Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzgi2w_6_5MP6qhplgTZsD3IlIU.roa
File: Xzgi2w_6_5MP6qhplgTZsD3IlIU.roa (raw, json)
Hash identifier: DQyJ1BxZv8pDi5yqEx+7H2EyIWLoXWp/2TwPwot+G/E=
Subject key identifier: 5F:38:22:DB:0F:FA:FF:93:0F:EA:A8:69:96:04:D9:B0:3D:C8:94:85
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B63
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzgi2w_6_5MP6qhplgTZsD3IlIU.roa
Signing time: Sun 07 Feb 2021 06:17:50 +0000
ROA not before: Sun 07 Feb 2021 06:17:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2915 (0xb63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:17:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5F3822DB0FFAFF930FEAA8699604D9B03DC89485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e6:be:74:64:19:12:5c:26:28:c6:3a:3e:56:
71:c6:98:18:10:68:f0:3e:2e:51:f7:e3:4d:1e:6f:
86:80:87:14:8a:14:48:7e:be:66:a1:fe:2f:d4:53:
fc:3a:32:b2:f9:0a:2f:ee:b1:73:bd:8e:08:f5:96:
81:2c:6e:bf:29:c3:3e:c2:55:38:df:6a:f1:f1:08:
f5:76:8e:23:98:c1:7c:56:08:94:e7:10:13:9b:49:
6f:ed:5c:43:3a:82:56:84:4b:fa:71:1a:a9:50:83:
f9:30:c4:cf:58:17:dc:33:1d:ff:49:71:9a:fa:bf:
19:ef:21:d4:85:09:8a:bf:20:04:a8:51:ac:93:c0:
04:d2:00:61:89:cf:e3:87:c2:8d:27:0a:c1:f3:2d:
cf:89:42:26:84:52:de:7f:81:59:3e:d3:91:83:c5:
d0:9d:3f:a5:86:8e:70:aa:40:21:53:ad:c6:aa:4f:
84:10:52:46:dc:5b:58:15:30:5b:62:2d:6f:e7:cf:
ee:0d:64:4c:0e:85:a7:94:5c:37:8e:b2:ee:0e:44:
6f:0d:51:c9:d4:86:a8:8f:7f:3e:a3:c4:90:6a:2e:
21:b1:79:5f:42:16:4c:21:bd:57:8d:bc:76:a3:cb:
aa:71:23:8a:db:eb:cd:28:56:70:2b:92:e1:c0:05:
77:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:38:22:DB:0F:FA:FF:93:0F:EA:A8:69:96:04:D9:B0:3D:C8:94:85
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xzgi2w_6_5MP6qhplgTZsD3IlIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:14:06:0e:14:da:e2:b6:c4:06:a2:41:a0:7d:fb:ba:28:1b:
22:91:2d:7b:94:ef:ff:d3:67:55:2b:a6:c9:37:91:f7:47:45:
bc:d2:13:b6:b9:b7:a3:84:41:f0:04:66:35:64:e2:2e:f9:4d:
96:53:3b:88:b9:94:c9:32:11:39:78:18:98:9e:24:ea:06:5b:
7b:d6:2d:c1:97:a2:7e:b8:49:86:d2:3d:b7:da:a2:1b:d0:79:
4d:8a:26:fa:52:25:79:c1:0f:b7:32:29:7c:88:db:58:e5:e6:
ea:b8:68:2b:79:8b:b1:48:f9:8d:dc:ed:18:de:56:db:eb:20:
10:6d:7e:bf:6c:50:ee:e6:83:85:7f:be:a9:8c:de:6a:58:97:
10:eb:a6:30:93:5a:61:6a:64:a7:2a:3b:ce:45:9e:87:27:24:
c5:6f:07:70:80:25:53:93:13:80:7f:9a:b6:88:48:97:f6:6e:
e3:16:fc:92:c7:42:ec:9c:f9:b8:a0:f8:65:6e:92:9c:0d:90:
bd:6d:de:a6:95:51:51:17:7a:a3:39:60:56:24:e0:cb:6b:a3:
1b:6f:84:39:bb:58:ee:85:35:9e:a9:43:10:5a:ce:cf:af:aa:
b3:2b:e9:61:20:68:ea:ec:f1:f9:0c:fd:d7:2a:b4:0f:36:fa:
76:62:04:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org