Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WVHstOYH1h7T3TQzvK4X2kizPz4.roa
File: WVHstOYH1h7T3TQzvK4X2kizPz4.roa (raw, json)
Hash identifier: 3MUKYlzskoZj3xzCShLj8/V/mAdc1gyWFoAfhMdSuX4=
Subject key identifier: 59:51:EC:B4:E6:07:D6:1E:D3:DD:34:33:BC:AE:17:DA:48:B3:3F:3E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CC5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WVHstOYH1h7T3TQzvK4X2kizPz4.roa
Signing time: Sun 07 Feb 2021 11:45:04 +0000
ROA not before: Sun 07 Feb 2021 11:45:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3269 (0xcc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5951ECB4E607D61ED3DD3433BCAE17DA48B33F3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0c:d7:fa:0c:8a:28:9f:08:9d:0e:7e:9e:13:
83:3f:78:8a:92:f6:d1:46:c6:30:7b:53:c1:1f:c4:
22:97:2e:40:7a:3e:e4:17:51:f5:5b:65:69:0a:92:
1d:97:4b:95:e2:eb:13:9c:f3:86:d9:c0:67:97:9e:
03:09:a7:b3:db:52:bc:86:28:9a:a1:27:6d:95:04:
7f:1d:3c:6c:93:5f:34:76:7c:22:df:e4:01:b4:61:
46:68:cf:fb:99:ee:b1:d2:93:44:c2:11:c8:9b:ca:
e5:86:5b:5a:0d:cb:15:d6:35:94:05:a1:87:4c:66:
b2:12:16:94:88:d6:64:66:2a:d4:3a:43:1b:54:10:
2c:76:51:7d:12:56:3e:0c:11:d1:fd:f6:d4:b4:34:
46:f2:a3:b4:e0:22:5c:98:0b:0b:c8:7b:6a:cd:87:
ff:ef:e0:9c:e9:15:03:a5:00:53:26:cb:53:8b:ea:
26:00:6f:1e:12:5b:ae:2b:ea:19:bf:1b:e8:61:48:
08:71:66:5d:44:63:bb:f7:4e:47:1d:84:05:c2:2a:
01:0d:2c:29:5e:ba:db:88:14:ed:94:1e:6c:bd:f6:
ee:a6:6b:29:e1:dc:73:1f:39:04:8b:0b:c8:c1:5c:
fa:a1:b6:01:f8:0b:05:7e:98:df:f1:0d:eb:06:05:
6d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:51:EC:B4:E6:07:D6:1E:D3:DD:34:33:BC:AE:17:DA:48:B3:3F:3E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WVHstOYH1h7T3TQzvK4X2kizPz4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.80.0/20
Signature Algorithm: sha256WithRSAEncryption
10:f9:18:fe:27:00:f2:87:1c:4a:49:81:df:c1:20:ed:ca:04:
58:b6:3d:99:2b:57:f6:5c:ea:66:33:d4:a8:54:33:c9:ce:3c:
4d:38:55:c8:fb:10:91:85:ee:23:93:bd:73:98:be:1e:a4:cc:
57:68:7b:5f:40:15:88:8a:1d:18:f2:0c:0d:c9:d2:03:76:0b:
1c:cc:cb:cd:d2:ef:70:37:cd:81:58:6b:b6:5c:fe:17:14:50:
49:9a:73:1b:8f:13:54:ab:4e:bc:72:dd:75:1d:a7:6d:b6:be:
55:dc:91:76:8a:ad:c6:8b:87:9a:17:5c:aa:37:d9:0a:25:4a:
4c:54:bc:f7:24:c7:ef:c1:ad:1f:c6:0a:f2:4c:2f:e2:43:9d:
cb:d7:43:c9:51:05:cb:15:e7:94:e3:52:ca:f0:cc:31:2b:62:
8b:2d:b3:ba:42:7e:c1:60:8a:18:42:0d:96:0c:d3:5e:52:25:
2d:a0:ac:d7:99:02:c1:38:b9:f0:30:52:72:ee:e1:c6:1d:2d:
d7:a1:53:97:6c:ad:0c:5f:2b:e7:1f:ea:38:69:05:28:9e:54:
f5:dc:d5:f2:38:0e:3e:af:46:0f:59:03:68:14:95:5f:1b:1c:
ab:a2:77:14:3c:35:ca:d5:df:d3:42:d9:d8:67:52:f9:d1:b1:
04:20:c1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org