Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/arQYpUpVsC-HMcdKKZC-7wGvR-M.roa
File: arQYpUpVsC-HMcdKKZC-7wGvR-M.roa (raw, json)
Hash identifier: 9CBGFKf1+enm+amHUMzI/PtRM5ct4f9kIevuO2gjPx4=
Subject key identifier: 6A:B4:18:A5:4A:55:B0:2F:87:31:C7:4A:29:90:BE:EF:01:AF:47:E3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E8A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/arQYpUpVsC-HMcdKKZC-7wGvR-M.roa
Signing time: Wed 29 Sep 2021 02:43:43 +0000
ROA not before: Wed 29 Sep 2021 02:43:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 218.210.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3722 (0xe8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6AB418A54A55B02F8731C74A2990BEEF01AF47E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c7:7a:5e:f5:fe:55:56:05:83:af:01:19:7d:
fa:d3:d6:e8:37:d1:72:34:77:6a:5b:ae:3d:dd:88:
bc:8d:88:1b:3e:08:ec:b0:64:92:31:6d:6e:0a:38:
4e:b6:21:25:d8:ec:e1:cf:30:ab:6c:fd:91:4b:78:
39:af:c4:12:24:c3:49:a9:43:94:19:d0:d5:a0:69:
47:52:cd:53:76:af:b0:aa:5f:a3:4a:fc:a9:90:42:
d7:fc:58:27:63:44:44:37:cf:6e:f2:bd:1d:f6:4d:
60:e5:6e:64:d9:6a:e9:2a:0c:47:7d:28:ed:89:90:
1d:89:f6:4a:71:ea:74:34:54:af:8b:6e:e2:ac:77:
9d:18:14:63:5c:c5:b1:bd:cb:a2:82:b3:08:7c:31:
74:6b:e6:84:31:c1:8e:ac:cc:ef:7f:50:86:e4:45:
76:21:fd:f3:f8:bb:50:28:29:5d:b7:eb:67:b9:fa:
13:75:73:77:c2:6b:41:b4:4c:7a:94:a9:6f:c3:cf:
12:26:64:59:a5:d1:64:cf:fc:b1:60:75:a9:08:a1:
f9:7d:33:9c:b2:cb:84:8d:34:70:6a:be:70:24:b6:
c1:89:b8:19:2a:2c:f1:b1:ae:e1:bd:ef:a4:ba:d6:
5d:c0:1d:75:32:74:a6:f6:d7:0e:1b:23:c8:af:90:
b9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B4:18:A5:4A:55:B0:2F:87:31:C7:4A:29:90:BE:EF:01:AF:47:E3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/arQYpUpVsC-HMcdKKZC-7wGvR-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.32.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:2b:4e:22:33:50:72:e2:c7:27:34:fe:94:41:e7:29:ab:27:
f1:3f:22:0f:ce:ce:a4:9d:73:0a:2c:04:1e:ab:fb:7f:2f:52:
f2:20:12:aa:2c:73:ca:ac:00:5b:07:c7:a5:e7:9e:2b:5d:de:
6d:b1:d4:c9:42:3b:22:58:f7:c0:56:8b:9f:1e:a6:56:77:92:
2e:fa:53:27:e6:78:a8:53:6e:55:38:7c:6c:dd:5e:84:d2:65:
77:4d:f5:af:0d:23:4f:6b:6a:0a:47:e0:90:6e:d2:b1:3f:0c:
8a:5b:30:68:92:b3:76:e5:2c:d3:c4:24:ce:52:0e:32:fc:cd:
0f:34:af:61:76:e9:c0:d6:eb:b9:de:76:82:ec:d4:be:34:20:
0e:02:6f:39:ff:bc:3b:22:6c:ac:29:05:0c:fd:0b:3d:a9:07:
7f:a5:11:6e:66:60:de:84:b1:7e:4b:da:ba:00:5d:ca:3e:bc:
f4:df:b1:53:d8:5c:6d:e5:6c:6c:3e:ea:a1:29:b4:d1:d5:85:
b4:21:5f:50:28:0e:a5:27:24:03:1b:98:b9:91:c6:47:cf:1b:
b7:b0:1c:a1:73:1c:06:bd:08:66:88:17:27:68:18:9c:a0:72:
8d:96:42:81:b3:30:4e:93:bf:c6:d8:eb:80:2a:f4:15:90:01:
3f:5f:d2:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org