Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zf9aNnJcFO-u1FqhoWdm7b91UpY.roa
File: Zf9aNnJcFO-u1FqhoWdm7b91UpY.roa (raw, json)
Hash identifier: pOhkNnbUJjusXnfFd3NeYHr4BXY8jpCgOJqLXdf0M0E=
Subject key identifier: 65:FF:5A:36:72:5C:14:EF:AE:D4:5A:A1:A1:67:66:ED:BF:75:52:96
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B8A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zf9aNnJcFO-u1FqhoWdm7b91UpY.roa
Signing time: Sun 07 Feb 2021 06:25:24 +0000
ROA not before: Sun 07 Feb 2021 06:25:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:25:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=65FF5A36725C14EFAED45AA1A16766EDBF755296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d7:1d:e6:86:01:14:d0:8c:e1:31:e5:41:ae:
af:24:c6:ce:65:c2:cf:91:2e:ac:a2:9d:fb:dc:a6:
61:2f:bf:0b:70:57:9d:80:81:db:99:c7:d3:68:a4:
0b:9a:31:4f:84:46:48:98:a1:2c:ca:2a:dc:d0:40:
10:ac:c6:49:7e:a3:d4:d7:c3:4d:46:05:c7:ce:5e:
96:bd:08:b7:c3:48:a2:95:31:87:6d:ad:43:bb:d2:
02:66:14:a1:d0:ff:07:b5:34:2c:d2:c8:01:59:b2:
09:49:48:31:b4:f8:54:dc:b7:10:51:0e:7a:fd:bf:
31:93:b3:ff:0b:66:62:ad:b8:f6:69:d8:4f:c4:e4:
46:9b:56:3c:ad:a6:15:77:d6:ee:d1:98:ab:c8:3c:
d6:c7:f5:63:5e:22:74:78:c1:d2:ab:b3:38:0e:70:
07:2a:65:b7:e9:fe:ce:49:c9:42:da:57:8c:5d:c1:
c3:a4:8a:a2:a5:f4:f2:9d:77:c2:91:47:69:19:f0:
83:74:de:10:d0:ee:d1:09:91:48:5e:68:79:8f:ea:
2e:bc:84:f9:3b:05:3d:28:35:24:71:e5:df:15:70:
a6:d9:22:9e:15:0c:0a:e2:76:19:07:ad:56:b0:e4:
fb:3d:59:48:bc:24:10:0b:b2:7b:d8:a6:ed:06:48:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FF:5A:36:72:5C:14:EF:AE:D4:5A:A1:A1:67:66:ED:BF:75:52:96
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zf9aNnJcFO-u1FqhoWdm7b91UpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
cb:d9:0b:bd:c3:fe:50:19:67:bc:5c:91:42:fd:7d:8e:6e:a7:
46:be:22:18:f3:08:db:e8:78:e9:b6:cc:46:e5:d7:c8:25:32:
5a:c9:fd:19:3f:03:a9:83:e5:c7:93:72:55:39:51:88:37:2d:
e8:c1:32:81:b8:7d:20:08:dc:ce:c8:03:10:65:5a:70:8f:40:
08:8e:8d:9c:aa:04:d5:ba:88:da:e5:05:f0:9c:cd:19:15:91:
5b:e2:d9:1e:c4:e6:ac:89:2e:db:3c:70:46:1d:50:9b:17:b3:
a5:fb:4d:03:34:64:81:50:1f:15:dd:ee:5b:ef:3a:c6:ca:64:
ec:49:3b:f8:f8:70:47:63:bf:53:62:e3:3d:17:01:b8:20:cb:
f3:17:16:28:ed:8c:eb:8a:ed:8f:3d:cf:42:d5:9c:19:9e:a0:
f0:33:a0:0b:cf:04:a0:7a:60:52:76:b3:47:7a:be:28:5a:03:
29:72:d2:0c:95:43:51:df:02:13:2c:cc:0f:af:4f:75:8f:2b:
1a:a5:a1:ce:fb:9d:6a:4f:ec:43:70:d2:52:57:bc:4e:02:ee:
eb:13:5c:11:24:5f:c6:cf:fc:0c:d8:79:f1:c0:a5:c8:08:d5:
92:eb:d4:53:69:e8:1f:e8:25:77:ae:36:b5:78:ff:d2:80:0d:
ac:53:5a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org