Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WlMbXOm_YJ0fckMEJESO61O-vr0.roa
File: WlMbXOm_YJ0fckMEJESO61O-vr0.roa (raw, json)
Hash identifier: kQBeGX6u1uxxrr5hq5V6vyUyzgk++pj1+HOPzWC5wHw=
Subject key identifier: 5A:53:1B:5C:E9:BF:60:9D:1F:72:43:04:24:44:8E:EB:53:BE:BE:BD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D21
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WlMbXOm_YJ0fckMEJESO61O-vr0.roa
Signing time: Sun 07 Feb 2021 11:48:30 +0000
ROA not before: Sun 07 Feb 2021 11:48:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 113.196.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3361 (0xd21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A531B5CE9BF609D1F72430424448EEB53BEBEBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:19:c1:c8:2d:65:33:aa:2c:6a:7f:92:76:
ac:80:b0:d7:88:5e:13:b3:a6:23:9a:f1:1f:b2:4f:
08:73:7b:64:50:32:9a:5f:da:e9:ba:de:ad:51:e7:
f1:76:78:c3:eb:d8:bb:11:7f:93:30:93:75:02:68:
b0:58:e9:2e:6e:88:6f:7a:51:80:e1:56:98:10:4d:
b2:a2:2f:81:ff:6f:da:bf:e0:ea:be:83:f9:24:fa:
c7:4a:02:ff:03:0f:cc:7d:c9:ed:39:68:31:3e:27:
12:ec:64:58:5a:e1:e0:07:e1:56:64:84:7b:9c:2c:
25:24:a8:67:1c:67:9f:ca:78:e8:37:0f:ff:c9:d1:
84:d4:b5:79:92:34:f5:76:ef:e0:f7:7d:0a:2a:a8:
4e:9d:5c:94:55:be:e0:d2:0c:8c:2d:0f:52:4f:5b:
ad:23:1c:e8:fd:77:ec:41:57:22:3c:a7:fd:8a:0b:
b0:37:a3:d5:08:c8:2d:0e:e3:37:6e:b6:a7:b3:64:
dc:60:25:3f:84:e4:5a:d3:56:86:e3:17:97:5a:91:
28:9b:b3:0a:8c:bd:80:78:08:0b:1b:44:57:32:2b:
38:5a:f9:c1:bf:d8:e1:90:2d:f5:66:b1:df:e2:67:
3e:1d:08:b4:74:ea:59:41:f2:a8:8d:16:0f:0f:75:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:53:1B:5C:E9:BF:60:9D:1F:72:43:04:24:44:8E:EB:53:BE:BE:BD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WlMbXOm_YJ0fckMEJESO61O-vr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.115.0/24
Signature Algorithm: sha256WithRSAEncryption
29:da:84:9d:15:c6:14:c6:24:37:bf:3f:8c:3d:56:48:a3:7c:
19:1c:f2:b1:a7:a2:e0:e2:9c:50:5f:c3:95:dd:f1:d1:95:15:
07:0f:e1:f7:a6:03:68:e5:85:ed:63:ff:d3:f7:a9:d5:c1:4e:
f4:57:23:cf:1e:f2:84:3e:25:d1:bb:6f:6a:c0:e4:7f:3c:1f:
2b:81:18:76:8b:be:64:ba:66:10:54:ff:2f:b5:36:4f:a5:be:
16:5f:43:94:ec:69:5e:21:49:a9:72:46:8b:27:98:6e:30:76:
dd:96:b3:a3:0f:30:f2:a3:1d:a3:7d:4b:2c:28:13:13:d7:32:
8f:3d:6e:86:8c:d2:96:62:f9:4f:39:0d:2b:20:a7:d6:b5:78:
d2:c3:fd:81:cf:fc:f8:cf:40:9d:54:4b:92:44:21:88:49:a6:
26:f2:7a:19:73:bf:47:b1:89:36:78:d3:1b:20:88:49:d5:44:
31:56:6f:36:61:06:2c:05:09:00:30:d1:09:d3:ee:e2:cf:03:
48:d6:a9:80:66:3b:08:b5:c0:ad:3f:6b:35:a5:4f:7a:17:89:
f5:54:56:e2:00:48:5a:d8:4e:50:08:cd:ea:f5:2f:17:2b:67:
86:cc:fe:6e:95:d5:17:5b:5c:7a:70:9e:31:fe:ed:7b:dd:19:
0e:a3:27:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org