Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z_wkqoB2THQWW4tyPBiwDaYjkZY.roa
File: Z_wkqoB2THQWW4tyPBiwDaYjkZY.roa (raw, json)
Hash identifier: /u3TcpGQE754AHo5PRreEaGJtZjpnmbeOGK01FG2rcE=
Subject key identifier: 67:FC:24:AA:80:76:4C:74:16:5B:8B:72:3C:18:B0:0D:A6:23:91:96
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z_wkqoB2THQWW4tyPBiwDaYjkZY.roa
Signing time: Wed 29 Sep 2021 02:43:03 +0000
ROA not before: Wed 29 Sep 2021 02:43:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3577 (0xdf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=67FC24AA80764C74165B8B723C18B00DA6239196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ce:9f:04:11:0a:53:41:bc:66:47:90:34:18:
41:26:ee:b2:6e:c3:f6:e6:a2:ad:49:1c:fb:71:38:
a9:1f:93:76:4c:93:7a:b3:89:31:df:00:95:72:34:
4c:28:3d:93:33:fc:31:e2:c1:ac:9f:53:29:db:ce:
ec:bb:6d:79:91:f4:7d:23:c3:79:52:8f:50:47:63:
41:3f:62:34:a5:0e:c1:b3:12:e3:8c:a4:be:62:7b:
e4:76:71:ab:93:ab:58:aa:8f:54:14:3b:38:02:b8:
aa:d7:90:71:bf:cb:79:6c:c4:f0:e7:8d:dd:40:26:
ea:22:3e:d2:40:ab:46:f2:fd:1f:4c:01:17:b8:e7:
24:1b:e7:0f:3a:02:5e:e4:18:74:26:a1:02:1a:08:
60:e7:d6:8c:9b:6a:7b:0e:77:78:f2:d7:7d:93:67:
33:a1:37:44:5d:77:26:6e:4b:c8:1d:93:f8:65:c5:
c1:f6:14:bf:55:ee:4b:8d:6d:11:6a:9b:9b:4c:f3:
ba:0e:a5:2b:91:4b:64:44:94:24:85:e9:ed:5f:3b:
81:c1:99:32:6a:30:3e:ba:fa:ff:1c:a1:b8:ff:c5:
45:39:e0:76:6a:f5:71:da:5e:b0:2a:eb:14:1d:ba:
d6:b7:eb:a9:c0:c2:51:5a:f9:91:35:7e:2c:65:1f:
41:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:FC:24:AA:80:76:4C:74:16:5B:8B:72:3C:18:B0:0D:A6:23:91:96
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z_wkqoB2THQWW4tyPBiwDaYjkZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:3b:db:2d:2b:ce:82:fb:1a:44:c3:71:d5:c4:6a:a7:ec:ce:
e1:72:e4:be:05:9c:c8:03:12:01:e3:be:83:92:98:c4:2f:70:
4f:73:c9:53:64:43:c8:46:bd:5e:04:6d:52:2f:12:b2:2e:ee:
9d:b1:51:a3:ae:5f:6e:49:03:40:18:1d:38:1d:92:86:cf:8c:
87:b5:5a:e1:1b:d8:e7:7b:96:0f:af:13:eb:46:fa:2c:38:ae:
7d:65:6b:db:98:8a:f1:fd:22:3c:7d:7f:f8:6b:25:c1:0e:d8:
c2:7f:e8:90:f0:23:a9:a6:82:7b:b6:41:ec:70:22:81:00:e9:
bd:d6:fe:15:01:0f:4b:bb:4b:ff:d0:96:b4:97:05:ce:42:5b:
e2:bd:64:e2:29:72:56:f9:d4:83:ba:c2:d1:1c:2d:80:d5:fc:
81:51:78:7b:3a:c3:f4:f2:ae:8d:28:69:e2:f4:c5:8a:95:75:
db:5a:64:72:a9:c6:58:d7:b4:7e:13:bf:a6:79:49:8c:a5:52:
e8:ae:7f:9c:f9:9f:7a:99:8e:ee:0b:5f:2e:3b:1b:64:07:a5:
fd:cd:6c:de:bf:88:ab:2e:e5:19:5a:89:ae:c8:98:e2:16:dc:
cb:5e:06:fd:35:35:8a:64:28:90:c2:05:fa:17:7b:dc:f3:66:
12:6c:06:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org