Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm7Olfzpy6oaHtSIOJRYoQQtCRE.roa
File: Xm7Olfzpy6oaHtSIOJRYoQQtCRE.roa (raw, json)
Hash identifier: MJwREK/8DS3k2v/8ZgYxY/XLk65Z2LjE9iP4YHkHDtg=
Subject key identifier: 5E:6E:CE:95:FC:E9:CB:AA:1A:1E:D4:88:38:94:58:A1:04:2D:09:11
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B90
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm7Olfzpy6oaHtSIOJRYoQQtCRE.roa
Signing time: Sun 07 Feb 2021 06:25:55 +0000
ROA not before: Sun 07 Feb 2021 06:25:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2960 (0xb90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:25:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E6ECE95FCE9CBAA1A1ED488389458A1042D0911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:36:4b:d3:51:0b:ae:be:65:4f:e9:b2:6e:
a6:ab:6d:d8:e0:f9:cb:3a:34:70:30:a1:0f:dc:f9:
26:f9:9c:5a:7b:1e:20:95:ab:de:dd:29:97:10:bd:
73:96:fe:ae:2b:3f:5f:a8:fd:5a:f8:e7:ab:dd:fb:
40:80:48:28:5a:57:bb:31:58:8b:7c:85:1f:48:9e:
1a:cf:ba:0c:2b:f3:73:bf:ac:cb:97:4d:14:cf:0d:
5d:77:f3:01:fd:88:d8:f5:5f:44:a0:5f:8a:af:bd:
3e:bf:f9:1e:52:c4:14:8d:3e:0a:be:64:54:1c:ac:
fe:86:f8:51:9d:3b:86:52:60:d3:14:a2:5e:06:7c:
52:f0:4c:6e:e7:6d:bf:24:ff:3e:31:23:38:ee:5f:
af:58:c3:05:79:51:71:7d:7c:85:4d:c0:99:58:9b:
ee:b0:15:95:95:c2:95:6e:b2:07:a0:47:e2:34:65:
a6:63:04:1a:30:96:43:62:60:53:8d:3d:51:e9:f3:
1e:7f:05:91:70:c6:3d:b9:49:8d:8e:f7:82:89:3a:
07:f1:9b:37:75:3a:80:1b:44:7d:f2:bc:45:43:87:
21:f2:73:82:08:5f:13:cc:ca:43:c0:f4:d7:4a:1f:
8a:23:d3:c6:06:81:13:e6:e6:01:1c:59:0a:e8:d0:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6E:CE:95:FC:E9:CB:AA:1A:1E:D4:88:38:94:58:A1:04:2D:09:11
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xm7Olfzpy6oaHtSIOJRYoQQtCRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
92:6c:ba:0c:d5:bf:ea:ff:55:a9:3a:fb:fc:8c:2d:86:d1:9f:
0f:9d:a0:94:b2:6f:f3:1e:5b:2f:e5:81:ad:ea:cd:79:f9:aa:
1a:a8:1b:38:38:69:5d:e9:42:54:ed:90:da:7d:bf:a8:e8:ac:
4f:33:8f:c8:b6:c1:a0:a1:ff:4c:da:94:05:34:0e:59:84:c8:
8b:43:88:e5:9d:0a:da:2f:68:4b:e1:55:41:44:cf:60:ef:98:
94:86:28:3c:96:0b:3d:76:3c:8b:9f:f7:16:c4:73:5a:49:49:
da:c5:85:d0:ea:bf:cc:8e:18:8c:0e:d6:2f:35:ae:db:95:c2:
d0:5b:8c:8e:e5:52:4c:c0:d6:a0:df:4a:b3:8b:95:ad:71:e3:
a0:c8:8a:74:5c:04:25:36:c3:e1:ad:ee:d3:6c:34:68:d9:cf:
51:1a:92:58:7c:21:29:9b:65:75:34:74:e2:0b:73:85:36:37:
e0:3a:df:3c:0a:5b:30:73:22:4d:ae:75:80:0e:98:cf:06:35:
1a:b8:16:2e:a0:71:3d:4a:7c:1b:5f:e3:bc:08:ec:77:14:ad:
1f:8b:56:c2:73:73:75:13:7e:39:1e:36:8e:66:9a:69:e6:e9:
45:0b:5a:5f:8a:6c:da:10:41:b6:40:e5:0f:45:34:30:17:ba:
45:fe:f3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:59 2023 by rpki-client on console-ams.rpki-client.org