Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XATP2T9TyJOpgX1_NToKaefMlTQ.roa
File: XATP2T9TyJOpgX1_NToKaefMlTQ.roa (raw, json)
Hash identifier: V3EHJaclMZZlzauxZ0wUrv8yzsgZ/Y8Vh9wBQh35fpE=
Subject key identifier: 5C:04:CF:D9:3F:53:C8:93:A9:81:7D:7F:35:3A:0A:69:E7:CC:95:34
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BE5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XATP2T9TyJOpgX1_NToKaefMlTQ.roa
Signing time: Sun 07 Feb 2021 06:40:23 +0000
ROA not before: Sun 07 Feb 2021 06:40:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.70.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3045 (0xbe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:40:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5C04CFD93F53C893A9817D7F353A0A69E7CC9534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d2:40:ae:90:3f:f9:c7:72:31:3b:bd:6a:6a:
bb:2e:19:6e:56:52:ad:d1:24:5b:9c:06:50:b8:0b:
5d:3a:26:b0:a8:31:c2:6f:4d:83:ee:a2:63:fc:48:
48:2a:a4:ce:8a:e2:f3:f6:33:29:a4:e1:b1:25:26:
34:41:5d:c6:2f:f2:0f:97:f9:2b:4e:ea:ff:db:1f:
0f:f7:1c:7d:d7:24:00:b5:45:db:8d:5d:29:dc:9e:
51:a5:5d:de:1e:6d:92:38:1d:34:34:16:8c:5d:21:
84:3d:bd:2e:f3:60:c5:f2:b3:7f:a9:02:49:da:5b:
30:05:a2:ad:5a:88:39:d4:dd:85:02:3d:bf:93:39:
73:47:f6:e1:e9:5b:3a:03:8f:d8:3b:49:75:84:76:
09:60:58:f9:a8:df:8e:29:23:93:7d:1d:cf:e5:ff:
af:84:cc:2f:99:8c:8a:ba:01:d1:8d:c9:6d:2b:36:
ed:03:75:15:f5:c0:16:0b:cc:f9:cf:02:cf:e4:7e:
a5:34:f8:68:a8:7d:fa:f5:a7:f3:2c:31:ad:3b:21:
3d:89:b7:1c:5c:c3:e3:c9:49:ab:6f:8b:08:ed:b8:
b8:26:93:a3:fa:f6:f1:3b:f9:4a:bf:a3:61:4b:ab:
54:3c:43:c2:c6:aa:63:b4:e2:87:52:7b:48:54:42:
44:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:04:CF:D9:3F:53:C8:93:A9:81:7D:7F:35:3A:0A:69:E7:CC:95:34
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XATP2T9TyJOpgX1_NToKaefMlTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:2f:c6:b3:8d:f3:d1:27:0e:2f:f3:f1:8f:a5:6a:9e:8d:5f:
fc:20:a9:f6:9b:bc:db:67:38:12:8b:2f:b5:0c:32:ce:31:7a:
45:7b:fb:f1:c6:eb:02:3a:50:bb:4e:1c:b1:0f:96:34:a2:3f:
bc:ea:d5:20:50:ea:4a:cc:db:57:b8:aa:10:ce:c6:74:7d:76:
49:6b:1c:e7:82:73:71:f2:6e:dc:dc:da:5f:7d:bc:17:1e:dd:
49:be:ba:07:88:a9:ae:ba:ac:84:18:7f:6b:2c:63:ab:27:d7:
b9:7d:ff:19:41:e1:94:5e:91:82:5d:52:25:68:56:8d:68:f9:
d7:cb:f6:79:65:52:92:f9:1f:ed:d9:7b:0f:05:dc:c9:9f:be:
7c:00:39:9a:9e:a8:08:d6:cc:10:5d:9b:47:14:e7:69:9c:05:
5b:fc:53:57:ae:b3:41:bf:5f:f7:ca:23:a3:78:2b:2e:ba:1a:
3d:29:dc:19:2e:5e:51:ba:fb:7d:82:b8:ad:82:2a:d9:52:e1:
62:7f:f1:54:1b:f3:58:8f:c2:7d:b3:a3:1c:f8:9c:89:52:2c:
45:47:f9:b8:6d:a2:e6:14:1f:84:a3:41:b9:dd:bd:12:58:66:
3c:87:ee:3a:cd:0b:d0:02:15:7d:bf:29:df:1d:d7:86:4f:40:
2f:00:e6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org