Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aeVMrASUIfLJzGyJXInMQ1xaAkI.roa
File: aeVMrASUIfLJzGyJXInMQ1xaAkI.roa (raw, json)
Hash identifier: fwpRzcl3Szc+AYGFBTXUTIWUWCNY3+ObBlX+Y/e9lN4=
Subject key identifier: 69:E5:4C:AC:04:94:21:F2:C9:CC:6C:89:5C:89:CC:43:5C:5A:02:42
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0911
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aeVMrASUIfLJzGyJXInMQ1xaAkI.roa
Signing time: Tue 29 Sep 2020 09:52:45 +0000
ROA not before: Tue 29 Sep 2020 09:52:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 175.180.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321 (0x911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69E54CAC049421F2C9CC6C895C89CC435C5A0242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c8:21:a9:a3:0a:13:c8:37:b2:f0:94:a5:71:
ff:02:d1:06:56:73:14:73:4b:40:e7:93:c4:50:f2:
82:5f:a7:88:ea:fe:27:76:9a:32:dc:b9:4b:c9:c8:
46:3b:5c:03:68:57:cf:b5:ca:80:8b:65:c2:a7:e8:
5d:a4:ca:00:0e:eb:ca:14:a2:5a:72:27:87:95:95:
64:59:9e:54:0e:d7:27:4f:da:b8:ce:d5:ea:61:85:
98:51:1a:0b:27:f5:8d:66:17:2d:33:03:56:e2:55:
69:c9:66:a0:ad:77:0e:55:38:b1:e9:a5:9c:69:79:
ac:12:34:44:5b:3a:bd:e8:88:12:ec:79:2d:4f:07:
4b:96:64:87:83:23:4c:4d:70:d1:5d:1a:db:fe:cc:
a2:fd:f7:8f:39:0a:53:76:73:06:88:c9:10:d5:f4:
0b:ad:2c:c4:d8:1a:14:2d:2c:dc:bc:a4:6d:79:c8:
99:08:00:49:77:e5:61:1c:40:68:78:7b:b8:1b:dd:
a7:2e:c9:1e:17:91:5c:c2:2c:f6:03:3e:9b:a9:c9:
b8:e9:0a:f0:2e:d1:52:2e:00:d8:43:f9:1b:fb:57:
45:33:fd:3d:11:6c:9e:17:2f:2c:63:48:62:df:a9:
13:7f:aa:5c:fb:47:6b:2d:37:e8:78:e7:d6:9e:d1:
46:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E5:4C:AC:04:94:21:F2:C9:CC:6C:89:5C:89:CC:43:5C:5A:02:42
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aeVMrASUIfLJzGyJXInMQ1xaAkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:16:04:e0:b5:1a:88:4d:47:85:cf:30:04:e0:f1:c4:62:5e:
75:b6:25:08:c1:7a:77:de:a8:c4:32:a8:c7:a0:f6:2d:87:20:
20:c8:5b:48:02:c6:68:41:55:43:16:a6:00:7b:61:52:08:66:
1e:ff:45:f7:2e:fc:d8:20:a1:ea:09:2b:ab:c2:2b:fa:76:18:
f3:f0:2d:c5:7f:21:2a:e1:d9:4b:e1:5d:14:5e:fb:43:4e:48:
64:7e:4f:b1:64:9a:82:c0:cf:a4:5f:55:62:05:a7:3f:6b:62:
1d:f3:38:ec:5c:07:6d:1b:dd:8a:f3:21:ac:5b:6c:c3:b1:d0:
da:1c:8d:d3:b5:c2:15:13:31:a7:d8:0a:b6:17:19:f0:94:b6:
6b:c6:f5:b8:36:9c:8b:64:b5:31:c8:8d:31:83:77:9d:45:64:
3d:fb:38:d2:d8:13:b9:96:f0:31:a4:8a:1c:e4:03:66:a0:c1:
02:3f:71:3a:9c:de:4e:37:08:21:9e:36:5c:43:59:7e:38:e3:
e5:f1:73:51:2b:5c:2a:34:69:8c:28:a5:bd:bf:3a:96:02:02:
94:b1:06:57:32:f2:05:60:51:09:84:14:dc:eb:15:c8:2c:4d:
9a:d2:0a:fd:1c:d7:a6:3b:eb:0d:5d:34:a3:b0:af:70:20:52:
8b:91:2d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org