Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XVb9xu5AiPKS32VGhPwEP8OrlFQ.roa
File: XVb9xu5AiPKS32VGhPwEP8OrlFQ.roa (raw, json)
Hash identifier: F6k5dtZWIFZuHZUxWFUHFtoUsOOkmbKmwGXqQfq+o+I=
Subject key identifier: 5D:56:FD:C6:EE:40:88:F2:92:DF:65:46:84:FC:04:3F:C3:AB:94:54
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BDD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XVb9xu5AiPKS32VGhPwEP8OrlFQ.roa
Signing time: Sun 07 Feb 2021 06:39:12 +0000
ROA not before: Sun 07 Feb 2021 06:39:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3037 (0xbdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:39:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D56FDC6EE4088F292DF654684FC043FC3AB9454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5b:84:cf:b5:e0:6b:60:5c:e0:3b:65:96:46:
56:14:db:32:4b:bf:14:7a:c4:5d:93:65:17:4c:fb:
9d:ec:6e:64:18:56:8d:68:85:40:67:8a:01:3e:a8:
3b:c4:03:bd:8a:66:07:9b:66:70:60:c8:92:0e:26:
93:6c:f6:73:e1:1e:25:2f:23:df:48:52:e9:b1:6e:
bf:1a:54:1f:21:ee:88:35:54:c6:86:de:fb:f1:6d:
ff:b3:63:a8:36:6f:cb:7c:79:6a:8a:3c:29:c5:f3:
9b:3d:ad:cb:3f:75:80:9b:56:dc:8b:53:89:f6:b9:
42:56:44:aa:a0:96:b9:7c:66:d3:0e:2e:8b:ff:53:
f0:49:e3:07:7b:41:38:bf:a5:1c:d3:98:d2:92:9c:
b8:94:38:e3:5e:cf:8a:0b:61:0d:99:5a:42:fd:6f:
21:33:fb:5a:e6:b2:59:4d:46:69:87:46:fe:41:2d:
45:3a:5c:97:19:1f:f7:83:a2:a5:af:9e:c1:f5:5d:
c7:66:d0:1d:5e:23:b0:53:92:1a:cd:8b:cd:14:dd:
50:11:76:21:17:f3:4e:f6:f4:bc:33:3a:44:17:db:
0d:64:16:42:df:be:f0:d1:5b:4e:24:9a:1a:da:4e:
35:ac:28:46:06:7e:c2:d7:25:17:9b:db:fc:78:48:
99:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:56:FD:C6:EE:40:88:F2:92:DF:65:46:84:FC:04:3F:C3:AB:94:54
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XVb9xu5AiPKS32VGhPwEP8OrlFQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
52:8d:6e:47:bf:8e:57:02:f7:b2:fd:f6:e3:7c:bd:05:26:fd:
10:c6:e7:d2:c6:f3:19:f8:db:64:90:64:70:da:cc:5c:70:08:
d6:a7:b2:8b:d8:b2:19:dc:43:1e:d7:e1:d3:bf:12:07:f7:b2:
35:18:3c:6c:94:8e:15:9a:71:ff:5d:8f:2e:14:99:b8:72:c7:
60:1e:95:2a:6e:f9:92:06:91:b6:1e:7b:4d:68:d9:9b:2e:50:
ad:60:2b:4e:31:4a:59:5c:7e:db:42:a7:29:26:ed:39:9e:e2:
71:9c:17:3b:d7:09:18:03:e8:7c:50:18:3d:29:42:4a:35:82:
6f:00:a0:48:3f:e2:dd:52:58:30:5d:20:ff:c4:ba:ff:5a:10:
27:46:bd:a2:e4:f5:84:da:50:4b:d6:68:d8:cb:e0:2e:91:9b:
1c:e4:0a:c4:69:70:89:cd:a9:d9:9d:c1:7f:0a:dd:f2:f7:96:
25:04:15:f5:5a:db:4b:47:ac:e6:98:d8:43:0b:d3:58:31:1a:
dd:a8:bd:60:14:45:38:08:4d:b7:9a:0a:4d:79:1c:ea:8f:da:
ee:af:38:0b:e1:0f:68:8b:79:46:c5:8d:ac:4e:6c:b0:61:8e:
f6:d0:44:85:19:b8:7f:69:bd:bc:34:9e:2f:05:79:14:c4:c4:
23:8a:0c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org