Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WWKaNQaqWiMBJzsCE8QpdLIUe-Q.roa
File: WWKaNQaqWiMBJzsCE8QpdLIUe-Q.roa (raw, json)
Hash identifier: x/h8rPHzuXKJGMaGV9Nfazc6qPc2HpkC3XFwuEGGtPk=
Subject key identifier: 59:62:9A:35:06:AA:5A:23:01:27:3B:02:13:C4:29:74:B2:14:7B:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0902
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WWKaNQaqWiMBJzsCE8QpdLIUe-Q.roa
Signing time: Tue 29 Sep 2020 09:52:41 +0000
ROA not before: Tue 29 Sep 2020 09:52:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.73.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2306 (0x902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=59629A3506AA5A2301273B0213C42974B2147BE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:07:7d:71:6c:fe:d3:5e:07:a9:c2:c2:07:
ff:a6:91:e1:9f:6f:b9:f1:87:13:08:fc:5f:75:3b:
36:12:d1:07:3e:d0:38:31:b6:22:2a:65:95:b7:cb:
c5:09:c6:54:f3:05:ab:f4:6a:bd:c0:f6:15:2a:8a:
49:9b:7a:3b:dc:1b:d9:02:b1:58:cc:7e:16:d1:4a:
37:e9:09:14:ef:70:3c:c4:24:ca:cf:8d:e3:1d:88:
45:14:02:54:6b:71:63:cc:99:33:e4:9b:fb:b1:70:
fc:8c:a7:91:37:89:11:9e:b2:c4:ea:b4:58:68:bc:
ff:29:fd:3a:4f:77:a2:4d:a0:65:36:a6:09:23:58:
af:15:57:7b:ee:72:39:ab:5a:59:18:20:98:12:85:
3a:31:5c:ee:80:2d:de:09:9e:1c:d5:bf:37:b4:b3:
21:d0:7e:4a:87:90:58:eb:1c:a0:c4:4a:45:06:7d:
fc:a6:31:16:7d:93:72:bb:3c:51:fc:12:5e:75:9a:
61:f6:0c:67:46:e8:25:c6:ef:b8:af:53:a9:7e:91:
84:62:bf:aa:8e:26:9b:3d:f7:72:6a:7c:ef:44:6e:
d2:c6:f4:fc:cc:cc:13:7f:92:1a:18:49:9a:33:2e:
78:7e:fe:ff:a1:a5:ec:5b:ae:a4:67:9e:a5:5c:a3:
14:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:62:9A:35:06:AA:5A:23:01:27:3B:02:13:C4:29:74:B2:14:7B:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WWKaNQaqWiMBJzsCE8QpdLIUe-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.73.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c9:6f:96:7e:bf:2d:34:d6:64:8f:f7:83:ca:ab:19:62:3d:02:
16:aa:44:cc:74:ca:20:de:40:8b:48:34:16:89:a4:31:26:3c:
6c:7e:10:cf:4f:c2:d0:a0:e0:f8:3a:22:4a:52:9b:14:bf:f3:
87:de:14:56:0c:b7:23:e9:87:e8:14:51:5f:05:82:ce:01:34:
b0:d9:a3:2f:02:01:8d:fb:ba:ea:6e:21:b2:e3:f2:9b:6d:b7:
54:ac:b8:f0:ed:70:9f:ed:0b:98:29:54:21:bf:f1:00:44:c1:
94:09:f1:31:7d:cc:da:72:b0:53:e0:0f:85:e2:1c:a0:83:21:
a0:96:f0:5b:cd:e6:7f:06:ac:9b:35:8b:89:03:e6:2e:48:bd:
a0:25:24:63:5d:46:8f:50:eb:a4:c8:2a:dd:11:a8:8a:fd:0a:
0c:13:ad:85:b5:8c:ce:02:4a:9f:19:dc:76:37:dc:b4:27:71:
60:88:fa:57:9e:2b:71:87:e7:b4:cc:4e:94:7d:45:26:1e:e3:
1d:29:16:10:6b:b2:c5:f3:30:ac:08:17:74:d1:81:03:43:46:
f0:9e:dd:e7:c5:46:f9:9f:ed:6e:67:98:e3:20:e9:cc:fa:63:
e0:64:60:b4:e2:a4:d8:ab:e6:08:0f:2c:ba:33:db:62:62:0d:
e2:a0:f7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org