Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1JERTW1CCD1mnZElxgj5MEWBXE.roa
File: Y1JERTW1CCD1mnZElxgj5MEWBXE.roa (raw, json)
Hash identifier: WbqPhP2dZY8/Z8ChUmGoiP3UlsBadYuEhObGvNyRuno=
Subject key identifier: 63:52:44:45:35:B5:08:20:F5:9A:76:44:97:18:23:E4:C1:16:05:71
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BF9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1JERTW1CCD1mnZElxgj5MEWBXE.roa
Signing time: Sun 07 Feb 2021 06:43:15 +0000
ROA not before: Sun 07 Feb 2021 06:43:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3065 (0xbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:43:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6352444535B50820F59A7644971823E4C1160571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:56:40:64:c3:77:44:15:dc:47:d3:f7:5c:c0:
a2:4b:dd:45:c9:4e:5a:37:57:9e:05:a5:a7:00:b4:
92:64:72:70:c5:99:93:5c:71:c9:fe:2f:e8:47:3c:
e9:69:52:16:e4:77:92:d5:3f:d3:f4:6e:b9:f6:76:
d2:0f:13:ef:1d:9b:ac:51:c6:c7:fe:0c:fb:5f:f9:
4e:12:8e:78:cd:73:44:80:d9:a0:fb:5d:87:65:99:
b4:1f:56:e6:d3:ef:f4:5e:cc:ef:fe:23:da:26:b2:
ba:01:5e:20:df:47:c9:51:c9:ce:a1:e1:f7:0f:6e:
8d:50:9a:fe:a9:a0:5a:f5:6a:74:2f:57:db:4f:25:
2a:90:68:e8:95:a3:b0:a7:ee:75:cd:49:24:b1:8e:
df:0f:5a:e1:ec:bd:7f:c9:97:c8:98:cc:83:6d:17:
fd:d3:d6:e6:49:5d:13:9e:64:a8:42:89:90:33:f5:
21:32:47:12:f7:06:aa:5f:e8:cc:2f:28:54:b7:b9:
95:20:2f:7b:cf:76:49:70:73:7a:1b:85:46:2e:98:
ad:b9:bc:b4:d6:7e:b7:b3:f3:e1:5b:0e:ad:7e:25:
18:3b:37:7a:2f:2b:55:3e:2b:da:fa:a0:10:96:9d:
f4:05:4e:bc:26:71:56:62:2b:33:c1:08:f3:6c:0c:
f1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:52:44:45:35:B5:08:20:F5:9A:76:44:97:18:23:E4:C1:16:05:71
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y1JERTW1CCD1mnZElxgj5MEWBXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a0:90:5f:75:3c:12:c6:cf:45:e1:1c:da:73:f8:51:ed:4e:d6:
de:d3:96:5d:40:f7:d3:0c:73:f3:42:81:04:c2:ed:61:9f:18:
f6:5f:97:76:03:bb:a3:ae:1c:93:65:4a:ba:2c:a2:21:f3:7b:
c1:7f:f4:94:b7:84:08:9b:2a:d4:3a:6d:04:49:fb:87:37:60:
e1:4d:43:00:b1:71:0b:62:f0:51:54:2a:c1:2a:d8:80:d2:21:
7c:d2:fe:b8:74:90:4c:1d:88:19:ca:08:06:2d:fe:9c:9f:dd:
44:74:a1:eb:48:59:fc:1d:57:c3:e4:5a:76:d9:8f:9f:74:8e:
02:10:4c:1c:7d:24:ee:81:c6:be:ef:2a:0c:bd:b6:25:98:b4:
d9:3d:41:4f:6b:4a:2b:38:9c:e7:2f:63:42:03:9b:72:7f:39:
ae:75:91:0e:05:f2:73:9f:3e:0a:9b:53:94:59:32:b1:ac:a4:
10:d9:08:da:83:ca:e8:5b:21:86:fd:ff:8d:5e:fb:ad:af:a9:
2b:74:96:c7:8f:77:dd:cf:5d:6e:96:2d:f9:13:26:9d:b5:14:
c4:ef:47:84:12:05:1f:5f:6e:83:a3:f9:f4:91:f7:c3:f8:bc:
40:d5:22:a5:e2:00:62:50:51:41:de:80:68:1b:f2:37:03:3b:
b5:9e:0c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org