Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UPwHwBotA2BgjS_1Ssp7a1fgFPs.roa
File: UPwHwBotA2BgjS_1Ssp7a1fgFPs.roa (raw, json)
Hash identifier: 8a1zrTv2T+ELEejAhmGZGkEvR27rKKM4rRNa69ObsII=
Subject key identifier: 50:FC:07:C0:1A:2D:03:60:60:8D:2F:F5:4A:CA:7B:6B:57:E0:14:FB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 088C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UPwHwBotA2BgjS_1Ssp7a1fgFPs.roa
Signing time: Tue 29 Sep 2020 09:52:09 +0000
ROA not before: Tue 29 Sep 2020 09:52:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=50FC07C01A2D0360608D2FF54ACA7B6B57E014FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:a7:bb:b5:bd:3d:bc:de:88:72:0d:02:b4:
f7:ad:31:8f:7d:cb:65:ca:8c:e8:b9:d5:04:a7:76:
9f:4e:23:00:5e:47:7a:53:25:49:5d:7c:7d:ec:3b:
17:a4:a4:5d:5a:57:6d:01:d2:d6:af:90:7a:54:8a:
98:ac:49:d3:ec:30:a9:df:ea:79:1f:59:b8:70:ba:
69:bc:69:9e:b5:65:e6:df:a5:45:a5:79:be:a4:a2:
0f:88:3b:02:d7:98:9e:71:13:24:22:19:5b:88:b3:
f3:9a:db:76:af:14:04:41:26:8f:4a:95:29:70:b4:
af:eb:79:a7:5d:f1:fa:51:e8:2e:78:4b:de:0e:8f:
ca:24:64:30:a7:c0:27:2d:14:2c:33:a9:93:39:81:
62:b6:31:7c:0d:9c:92:1a:d9:1f:2e:05:02:64:d0:
c9:a4:c3:42:b6:60:8a:e0:21:83:37:06:4d:3f:b8:
96:b5:0d:eb:74:71:c1:4e:f1:23:5d:49:6d:09:e4:
48:d2:5c:74:61:a4:e9:ac:61:f5:f1:39:12:fc:d6:
e6:b1:8b:62:60:9b:c5:5f:89:7f:99:33:60:c0:d5:
1b:f5:c8:cf:da:ca:e0:0b:07:e5:0d:3c:5e:0d:a2:
e7:e2:d6:1a:5d:33:87:33:11:54:0c:09:88:20:13:
62:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FC:07:C0:1A:2D:03:60:60:8D:2F:F5:4A:CA:7B:6B:57:E0:14:FB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UPwHwBotA2BgjS_1Ssp7a1fgFPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:cd:3b:88:c6:b2:2a:e5:94:de:41:fd:44:c7:77:eb:0d:0e:
df:e7:5c:d7:f2:9c:4f:84:a4:c0:af:63:41:b7:77:d3:9b:8f:
fd:24:4e:d8:0a:a7:27:b1:48:c8:24:c9:2e:5d:72:c0:29:0f:
df:8a:96:19:cf:f7:15:5f:54:1f:08:1b:a9:cb:3c:13:40:6e:
1c:7a:2d:ae:fb:d7:fd:2a:b3:4a:b3:25:28:ad:23:53:be:70:
db:83:54:b0:b3:54:5f:35:b1:e0:e6:94:45:4c:0c:24:1b:c5:
bf:cc:f9:ae:17:cb:56:8f:1d:ef:96:70:22:b2:c1:ed:a8:6c:
29:57:0f:c1:70:1e:8d:01:e5:86:17:3a:a9:cb:45:74:18:1b:
23:b4:e6:3c:ab:b7:c7:3f:6b:c4:f7:e7:1e:9a:ad:6e:a8:c9:
e3:83:ff:f4:ab:26:bd:36:71:08:17:c1:0f:d6:dc:6f:a2:3b:
f7:c6:94:8b:63:aa:2e:b4:2a:a7:b7:97:e3:5c:da:a2:11:48:
48:af:2b:a4:29:b9:f2:36:99:6d:f9:a2:8d:b7:94:67:4f:6f:
5c:77:d2:d0:ae:22:7d:0b:cb:07:bc:c7:b3:46:0e:13:a0:d7:
c1:7f:f9:ad:89:30:e6:2b:31:a4:8f:0e:c8:4a:f1:87:83:d9:
4b:2b:be:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org