Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XuMiGnlXSJvvJ0pNxksgVLptua8.roa
File: XuMiGnlXSJvvJ0pNxksgVLptua8.roa (raw, json)
Hash identifier: SGFlicJb7spz9+6R8ZjMsbxk0z6MhvRyWhnY9JW9XFg=
Subject key identifier: 5E:E3:22:1A:79:57:48:9B:EF:27:4A:4D:C6:4B:20:54:BA:6D:B9:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C07
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XuMiGnlXSJvvJ0pNxksgVLptua8.roa
Signing time: Sun 07 Feb 2021 06:44:59 +0000
ROA not before: Sun 07 Feb 2021 06:44:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.78.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3079 (0xc07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:44:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5EE3221A7957489BEF274A4DC64B2054BA6DB9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9a:26:09:9c:85:10:39:a2:28:c9:39:dd:2c:
b4:23:0f:06:a4:1f:40:3e:34:9f:0c:ff:a0:66:74:
ad:62:3e:60:e4:94:f7:e4:a8:56:be:ff:7f:f1:80:
2f:d8:e2:f5:b5:a5:bf:67:9f:5a:6b:f6:f8:ee:73:
df:b4:d7:65:52:9b:9e:f1:d4:3b:6a:1b:47:e4:67:
a5:0a:15:31:42:83:5f:5b:96:de:5d:c9:87:4d:3d:
28:8c:5b:b0:db:31:dc:81:5f:4c:2b:0d:a7:65:d0:
63:06:91:11:d7:82:02:40:b5:32:eb:a2:0b:86:0c:
62:52:fe:2e:ab:bb:9e:60:d7:9e:54:79:00:1d:2f:
58:2d:0e:d8:45:e0:7f:e6:d5:29:e3:51:80:33:f8:
4e:70:b5:14:ff:78:f4:dd:34:e4:2c:fa:57:60:fb:
7f:5e:6b:2c:9a:f4:cf:0f:0c:8b:d1:f4:25:e0:1b:
51:36:e4:0b:84:7c:5b:4a:b3:1e:43:65:2d:26:57:
18:a2:35:19:9a:f9:41:4b:e1:7e:da:25:64:7c:59:
47:a9:01:a7:40:82:cc:1d:64:55:da:ab:d3:b7:0a:
71:60:c1:c1:b2:b4:94:33:0d:7f:a5:a4:5c:be:e8:
4a:75:7b:c8:12:d0:03:6c:2a:4c:bb:5e:e5:84:65:
bd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E3:22:1A:79:57:48:9B:EF:27:4A:4D:C6:4B:20:54:BA:6D:B9:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XuMiGnlXSJvvJ0pNxksgVLptua8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.160.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:bf:9d:19:b8:49:cf:39:a9:d3:d2:0d:a8:7b:b3:e1:b3:ed:
41:a7:dd:03:8b:3d:39:88:42:22:3a:0e:ca:d0:2e:8d:85:11:
d9:fe:56:b1:8e:1f:5c:d1:49:6e:cd:89:c5:10:75:92:89:8b:
ca:c2:5b:a6:b9:ab:09:00:8b:c5:f4:be:6e:0f:80:aa:9c:f7:
4b:93:2f:53:70:49:ac:2a:4c:3f:19:f0:18:8e:1b:8f:ba:e2:
6f:e3:84:92:52:b8:4b:ac:c1:73:4a:63:46:2f:81:87:80:b6:
dd:34:a8:76:5d:26:bf:e1:23:16:68:d1:ca:ee:d2:44:23:1b:
fa:ed:d9:d6:ea:d4:42:57:30:29:02:1c:b6:a3:e6:f2:30:e1:
d5:96:c1:7e:c4:41:d1:66:ed:4a:30:a7:0f:a6:3e:8e:bc:20:
a8:e6:e6:92:f7:f9:9b:a5:af:56:e4:e9:86:ad:54:26:5f:4e:
af:bc:e0:7a:58:c1:2e:0a:b2:74:55:83:3e:52:51:f8:2d:40:
75:88:23:de:3d:cb:d1:ba:09:89:26:71:bb:cb:01:a4:fc:23:
82:24:c5:98:89:66:85:57:88:72:bb:ff:dd:11:28:14:ce:b9:
15:e4:3a:fe:64:f7:e5:68:d1:7a:1e:71:a4:01:3f:40:f4:78:
b3:38:89:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org