Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bMaQHx4oTlXVHHIa4Ecei3-JFhI.roa
File: bMaQHx4oTlXVHHIa4Ecei3-JFhI.roa (raw, json)
Hash identifier: LYVnsbWJQAMjZvm/KcaRpa0Qyay8lZA/Rb7MHUg+ekU=
Subject key identifier: 6C:C6:90:1F:1E:28:4E:55:D5:1C:72:1A:E0:47:1E:8B:7F:89:16:12
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0789
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bMaQHx4oTlXVHHIa4Ecei3-JFhI.roa
Signing time: Tue 29 Sep 2020 09:52:50 +0000
ROA not before: Tue 29 Sep 2020 09:52:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1929 (0x789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 09:52:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6CC6901F1E284E55D51C721AE0471E8B7F891612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:09:18:ec:75:c2:c1:1c:ce:2b:dd:e3:d4:77:
55:23:47:2c:ce:df:cc:b4:96:0e:e1:1b:7e:d0:54:
25:b6:9f:b0:b3:b9:be:d1:dd:ed:48:fc:f7:50:5f:
35:0a:76:10:65:53:75:7f:d0:6f:6d:d3:a3:90:b8:
2d:b0:be:1b:2d:58:2b:82:08:9c:bc:1b:33:a3:4e:
4f:c1:d4:c3:f6:b2:c0:00:0c:aa:c9:f0:f0:60:81:
e7:d0:14:9f:3b:de:1c:9c:5b:b1:fb:11:6f:23:bc:
bc:34:34:ed:aa:6c:d8:4f:27:ab:b1:76:b3:15:fd:
3f:a0:93:2a:16:c9:41:3e:4a:89:c3:d8:f9:6f:bf:
34:8d:15:f8:cb:34:a3:38:89:ed:af:08:3b:c6:c7:
5d:37:99:c0:f2:9e:69:43:b0:fa:8e:72:f4:9d:bb:
3b:65:fe:10:62:fd:6c:02:13:3e:04:dd:ca:3e:90:
65:bc:df:14:54:5c:bb:de:26:e0:01:29:45:ac:d4:
4d:66:2f:b1:d4:75:fb:c9:47:72:c3:ad:30:fc:66:
d4:2d:fa:9b:0b:b8:81:25:5c:49:fb:74:78:4f:0f:
f5:9e:c7:6c:4d:e1:69:26:73:a9:09:c8:dc:8c:46:
5d:c1:80:42:9d:6f:34:5c:f4:2c:04:05:46:70:6c:
82:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C6:90:1F:1E:28:4E:55:D5:1C:72:1A:E0:47:1E:8B:7F:89:16:12
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bMaQHx4oTlXVHHIa4Ecei3-JFhI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
32:66:8f:05:40:a6:a8:9a:4d:7d:1c:f8:6b:fe:95:63:fa:24:
b1:5d:6d:d2:18:60:6a:f3:b3:92:82:ce:c6:3a:12:80:c3:ab:
b9:b3:f0:0d:c7:28:74:ac:0f:3f:94:c0:62:61:07:55:30:d0:
1b:b0:b3:bd:e0:b6:c4:8e:86:36:01:c5:b0:84:64:0d:34:02:
61:a9:d8:72:ff:31:0b:9c:4c:3c:b6:fc:05:1e:b3:51:7c:d2:
63:60:2d:cf:9d:61:b8:a4:70:2b:56:da:13:16:40:ea:d8:31:
70:68:7f:22:30:6f:b3:15:a9:87:f9:06:9c:b6:c1:26:95:26:
7a:d8:94:6e:e7:61:ac:44:38:9a:a8:cf:de:cc:03:ae:b3:38:
cc:20:e8:b3:14:73:e2:ab:43:29:42:a7:3e:80:76:62:87:4a:
75:6d:42:9c:98:9c:76:af:10:db:76:af:a4:b1:1d:ed:c6:09:
61:1d:fe:13:d9:d5:b8:fb:95:ce:9e:45:19:4c:50:7e:9c:8a:
15:98:1c:30:90:d6:f1:1f:b8:f7:64:31:9c:a0:99:dc:c9:57:
65:a2:b3:64:5e:7a:c2:b4:9f:f0:56:8b:b3:f7:1d:b5:c5:14:
19:77:7f:61:12:69:b0:e0:0f:36:9b:8c:4e:77:05:b8:55:c5:
7f:8d:69:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org