Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ab4pommYxkX9iJHEJgY1OkHKJHc.roa
File: ab4pommYxkX9iJHEJgY1OkHKJHc.roa (raw, json)
Hash identifier: n25KmKUKyjehG5n0IHj+0P788NeayOGXTBq1X/SdGAM=
Subject key identifier: 69:BE:29:A2:69:98:C6:45:FD:88:91:C4:26:06:35:3A:41:CA:24:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0A33
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ab4pommYxkX9iJHEJgY1OkHKJHc.roa
Signing time: Tue 24 Nov 2020 09:18:01 +0000
ROA not before: Tue 24 Nov 2020 09:18:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2611 (0xa33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 24 09:18:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69BE29A26998C645FD8891C42606353A41CA2477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:42:8d:c9:8b:7a:f1:69:56:62:a9:64:90:e9:
f1:1b:2e:28:6a:97:d0:2e:43:6a:b6:f3:f1:23:2f:
3b:c7:3c:86:05:75:d4:a6:19:c3:46:86:c5:94:28:
65:84:52:e7:04:73:b0:05:77:42:91:8d:2e:91:d8:
ce:ee:95:75:b3:44:2d:a2:b3:40:60:a6:41:71:fe:
25:08:88:67:e9:48:7d:44:36:f2:5e:34:9f:a6:4a:
b7:35:00:bb:4e:97:a6:1d:86:89:11:7c:d2:fd:ed:
fa:41:0b:fe:9c:e8:fb:a3:77:7e:5d:24:a2:df:51:
aa:3a:a4:32:59:2a:21:66:d8:5e:ec:35:85:aa:46:
6e:d2:90:94:d8:e7:7a:8d:84:ba:a1:a9:3a:24:ff:
10:1e:7a:5b:e7:65:eb:fa:e3:76:44:b0:de:10:06:
c3:d1:1f:69:af:29:b2:b9:77:68:24:b4:c8:97:74:
5c:85:e8:d2:f0:b7:ba:50:3f:22:09:25:d3:58:f3:
9c:1a:66:9d:dd:f3:fb:23:a3:7d:03:ed:2f:ef:26:
43:e1:63:0c:57:1f:1d:5d:47:20:51:0b:bd:a1:39:
d4:74:55:8a:f1:05:28:0c:37:ce:03:74:0c:40:75:
c8:e6:09:74:02:cd:3d:a3:6f:3d:84:d7:bc:89:42:
64:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BE:29:A2:69:98:C6:45:FD:88:91:C4:26:06:35:3A:41:CA:24:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ab4pommYxkX9iJHEJgY1OkHKJHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
4b:56:d1:0b:a8:df:7f:1f:60:c9:42:31:c0:9b:a8:6b:e9:b9:
e0:8e:33:54:f6:70:22:21:ea:80:f6:74:b7:45:09:e0:37:af:
a2:52:29:59:49:9f:2d:b7:87:b3:f2:1d:a9:69:d2:97:7f:ff:
ce:63:05:b7:ae:49:93:6b:c5:62:67:98:a5:07:52:71:f4:1b:
c1:4b:c2:f8:18:12:c4:e1:6f:12:4d:b0:4d:80:76:ac:74:23:
dc:60:59:09:87:4d:5b:60:91:38:a3:e1:c8:5d:04:6a:5d:d3:
59:1f:e0:01:f1:00:48:9d:bf:8c:cd:32:5b:77:3c:8f:e9:f9:
12:48:4e:82:3d:d2:55:47:95:40:59:20:1d:90:53:58:f8:00:
0b:e3:d0:aa:fe:9d:c5:e1:2f:d8:e3:93:a7:fd:c1:94:aa:c7:
bd:19:39:60:ab:7e:d1:62:e1:4c:87:77:42:aa:e2:88:9e:dd:
c4:50:dc:b5:ac:64:2e:76:2a:d4:15:d9:94:ed:2e:72:36:9f:
32:28:a0:c7:49:61:30:c3:03:0f:7a:4a:cf:af:3a:28:9b:5d:
65:f2:54:fa:fc:7f:fd:96:58:6a:f4:a7:e6:2a:da:df:45:e6:
c8:ff:d8:38:6d:aa:97:67:88:07:7a:b0:cb:4f:b1:c5:79:47:
f5:26:52:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org