Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bha4GrqFyYtyOcPGJmnpJX9-BS8.roa
File: bha4GrqFyYtyOcPGJmnpJX9-BS8.roa (raw, json)
Hash identifier: WMKKMpZY8zupsbMFZ9QQJHRiCUPi7C+PmUtKsTPiYlI=
Subject key identifier: 6E:16:B8:1A:BA:85:C9:8B:72:39:C3:C6:26:69:E9:25:7F:7E:05:2F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CD3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bha4GrqFyYtyOcPGJmnpJX9-BS8.roa
Signing time: Sun 07 Feb 2021 11:45:26 +0000
ROA not before: Sun 07 Feb 2021 11:45:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3283 (0xcd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E16B81ABA85C98B7239C3C62669E9257F7E052F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ac:d2:92:98:0b:2b:a9:c7:f9:df:4f:59:8a:
41:3d:12:0c:ba:08:93:c8:7f:a2:ee:9b:12:e0:cc:
b1:bc:c8:d4:3b:00:70:f6:89:53:a3:e3:19:aa:4c:
56:49:0b:d1:91:f9:a5:e7:78:01:79:a8:1e:b5:1b:
06:df:ec:2b:fa:32:af:42:9d:c6:26:76:29:fb:71:
1c:c3:f4:8d:1d:07:f9:95:06:3f:4a:28:8c:d0:8b:
2b:f1:48:e5:a2:fd:bc:5f:b6:98:21:86:51:a9:41:
cc:cc:9a:c4:7d:bd:14:35:be:81:c9:72:36:1c:41:
3c:81:ad:32:d1:d5:50:04:85:8f:de:00:0c:4e:e6:
ff:ef:b2:f7:69:64:61:93:dd:43:b5:50:6c:1f:d5:
da:04:d5:b3:8a:8f:9a:a9:b0:f4:14:9d:af:4f:ae:
57:99:08:ee:75:fa:da:16:b0:53:e1:96:4f:e9:65:
91:fb:a4:d8:f3:30:46:f4:b4:0b:58:e3:f2:11:ae:
11:e2:06:9e:51:4a:41:c3:09:71:69:27:24:05:f4:
f9:57:cd:d3:a3:eb:6d:10:57:f9:ff:d0:36:f6:e7:
d5:51:aa:93:e7:bf:1d:46:2b:67:26:33:17:fa:fb:
59:33:bb:fd:52:c6:16:ba:b1:dd:f5:93:c9:61:ed:
4c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:16:B8:1A:BA:85:C9:8B:72:39:C3:C6:26:69:E9:25:7F:7E:05:2F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bha4GrqFyYtyOcPGJmnpJX9-BS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.160.0/19
Signature Algorithm: sha256WithRSAEncryption
5b:53:63:5f:4e:e8:ee:82:73:25:33:3a:87:8b:e5:6c:fe:a3:
f1:e8:b9:eb:91:86:a0:51:0c:5f:c6:9f:cd:82:cb:2c:b7:b5:
85:c3:69:83:c8:85:cd:5f:c1:9a:41:f3:df:cc:02:5b:a3:6c:
f5:08:98:3f:9b:62:f9:3d:76:b7:36:52:6c:ee:44:0e:1c:10:
da:eb:81:02:c8:dd:a7:d6:fd:81:f4:e9:1c:3c:59:ce:e7:5f:
3f:c5:ff:fe:8c:c1:0b:3f:e9:21:9b:bc:63:eb:c9:6e:f6:27:
21:29:19:eb:8b:4c:f1:34:58:6c:60:a0:b2:a9:7f:55:74:76:
42:55:97:d7:e2:af:0f:38:bd:21:ad:66:49:2c:bb:fb:ef:f1:
9b:61:3b:99:0f:c3:d1:6d:d0:b1:77:7d:33:46:3d:57:72:31:
53:76:b3:d6:b0:70:5e:9d:21:36:b1:60:99:99:60:ae:18:34:
db:06:e3:ee:0b:2f:12:ae:41:48:e2:59:0b:92:96:52:3e:d8:
eb:01:13:18:7f:cc:3e:b4:f8:1a:0e:5b:97:c5:b0:dc:80:30:
65:68:7a:6e:b3:a8:64:44:18:96:01:ee:75:5b:81:8b:7e:e6:
10:d1:bc:b1:0e:a1:d5:69:87:a0:67:07:03:7c:80:46:b5:50:
7a:99:bc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org