Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WCVbqUqQCEWLnLWaB0t5L3-Jzfg.roa
File: WCVbqUqQCEWLnLWaB0t5L3-Jzfg.roa (raw, json)
Hash identifier: PY3stNyzSVLm3tgBYprJNm33VOpFJhnKrrybh5DjjRs=
Subject key identifier: 58:25:5B:A9:4A:90:08:45:8B:9C:B5:9A:07:4B:79:2F:7F:89:CD:F8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08B4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WCVbqUqQCEWLnLWaB0t5L3-Jzfg.roa
Signing time: Tue 29 Sep 2020 09:52:20 +0000
ROA not before: Tue 29 Sep 2020 09:52:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2228 (0x8b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=58255BA94A9008458B9CB59A074B792F7F89CDF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2c:24:ee:12:cb:ae:8f:4f:6d:9c:60:b1:90:
06:6b:6e:b4:dd:23:49:3f:8d:64:a3:7c:93:97:99:
70:c4:7d:63:bc:6f:70:66:0e:53:22:23:8e:b0:db:
ac:ae:7a:4c:a3:09:9f:63:d2:1c:6b:c9:62:5c:d0:
b0:48:2e:2e:02:68:1d:c4:ae:68:fc:d1:79:43:5d:
04:58:86:19:a2:23:a4:c9:46:de:2f:b7:89:0f:1e:
2d:95:e0:61:28:a2:28:9d:d1:93:2f:87:2c:66:f7:
1c:a1:e1:70:2f:ee:fe:bd:ff:53:6e:9c:a9:10:d4:
08:c5:df:fd:12:3b:0d:b4:79:d6:7f:01:de:d4:13:
d4:a7:9d:ae:7e:c6:fd:fd:a5:c2:b3:78:bd:73:08:
ec:f4:de:e4:fc:af:21:d9:ec:e5:67:3c:dd:2f:3f:
50:53:59:39:00:b5:9c:7b:93:3b:85:58:21:b1:0c:
08:87:b5:d9:97:23:4a:f2:23:d4:a9:0f:4c:2c:b7:
22:a6:ef:52:6f:54:5f:94:2c:c6:dd:b5:8c:88:66:
db:84:a6:f9:8f:f3:b2:ac:bf:4d:5f:51:76:e3:c4:
b1:87:28:9d:bb:97:a7:b9:1d:ff:75:d6:91:e1:b4:
dd:47:74:f7:2a:5d:d7:3b:f6:40:a7:f1:6f:2a:ec:
54:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:25:5B:A9:4A:90:08:45:8B:9C:B5:9A:07:4B:79:2F:7F:89:CD:F8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WCVbqUqQCEWLnLWaB0t5L3-Jzfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:78:ac:65:ed:86:bf:33:92:9e:0f:cf:7c:1b:b4:9b:fe:f9:
5f:d3:76:6f:e3:95:48:6c:35:56:cc:a3:0f:b7:1d:49:f1:2c:
c9:61:e5:57:08:21:78:82:78:73:9c:d2:10:6f:c5:1b:78:f0:
79:22:6c:6a:6b:06:34:8c:68:be:4a:7b:09:cb:4f:31:c8:78:
b7:f2:fd:0f:49:b5:01:a7:55:31:d7:45:0d:f4:ba:88:20:75:
b8:0d:2b:a5:0d:b6:ba:92:ec:54:b9:75:2e:26:b5:4a:c5:e3:
a2:a1:92:02:f9:0d:61:24:c2:be:89:e8:30:86:00:2c:0b:d7:
20:c3:f9:35:67:2b:1b:71:cc:ce:0d:12:a7:09:24:1b:99:2e:
04:9f:b7:d0:21:71:b7:26:be:6f:2e:0b:51:e9:72:99:3a:cf:
b6:b4:50:cd:82:b9:51:90:c7:27:f2:48:25:73:7d:c5:c1:42:
9f:e1:c0:f7:ee:89:a8:e7:02:73:c4:50:d4:43:a9:7c:30:44:
49:0f:d4:86:d4:c2:cd:eb:30:7f:d6:79:2a:f0:9f:b9:25:f5:
10:60:23:16:d0:e1:0d:9e:d8:53:24:76:70:91:1b:ef:75:e8:
17:8a:a1:46:7e:72:f0:6d:1b:bf:12:34:29:78:4d:39:a1:73:
74:fa:1e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org