Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y5xsQZuHTYwOcHFLTpJ2fNbj5iM.roa
File: Y5xsQZuHTYwOcHFLTpJ2fNbj5iM.roa (raw, json)
Hash identifier: BsiKMxsetmfDRp6zyVY/zxCbEmVyl78JOAZY1EjVx3E=
Subject key identifier: 63:9C:6C:41:9B:87:4D:8C:0E:70:71:4B:4E:92:76:7C:D6:E3:E6:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 088D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y5xsQZuHTYwOcHFLTpJ2fNbj5iM.roa
Signing time: Tue 29 Sep 2020 09:52:09 +0000
ROA not before: Tue 29 Sep 2020 09:52:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2189 (0x88d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=639C6C419B874D8C0E70714B4E92767CD6E3E623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:25:ea:36:2d:d2:32:07:c7:1b:4f:42:4e:
30:48:60:a5:f4:e8:4d:bb:b6:b5:d4:31:e0:40:88:
b7:96:3a:1f:f8:00:24:6b:14:fc:7e:fe:cf:b8:56:
39:24:34:9d:ae:87:67:f3:7f:e8:67:4d:d5:72:13:
2b:ec:a7:af:19:5b:be:8f:84:4b:2a:28:1d:ce:1a:
19:8c:03:fc:2c:23:aa:9f:55:5a:e9:02:a7:51:73:
c2:db:7a:c2:bb:4d:1a:5e:b2:0f:09:f1:84:0c:38:
ed:34:69:1b:75:4a:cd:1a:c2:6a:c5:27:0f:26:72:
dd:c1:71:1c:5f:fe:5e:52:16:74:c0:b8:f2:d5:81:
83:cd:02:74:07:f6:78:16:c4:70:5f:2b:2e:0b:55:
07:13:0d:aa:d2:05:98:fa:ba:03:d3:dc:5b:45:b7:
6a:4f:11:e9:f9:43:1e:63:7e:36:23:6b:8e:5b:d1:
36:be:6d:3d:41:f6:6f:a3:99:09:8e:42:35:02:9e:
05:4d:2f:fd:5a:69:3d:03:a2:8b:37:ef:cd:0c:21:
6f:1a:da:85:6b:fe:49:ba:04:9d:0b:b0:46:26:3d:
9f:3e:4c:ec:9b:d8:4a:dd:d3:e9:10:5d:35:93:32:
98:1d:de:51:ee:ef:bf:db:43:40:0c:7b:36:1d:1e:
3c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9C:6C:41:9B:87:4D:8C:0E:70:71:4B:4E:92:76:7C:D6:E3:E6:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y5xsQZuHTYwOcHFLTpJ2fNbj5iM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.128.0/17
Signature Algorithm: sha256WithRSAEncryption
61:4b:7c:0e:4e:f5:93:e0:80:c7:63:83:ce:e8:28:8e:7d:6c:
06:89:83:6f:15:48:96:79:da:19:ae:a1:8c:e2:b0:a3:04:ee:
3b:3d:f8:cb:2c:e0:d9:66:9d:93:1d:89:bf:d5:ca:fe:b6:be:
40:d7:80:11:44:ce:2c:74:34:a0:62:09:da:32:08:6a:70:ca:
1d:15:26:5f:45:85:95:4e:17:b0:b3:25:5b:83:8d:a3:a5:5a:
0d:69:15:2e:11:81:e2:ba:54:59:6c:7f:b5:22:7d:1a:75:4e:
1d:48:e6:7d:2c:a7:c1:07:98:a8:6c:5e:91:bd:67:41:c7:48:
a9:c5:55:0f:19:cf:f5:75:f9:b9:f3:0f:2f:d5:f4:ca:df:c6:
19:5e:9f:5e:40:ca:ee:d8:b0:ce:33:93:ba:95:57:bc:44:7e:
3e:cb:3b:c2:16:9e:e0:5e:63:69:b6:7b:8f:ac:4e:61:e3:0b:
55:de:9d:59:70:f7:d1:49:ad:93:e0:bd:33:a9:9a:1d:94:e1:
29:a1:cc:41:50:8b:39:9a:5d:cc:52:1d:94:a9:a1:19:81:d1:
46:c8:23:c8:e5:68:dd:a5:4b:5a:89:2c:7e:a3:61:2d:f0:bd:
c7:39:d5:7c:ac:af:1a:e4:56:5e:03:4f:6f:bb:70:50:c1:7b:
db:91:6e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org