Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1PotO2Umw1i2H9O-WjVfDPHRtI.roa
File: T1PotO2Umw1i2H9O-WjVfDPHRtI.roa (raw, json)
Hash identifier: kxoLSvcGPWEYkYLemUBldDFOzHWSQtDjQYwuyq0ItcU=
Subject key identifier: 4F:53:E8:B4:ED:94:9B:0D:62:D8:7F:4E:F9:68:D5:7C:33:C7:46:D2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E1D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1PotO2Umw1i2H9O-WjVfDPHRtI.roa
Signing time: Wed 29 Sep 2021 02:43:13 +0000
ROA not before: Wed 29 Sep 2021 02:43:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3613 (0xe1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4F53E8B4ED949B0D62D87F4EF968D57C33C746D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7f:47:aa:2a:54:f4:ab:2e:a8:b8:90:62:d1:
f3:94:7b:74:51:6b:12:c1:af:ab:7a:73:6f:5d:43:
3c:cd:38:ef:05:29:c1:ad:ae:62:a0:1f:b2:fe:12:
e4:fe:72:16:54:26:14:74:7c:a3:96:60:49:e2:4c:
0b:38:00:19:a4:aa:73:b1:6d:ae:93:82:1c:2d:9e:
5e:50:22:5a:97:c0:c1:1c:80:d3:af:a0:b0:8e:57:
8a:bc:01:9f:0f:0f:a2:aa:24:3c:3d:39:74:d4:f6:
f1:bf:c5:21:36:53:ba:d3:0a:cc:03:e9:17:24:9c:
5d:2d:bc:4d:fe:88:e1:80:4f:f7:42:e1:69:72:8c:
b1:6c:92:22:bb:98:9a:bd:92:d0:df:91:b3:dc:bb:
3b:2c:9b:2c:97:db:04:00:83:a6:34:b2:24:3a:86:
48:ae:14:92:c7:db:01:83:5e:e4:c2:9d:62:bb:42:
50:0f:de:af:3c:2c:a0:e4:58:f1:ea:8d:96:82:ef:
c1:16:92:9b:96:36:99:52:f6:bf:84:80:36:f7:90:
94:f2:07:7f:e7:f4:7a:ae:78:1b:e7:f9:b1:90:5b:
c9:f2:e7:fc:cb:3a:03:19:17:04:1f:73:02:2d:6c:
f6:79:b7:44:cc:ea:81:06:93:d4:f6:2e:d9:54:d4:
7b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:53:E8:B4:ED:94:9B:0D:62:D8:7F:4E:F9:68:D5:7C:33:C7:46:D2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T1PotO2Umw1i2H9O-WjVfDPHRtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a2:e1:c2:07:da:38:b4:7d:48:cb:56:c3:a9:35:9c:a7:f6:b2:
d2:fd:4e:2a:74:2a:fc:ec:c4:4f:44:5e:2a:00:b1:9f:73:be:
31:98:d1:8c:91:72:e5:7c:88:bd:45:c2:ea:a7:23:dd:ea:d6:
d3:ba:24:6d:35:57:95:24:ab:95:1d:da:86:05:b1:9d:66:78:
6d:3a:77:11:a6:ad:5e:11:aa:ac:e8:b7:68:52:cd:70:d6:dc:
14:76:e6:d8:4f:54:0f:c0:8d:58:e0:fd:d6:ad:24:24:9e:5a:
80:46:82:70:9e:9c:4f:f7:84:44:27:90:5a:6a:89:61:dd:21:
b6:5f:15:87:22:37:45:20:a3:73:34:14:4e:f6:94:1d:ce:71:
bd:8f:37:47:75:ae:15:ad:ec:b8:a2:7b:e7:96:be:00:9e:8d:
5f:ad:3e:55:a4:c9:bf:32:ae:4f:fd:c9:84:07:11:e7:44:ce:
f7:9a:b8:04:74:87:84:23:53:3f:17:91:e3:9e:41:55:4a:aa:
4a:8b:58:22:dc:f3:8f:7c:03:3b:de:45:6d:3d:4c:aa:d2:54:
76:24:48:20:39:44:7a:9a:82:7f:bf:d9:cc:0e:38:b3:fd:44:
05:6a:75:d1:1a:9c:55:95:e2:27:09:21:e4:61:03:74:ca:2b:
f1:fd:53:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org