Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/VImqniACRIzyf1AVDLFNBvWeyUU.roa
File: VImqniACRIzyf1AVDLFNBvWeyUU.roa (raw, json)
Hash identifier: fhxgD9oFhEycjLa7YElcCdLkWbQz02+2uRy+2HUx+rU=
Subject key identifier: 54:89:AA:9E:20:02:44:8C:F2:7F:50:15:0C:B1:4D:06:F5:9E:C9:45
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A30
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VImqniACRIzyf1AVDLFNBvWeyUU.roa
Signing time: Tue 24 Nov 2020 09:17:01 +0000
ROA not before: Tue 24 Nov 2020 09:17:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2608 (0xa30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 24 09:17:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5489AA9E2002448CF27F50150CB14D06F59EC945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7f:b1:86:de:8a:dc:2c:07:6d:36:46:9f:7b:
c1:ce:56:f2:f5:9f:01:2e:7f:a3:7f:65:5d:98:2b:
74:8e:32:65:8f:53:56:36:ab:10:67:9a:72:1c:ce:
b0:40:fe:73:b1:89:22:c4:fb:16:ce:6e:5f:37:92:
79:de:a9:56:3e:b8:ac:1e:23:c4:bd:e0:9a:52:6c:
4b:3a:2a:ef:0b:14:77:48:06:e7:42:c2:aa:ff:c8:
8d:dd:f0:cb:42:01:e3:95:3c:e6:26:ca:d9:0c:9a:
60:d0:45:5a:4a:a0:e8:59:31:e9:19:71:e7:08:1c:
ac:70:b3:fc:3f:de:e9:da:27:fc:48:48:c4:a3:ef:
a4:be:4e:62:19:21:d1:d6:f8:a9:e7:c3:ba:ef:95:
e4:50:90:b7:5d:3e:d7:32:48:5d:0e:1a:d2:8c:5d:
3f:ff:47:3c:8c:32:92:8e:e2:c8:75:82:3c:33:a6:
d8:38:51:dc:73:33:25:43:33:31:35:bb:55:da:e5:
24:20:a6:f3:87:0a:3a:e9:f1:fc:fa:3d:46:93:07:
44:22:35:d4:85:01:9a:20:f5:64:90:af:06:82:f5:
3f:af:d5:3e:e4:60:e7:f4:f8:ab:3b:eb:7b:a4:66:
6c:a4:f0:71:84:33:e0:ca:bc:99:4a:ec:15:e4:9b:
7f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:89:AA:9E:20:02:44:8C:F2:7F:50:15:0C:B1:4D:06:F5:9E:C9:45
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VImqniACRIzyf1AVDLFNBvWeyUU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
98:95:c7:f8:15:f5:63:e1:8a:fc:59:c2:19:ab:e9:25:02:59:
0c:ec:95:7f:5a:91:97:12:c9:7f:c3:45:6e:a9:0b:77:af:11:
2c:fd:eb:6c:d6:74:dd:6a:ad:0c:67:34:d6:c5:e5:bd:7d:57:
13:46:61:06:07:02:47:63:0b:67:4c:68:3e:9c:4f:79:3f:8b:
ec:92:49:9d:28:bf:b0:7b:51:5b:3a:3b:54:e5:5b:c2:53:54:
f4:90:48:9d:b2:41:dd:de:87:99:fd:d9:b4:91:4f:92:72:cc:
f0:3c:92:8f:2c:b4:89:71:bd:11:43:e5:f2:cc:c1:bc:fa:81:
5b:15:5f:2a:ac:ee:07:b3:41:cb:ca:a0:40:20:f8:b0:8a:97:
24:d8:3a:7c:cc:2e:11:38:2d:61:40:e0:b6:c6:88:92:b0:57:
02:6f:5d:27:91:50:51:ed:ea:76:c7:04:91:bf:2c:41:75:90:
a8:02:9b:1a:63:81:df:e8:0c:a9:93:55:bd:a1:85:0e:82:6a:
03:7a:5c:2e:0d:6a:87:b5:56:4f:95:73:25:42:05:97:b6:96:
9f:e2:e6:e8:b5:66:21:43:b5:da:8a:92:65:fa:74:b4:cb:8c:
21:a6:9a:97:d2:b5:c9:2d:0c:72:ab:9e:c1:4a:3a:a0:39:29:
10:e3:7b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org