Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/c-JRpa9GPpgrcnm1hDtUkhOjp4E.roa
File: c-JRpa9GPpgrcnm1hDtUkhOjp4E.roa (raw, json)
Hash identifier: XmaGz1oMC32q248qV4XH+steBDUEVqgfARgim/OsAEE=
Subject key identifier: 73:E2:51:A5:AF:46:3E:98:2B:72:79:B5:84:3B:54:92:13:A3:A7:81
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CC1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c-JRpa9GPpgrcnm1hDtUkhOjp4E.roa
Signing time: Sun 07 Feb 2021 11:44:59 +0000
ROA not before: Sun 07 Feb 2021 11:44:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 220.229.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3265 (0xcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73E251A5AF463E982B7279B5843B549213A3A781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a3:bf:4f:7e:1e:67:11:c4:ce:67:47:14:f2:
e8:2d:0f:e3:eb:98:12:d8:ea:09:1b:17:b4:c1:12:
3c:1e:0b:99:c8:d4:e0:d2:76:a2:40:12:89:80:98:
38:df:a5:1b:1c:b7:21:4c:4b:09:0d:c4:83:62:56:
4e:ec:cd:22:b1:1f:7d:77:14:78:45:e6:ab:51:b8:
a5:ae:c4:2b:bf:7a:6e:3f:db:83:78:c0:1a:af:28:
b5:1e:12:25:a2:9d:c5:70:a0:c5:48:6a:bf:e1:ad:
9d:5c:92:38:71:70:38:25:a5:56:95:d0:58:14:b2:
5a:ec:75:99:df:62:64:26:93:17:d7:39:1d:e4:1e:
35:bc:95:59:d1:0f:43:e8:6a:83:ba:c1:6a:18:49:
fc:a7:e7:e7:34:99:b3:23:d0:45:fb:61:5a:7e:47:
c2:67:74:28:80:33:a5:40:58:e6:d1:4b:23:68:0d:
fb:48:4f:1a:6d:d3:af:f3:60:e0:d3:81:56:10:f5:
92:42:29:7c:e2:43:79:de:23:89:e4:0c:22:43:2b:
0d:4b:e6:48:34:f3:14:fc:fe:53:ff:54:dd:f3:35:
25:9d:6c:09:b0:ac:9b:6e:f7:3f:e2:6a:43:d4:33:
00:ab:a8:ad:4e:d4:2a:3d:c1:23:54:e1:08:9f:90:
d9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E2:51:A5:AF:46:3E:98:2B:72:79:B5:84:3B:54:92:13:A3:A7:81
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c-JRpa9GPpgrcnm1hDtUkhOjp4E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.66.0/23
Signature Algorithm: sha256WithRSAEncryption
45:4a:98:60:e1:f5:8a:56:c1:f0:33:45:d3:d1:19:c6:1c:71:
9a:b8:9b:b6:19:16:52:26:96:31:ec:84:d3:e8:36:e6:34:86:
ff:2d:d3:38:7c:a9:a6:7e:26:16:d5:2d:79:f5:9f:86:5c:a0:
36:cb:b7:69:42:0a:f3:48:63:ca:21:a1:79:49:94:27:d5:23:
d3:18:25:bf:f8:d9:ed:87:a8:81:05:e2:c4:7c:5c:20:31:5f:
91:e8:f4:9c:c8:1e:7e:a7:2a:43:c6:d9:cb:78:a4:01:fe:fe:
9d:d5:dc:28:5f:02:ca:7b:0f:b1:29:4d:da:e1:e5:c4:61:ba:
c3:dc:46:a9:0a:92:c3:9f:12:bd:a2:02:4b:96:72:e7:85:74:
d8:eb:6b:7e:35:13:be:70:2b:17:f0:6e:4e:4b:92:c2:73:50:
df:fb:79:32:5b:9b:dc:8b:cd:0f:26:db:62:2f:82:58:a5:0f:
8f:d1:db:9e:88:47:ca:23:44:e5:ba:02:d5:2a:b5:2a:60:a5:
c0:cf:53:dc:39:96:f1:ab:d7:25:07:e0:12:9c:3c:86:7c:b2:
a1:f4:b9:59:5a:9b:cc:a2:7f:49:dd:eb:61:21:c8:2b:c9:8b:
50:47:6b:7a:2a:ac:95:20:cf:0b:2f:3c:4e:1b:a0:2e:94:ad:
36:62:91:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org