Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UF_VP79UX1kKF5u3A7ixYZGFmRo.roa
File: UF_VP79UX1kKF5u3A7ixYZGFmRo.roa (raw, json)
Hash identifier: f77xy8tlYQl1x94LLCv9ViO3+53aqCGslhMXuOeIcxo=
Subject key identifier: 50:5F:D5:3F:BF:54:5F:59:0A:17:9B:B7:03:B8:B1:61:91:85:99:1A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E93
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UF_VP79UX1kKF5u3A7ixYZGFmRo.roa
Signing time: Wed 29 Sep 2021 02:43:45 +0000
ROA not before: Wed 29 Sep 2021 02:43:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 220.229.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3731 (0xe93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=505FD53FBF545F590A179BB703B8B1619185991A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:db:b9:c8:de:52:67:6e:3f:40:66:21:0f:
6f:05:ef:fb:b8:aa:d0:98:dd:25:8a:e3:10:09:2f:
a4:9b:9f:3e:aa:24:0e:d6:a9:af:ea:ca:4f:8c:eb:
a9:fd:f1:8e:0a:61:c6:1c:7e:0f:e3:8d:33:30:b0:
13:fb:ad:be:f0:19:4d:25:54:e3:c9:94:01:90:71:
41:b9:ec:29:c5:b8:cc:81:91:82:0e:4b:87:15:39:
10:08:f5:3c:c2:10:8b:33:aa:f8:09:1f:95:2d:a8:
7a:4d:cd:06:0f:52:b3:c0:a2:cb:a4:15:f0:7c:07:
0d:c6:88:a6:ad:a7:d8:29:3d:b7:1f:9e:ef:d9:2a:
d0:10:f4:e5:54:62:47:32:df:4b:1b:4e:87:f2:d1:
cc:b4:2d:cc:33:8b:10:38:51:23:82:9a:1e:06:af:
8f:61:c1:3f:81:d8:77:a4:cb:2d:29:e7:94:c4:26:
3d:f8:3c:3d:44:29:b0:e0:cd:97:93:ec:7e:e0:66:
47:bd:19:8b:76:bd:d8:0b:9c:a6:9f:c0:67:d7:c1:
e3:d6:70:84:98:01:e6:cc:1d:6f:35:43:06:85:c4:
41:3c:fd:83:db:94:bb:60:59:72:40:4d:5f:e6:36:
20:c1:8c:2c:c1:40:65:f3:70:8e:c5:41:eb:2a:d2:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5F:D5:3F:BF:54:5F:59:0A:17:9B:B7:03:B8:B1:61:91:85:99:1A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UF_VP79UX1kKF5u3A7ixYZGFmRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.72.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:d6:fc:77:b8:ee:a0:05:5d:6b:09:85:2b:fe:a3:bd:a3:49:
0e:80:ee:05:2e:de:4e:28:13:0c:70:fa:44:c8:20:e9:c2:b9:
07:34:2d:3d:54:fe:0a:66:3e:1d:f9:1c:b8:2e:93:04:6e:bc:
8c:ca:20:d8:22:b7:b8:ea:04:13:71:99:4a:0a:76:26:8f:38:
3f:27:4c:52:14:c4:65:87:13:06:ed:21:78:c2:6f:61:8f:39:
db:aa:31:b3:aa:96:04:3a:04:10:77:0d:bc:f1:7f:e4:a4:0e:
9b:c7:80:5b:22:d8:db:b7:55:a4:46:14:89:6b:01:8d:b9:4c:
29:bc:32:50:57:c7:d8:0b:44:67:bd:f8:af:f8:3f:71:56:68:
dc:49:6e:36:ca:ac:12:20:34:34:f0:87:b1:c1:19:67:97:dd:
a3:39:d8:25:66:39:1e:11:97:f3:01:2c:e3:e4:e1:d4:87:ed:
b6:b5:b5:4b:27:5c:44:5c:c6:1c:65:f5:87:4b:7d:8c:da:1e:
f3:52:87:b3:8c:f7:f3:3c:4f:fb:d4:a0:de:2c:81:e9:ef:e0:
10:33:28:18:27:3c:e4:22:d5:87:c4:84:a1:3f:e6:b8:b0:eb:
f9:95:c2:cb:f6:45:84:ba:f2:af:e3:d7:c4:71:b9:d7:e8:be:
80:3e:84:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org