Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y9adKs6hWtx0bASW9lwXXWTF0vU.roa
File: Y9adKs6hWtx0bASW9lwXXWTF0vU.roa (raw, json)
Hash identifier: VfCK69qBL/hFPMNGBbd80WniS0ILlcdzZmngw1pJIf4=
Subject key identifier: 63:D6:9D:2A:CE:A1:5A:DC:74:6C:04:96:F6:5C:17:5D:64:C5:D2:F5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EB3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y9adKs6hWtx0bASW9lwXXWTF0vU.roa
Signing time: Wed 29 Sep 2021 02:43:52 +0000
ROA not before: Wed 29 Sep 2021 02:43:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.205.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3763 (0xeb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=63D69D2ACEA15ADC746C0496F65C175D64C5D2F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:11:47:89:f3:38:22:36:48:a1:15:f6:c7:
14:ac:17:f8:d7:8d:ce:3d:ee:41:60:d0:06:4c:53:
e6:52:ae:bc:7e:55:62:a1:7f:dc:e3:59:bb:92:cb:
fe:e0:c6:ae:fc:e6:d8:e7:0b:05:4e:33:bc:9f:be:
5d:1f:af:fd:cd:bf:ff:5f:2c:4c:af:55:0a:2d:38:
64:20:3d:58:ea:e8:60:14:c1:cf:ae:05:2a:12:15:
e2:6b:7c:b8:cc:ba:94:bf:78:7a:aa:89:d2:62:c3:
b9:f0:b4:4d:bd:09:fd:48:7d:c6:b7:97:b9:9f:5b:
4f:48:67:27:d4:23:85:c8:15:42:45:70:f2:00:45:
8d:0c:93:c6:c8:0f:75:32:db:69:fc:97:dc:9b:e2:
bc:32:ec:ce:1d:81:c4:b5:65:6b:16:f8:98:30:5e:
8a:2b:f4:b6:3d:d7:45:6d:bb:ff:c7:45:2a:63:4f:
09:58:c7:2b:80:0a:1c:02:c0:23:01:f7:59:e4:c8:
f2:a9:da:49:8c:eb:8f:de:64:75:8a:cc:44:3b:b1:
e9:e3:54:7d:a7:b7:82:0c:5c:93:c4:49:0a:5e:4f:
b7:6b:f7:7c:c3:d4:8d:54:f7:a7:2d:ad:e3:d7:3d:
1d:9d:88:d0:0b:3e:82:43:8a:d5:ee:23:c1:55:bc:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D6:9D:2A:CE:A1:5A:DC:74:6C:04:96:F6:5C:17:5D:64:C5:D2:F5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y9adKs6hWtx0bASW9lwXXWTF0vU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.56.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ff:c4:6d:7f:72:3d:e9:36:e3:80:7c:96:cc:1c:d8:58:13:
15:62:68:45:22:4b:04:35:81:af:c7:88:c0:27:23:d2:00:0c:
ed:97:73:b4:d2:c7:ac:e5:9e:84:40:53:be:cd:ce:fa:94:72:
c0:bc:3c:7e:25:e9:bb:03:97:de:d4:4f:29:aa:0e:f7:41:71:
1d:1d:88:f7:92:f2:91:78:b2:8e:a3:06:6b:22:f9:7e:41:2d:
bf:bc:e6:33:e0:2d:b0:26:40:58:3d:22:0b:e3:09:27:ce:28:
f0:a8:13:84:87:97:6d:1c:7f:02:50:d4:30:b3:8d:80:6f:c1:
8c:d4:dd:aa:c4:58:17:c3:96:53:84:bc:73:55:ad:5c:ab:10:
8e:de:98:62:f0:cf:cc:10:7b:47:46:d8:24:e2:7c:68:ef:53:
33:c4:53:dd:6b:09:88:9d:d8:d8:67:3e:dd:7b:a8:5c:39:56:
87:38:81:bf:a6:e8:e7:25:fd:61:a7:b3:02:77:97:91:dd:41:
79:d4:ae:01:ff:d8:5c:f4:db:88:e3:6d:f1:3c:dd:70:f4:9d:
c8:ed:c3:1d:cb:87:a7:9b:06:21:43:96:ae:eb:95:bc:81:44:
a0:30:62:1d:c3:96:f4:4e:09:4d:35:19:bf:1a:6e:ed:dd:5c:
fe:59:4d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org