Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XLkPlkBvPTwe3lNB-NZE0RGu_-c.roa
File: XLkPlkBvPTwe3lNB-NZE0RGu_-c.roa (raw, json)
Hash identifier: oUrKbyeJHejF9e92Qqkczh4utRSVSxS8PgkHdCYJbTs=
Subject key identifier: 5C:B9:0F:96:40:6F:3D:3C:1E:DE:53:41:F8:D6:44:D1:11:AE:FF:E7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08DF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XLkPlkBvPTwe3lNB-NZE0RGu_-c.roa
Signing time: Tue 29 Sep 2020 09:52:33 +0000
ROA not before: Tue 29 Sep 2020 09:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 220.229.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2271 (0x8df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5CB90F96406F3D3C1EDE5341F8D644D111AEFFE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:de:aa:43:38:56:9f:2a:a3:d0:76:3d:ce:04:
69:7d:5e:f9:be:3a:b4:2d:fa:2a:02:76:8d:d9:c9:
4a:3a:a1:19:0f:ef:02:0b:4c:d1:88:c3:18:3a:22:
46:a0:c1:e3:fb:38:7b:ee:34:0d:10:7d:a8:0a:c1:
2e:51:35:02:60:49:aa:01:74:b2:b4:ed:3a:23:c5:
77:e7:48:d8:c1:bf:46:dc:81:b4:9d:9d:10:0c:03:
0a:0a:e1:59:d3:0e:fd:ef:67:be:d7:f6:87:37:3e:
06:1e:e6:06:cf:b5:b4:f9:ca:6c:fc:2d:09:6e:9e:
c4:cf:48:c3:35:66:5a:51:f1:93:01:06:51:15:fa:
2e:66:b3:13:a8:83:c7:90:7b:a9:85:b3:0f:a9:7a:
cc:8a:65:54:86:7a:d8:dd:24:31:2c:56:69:46:72:
48:33:2c:fc:86:75:de:be:75:0d:03:1d:f0:82:64:
0a:27:34:06:8b:bd:37:97:2d:d1:ce:28:68:d9:72:
e9:c4:36:d2:12:c7:d5:d5:21:d1:4e:00:34:e0:e7:
6f:39:df:f0:b7:11:b8:94:4d:1f:11:c1:07:74:4b:
e9:96:66:8c:1c:a1:9a:8f:24:7d:b2:ba:25:76:51:
2e:2c:1e:98:67:dc:4e:f7:26:eb:0d:fa:f3:4d:d7:
c4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B9:0F:96:40:6F:3D:3C:1E:DE:53:41:F8:D6:44:D1:11:AE:FF:E7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XLkPlkBvPTwe3lNB-NZE0RGu_-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.65.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:b6:5a:d8:5e:84:6e:f2:da:f4:6c:2e:b2:2e:c5:c3:6d:2b:
94:39:ee:1a:03:d8:eb:d6:3c:4a:eb:43:7c:64:dd:64:64:73:
cb:64:69:b8:12:82:a3:da:2e:f7:5e:83:a1:96:df:45:0a:c9:
95:5b:cc:29:e9:c5:3d:34:61:40:07:24:af:4b:12:bb:2c:b8:
e4:29:7e:89:67:da:9b:a3:76:66:9b:08:c7:eb:56:82:1a:d9:
eb:68:2e:85:29:16:ae:66:6c:d1:c1:ba:e6:de:42:93:28:76:
bc:ae:b8:ca:8a:ee:9c:c5:85:53:57:73:d6:ac:1a:5f:99:df:
65:b6:40:2d:a2:65:12:eb:f8:30:78:72:23:5e:27:00:5f:7e:
0c:1d:6f:3b:90:b1:9f:43:c5:19:29:78:e6:c0:84:ed:91:6a:
33:51:0a:30:8a:99:83:88:27:a4:df:41:3a:e6:da:9f:85:df:
1b:b1:5b:f4:58:2b:14:2f:c3:96:36:80:87:91:7f:45:96:c1:
df:f2:95:23:2c:82:ff:a6:63:60:99:7e:c6:d5:49:aa:d7:8c:
ec:0d:65:29:20:bc:c1:a0:51:50:23:5e:64:83:c4:78:de:5d:
16:4b:fa:0c:87:d6:e7:89:48:4a:01:e1:c5:56:ce:d9:50:70:
44:de:b3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org