Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_KycJl_YJP01L9A5V3hiEwiE2-s.roa
File: _KycJl_YJP01L9A5V3hiEwiE2-s.roa (raw, json)
Hash identifier: xfwBG72f17wAGf8+uQUrLrR4T8I181KhmvlVuvTGiew=
Subject key identifier: FC:AC:9C:26:5F:D8:24:FD:35:2F:D0:39:57:78:62:13:08:84:DB:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 088E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_KycJl_YJP01L9A5V3hiEwiE2-s.roa
Signing time: Tue 29 Sep 2020 09:52:09 +0000
ROA not before: Tue 29 Sep 2020 09:52:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2190 (0x88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FCAC9C265FD824FD352FD039577862130884DBEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:66:8e:79:a9:b8:0a:8c:aa:95:2e:aa:70:aa:
70:8e:dd:09:b3:3e:2a:f3:aa:f1:78:49:96:f8:dd:
2b:47:87:d5:34:92:6e:fe:69:a3:8c:80:6b:f9:86:
c5:54:05:68:d8:89:ad:8a:ad:75:b1:bd:b0:51:19:
47:01:6f:ae:2e:9a:b5:10:01:33:c5:b0:a6:9d:e6:
70:7b:3f:37:66:13:b6:9a:7f:ea:0f:e5:51:af:e8:
64:75:2a:e4:0f:fc:30:c4:c7:59:ab:9a:ca:0e:40:
3e:4a:3f:21:54:2c:86:de:c8:37:d1:a5:37:93:e6:
0d:57:80:a9:5b:27:d9:77:63:49:60:50:5c:dd:a3:
55:81:7c:3f:68:cc:55:79:20:90:dc:d5:a0:34:3d:
74:53:5f:25:7c:de:ce:ab:43:b5:54:a4:6f:cf:fb:
ba:4f:96:34:9d:3b:e2:fc:c8:0b:c6:80:69:3b:1f:
59:ea:ba:05:e7:f5:d5:c1:4f:31:59:1a:26:a1:4b:
de:ea:dd:63:7a:19:5d:df:f4:69:ca:5f:c3:41:fd:
c7:48:2b:1d:08:01:05:de:89:ff:22:a2:50:cb:fc:
05:f5:61:f5:05:75:9e:72:4a:2f:07:34:9d:5a:4d:
70:e3:e7:97:69:a9:bc:54:29:ca:80:da:69:0d:b8:
42:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AC:9C:26:5F:D8:24:FD:35:2F:D0:39:57:78:62:13:08:84:DB:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_KycJl_YJP01L9A5V3hiEwiE2-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a0:06:0a:c5:04:2d:b9:3b:e6:fd:06:b6:da:7d:a0:ab:16:7a:
c2:6f:01:c5:54:b8:27:68:5a:6f:0c:79:9e:b8:d4:a2:82:86:
2a:27:0b:93:5d:63:a4:d7:81:09:4f:72:77:93:39:8e:aa:75:
77:a9:71:ef:85:ad:3b:9b:8a:b0:8b:8a:56:9c:0f:ee:e7:6d:
81:63:62:89:df:50:0b:8a:8b:67:de:95:cd:3e:b8:18:d8:ea:
b2:dc:41:9b:28:62:05:9c:82:95:57:d8:6f:de:66:37:8f:50:
2a:22:7f:3e:4f:e5:05:31:46:ba:74:8e:7b:2f:4c:75:9a:f6:
f5:0f:23:97:19:94:41:96:db:d2:d4:f9:b0:5c:9c:5b:1d:dc:
37:15:c8:36:6a:bc:34:61:d8:e9:f9:5a:64:3b:25:93:6c:e4:
9e:46:18:58:a2:e0:be:cf:0f:27:c0:56:4a:96:e4:0a:de:3d:
7f:65:0f:94:0b:f1:c7:49:84:7a:6e:7f:fc:33:b3:0c:15:1d:
2b:2d:58:65:3a:2b:04:d1:93:8d:ec:39:1a:14:d2:c4:5e:4b:
ab:dd:92:d6:04:d9:97:ac:bc:36:f9:b1:49:22:2d:77:e0:1c:
9d:ca:00:84:9f:23:30:50:d9:fd:e4:24:67:09:55:49:b7:f6:
43:d5:b1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org