Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bgSNl8SEaiF_5-oaxuCUIaY71E0.roa
File: bgSNl8SEaiF_5-oaxuCUIaY71E0.roa (raw, json)
Hash identifier: lBjj3TD8r2V13DvFPU2qgH1C9rbJyUooH7vM8qRYT88=
Subject key identifier: 6E:04:8D:97:C4:84:6A:21:7F:E7:EA:1A:C6:E0:94:21:A6:3B:D4:4D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 09ED
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bgSNl8SEaiF_5-oaxuCUIaY71E0.roa
Signing time: Tue 10 Nov 2020 08:16:12 +0000
ROA not before: Tue 10 Nov 2020 08:16:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2541 (0x9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Nov 10 08:16:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E048D97C4846A217FE7EA1AC6E09421A63BD44D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:dc:bd:da:cd:17:c5:83:8e:d2:84:33:66:
ff:40:bd:f2:81:1e:c3:1e:82:13:13:57:21:3e:f4:
20:43:69:1d:df:90:9b:a0:e8:9e:6f:6e:2e:82:96:
39:2e:dd:3e:d6:a6:97:63:5a:4b:4c:75:24:e2:99:
4d:07:bf:4d:7e:3f:bd:0d:f8:37:0e:76:e3:60:98:
05:7a:f2:a7:f1:a9:47:92:19:1c:75:04:71:0e:b0:
51:68:70:44:c7:d3:a6:71:7d:d5:c6:5b:7d:7f:3e:
96:80:96:72:5e:71:3d:c5:d4:76:c8:71:f0:54:62:
a2:e7:b5:0e:49:8b:c0:d5:46:a5:a3:39:ca:d6:36:
4f:68:08:a0:07:d0:5e:e6:39:d0:08:eb:cb:c9:44:
c5:36:2d:7d:d7:d0:e4:32:f8:10:4a:54:5b:cf:75:
6e:ae:81:80:f0:cc:a7:54:84:fc:3e:6a:ea:6d:a0:
8b:9b:29:be:0a:b7:c2:9b:d1:be:ae:ea:e5:5c:c0:
ef:cd:55:c7:50:a6:a2:6f:18:01:12:d3:a0:f7:9d:
6e:ce:6e:88:f1:c6:87:73:86:81:e1:9d:5f:6a:74:
c3:3a:77:b1:52:9f:18:9d:4b:8e:8a:bc:b3:65:09:
f2:f9:67:2f:7f:c9:19:16:d6:66:6f:30:8c:47:aa:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:04:8D:97:C4:84:6A:21:7F:E7:EA:1A:C6:E0:94:21:A6:3B:D4:4D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bgSNl8SEaiF_5-oaxuCUIaY71E0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
7e:3a:ab:5c:18:7e:50:79:7e:26:a2:28:8d:2d:8d:08:76:d0:
12:88:9f:d5:dc:fa:6b:a9:39:1d:79:f0:68:d1:4a:57:0b:f9:
d7:48:74:2a:a0:78:58:4a:fc:1b:be:6c:04:9e:f7:25:ae:e8:
2f:b4:9b:7e:c7:6f:74:8b:b8:c0:57:2e:9a:76:6b:3b:aa:94:
b7:fc:61:eb:1b:e8:67:d0:e4:08:9e:2f:29:c9:5a:f5:62:fc:
b9:b0:de:1a:ba:c2:6d:f7:02:5e:55:43:52:93:0a:07:08:7e:
3d:ec:d2:1d:3e:b6:03:58:0c:bf:8a:cb:fe:2c:48:20:72:ff:
27:ab:70:79:a9:b6:f8:6f:ae:f5:ab:73:13:da:f5:56:4d:1d:
1f:19:bf:a3:a5:9d:f7:79:9b:68:61:67:18:0a:86:fd:7c:3f:
c1:d1:f3:c2:7e:79:58:5a:bf:23:78:5f:3b:33:02:ae:2b:d6:
13:0e:50:7c:bd:08:30:6a:bf:12:97:be:51:92:52:ee:c9:5c:
b8:8d:80:fa:ed:ea:0a:75:0f:bf:6e:32:f8:f2:fa:ba:1e:4b:
c7:66:76:76:87:92:84:a6:fc:8c:9e:0e:43:4f:54:9c:23:a0:
20:8b:8a:f1:9a:57:69:c4:7f:0f:fe:d3:20:5e:e2:0f:06:76:
4d:b8:a9:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org