:ac:1b:a1:3d:4d:f0:7d:78:9d:39:
7a:58:e4:1f:a3:37:c8:23:de:35:12:31:a3:2d:2a:14:89:ec:
32:43:65:fa:ff:0a:4d:3d:3f:74:f6:25:ff:4e:0c:08:7b:59:
91:fe:f7:4f:3f:21:7a:fc:0a:5c:53:30:9c:5a:db:4c:c7:c5:
aa:96:4b:fc:69:0b:dc:49:4c:54:c3:76:5c:db:26:c0:4b:74:
2b:94:a5:82:43:93:87:85:48:f5:98:bb:72:55:36:d9:8c:de:
f0:66:10:af:9d:8e:a3:95:67:bb:9c:de:a6:63:a0:46:2d:d0:
db:aa:22:a6:15:c9:47:c5:8b:c9:5a:f7:37:e5:87:51:40:23:
3f:ba:79:9f:fe:4c:73:c4:3c:51:f0:6e:ed:6e:7c:ea:e3:f6:
21:4d:a8:de:8c:f2:a1:ba:7a:2b:df:d1:b1:8f:7e:c9:d2:14:
5f:1c:2a:cf:2d:2d:a0:64:b7:60:7d:96:70:9f:2a:e6:f6:a8:
54:98:93:84:d9:9f:09:47:21:25:21:db:16:a3:69:e4:96:bd:
6c:2f:84:cd:ef:4f:b1:d5:53:bb:e5:f3:ff:58:65:ca:bd:0a:
dd:86:85:e5:83:67:b7:78:8f:ce:2d:49:a2:5a:ac:d5:08:77:
26:46:ef:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org