Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/c0kqS3WShm_p3Ft6-0b2lllGKDc.roa
File: c0kqS3WShm_p3Ft6-0b2lllGKDc.roa (raw, json)
Hash identifier: piDgwSPMFG+pApCa6uqYOnxG8lqKdp/JeHvJ9LNtWbk=
Subject key identifier: 73:49:2A:4B:75:92:86:6F:E9:DC:5B:7A:FB:46:F6:96:59:46:28:37
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BC1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c0kqS3WShm_p3Ft6-0b2lllGKDc.roa
Signing time: Sun 07 Feb 2021 06:33:52 +0000
ROA not before: Sun 07 Feb 2021 06:33:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:33:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73492A4B7592866FE9DC5B7AFB46F69659462837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e1:43:0d:2e:0e:8f:c2:71:59:f8:fa:10:fe:
1c:a1:0e:17:5b:e0:e4:ef:c9:33:f9:18:c7:c7:9e:
ee:8f:bd:4e:61:ea:73:52:8a:57:ba:d6:dd:4a:6d:
54:db:02:ff:4a:aa:75:f0:fd:dc:88:87:10:54:3a:
63:79:bd:7d:a9:8e:04:e8:f7:c1:7a:50:c8:15:5f:
c9:9e:27:99:5b:c5:aa:1f:be:d3:69:d6:8a:db:69:
6c:05:f9:0f:fc:a3:38:69:22:c8:d5:da:9c:96:53:
b1:b9:1d:ee:87:19:e9:77:a5:3c:2d:9e:8d:7e:dc:
83:bf:f1:8b:9e:c8:38:cb:9c:69:09:ec:7d:55:27:
40:6b:9d:da:7d:40:00:b3:4f:12:10:cc:47:02:c8:
71:31:98:6f:0c:7e:b6:1c:75:5d:78:01:ee:e8:b1:
3b:13:c5:02:8f:15:a3:fd:03:46:78:05:85:84:f4:
7a:1e:d7:a0:db:1b:17:7c:56:2f:0b:fd:21:e8:48:
21:44:87:d3:48:1f:89:59:be:bf:d3:e2:b1:a9:1b:
95:31:eb:d5:54:11:8d:6e:c7:30:26:64:06:71:6e:
58:08:f3:52:8d:98:e8:53:b3:07:47:1e:e2:3c:73:
f1:34:32:76:79:cf:e6:ae:e8:4a:5a:26:b8:df:4a:
8d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:49:2A:4B:75:92:86:6F:E9:DC:5B:7A:FB:46:F6:96:59:46:28:37
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c0kqS3WShm_p3Ft6-0b2lllGKDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2a:5b:ff:3c:e6:e6:3b:7e:7d:86:cf:49:76:9a:97:e3:a6:35:
31:a4:39:e9:18:99:4a:dd:9c:ed:a6:c9:65:db:46:bd:ca:2f:
8d:8b:9c:0c:e2:d9:9c:50:66:f7:95:d3:09:c0:72:82:f2:ed:
49:63:d8:8f:0e:ac:a4:8f:55:54:0d:09:13:a4:51:be:c7:11:
f1:96:a9:9e:ba:3a:1e:eb:be:50:70:92:e7:55:6a:37:28:0d:
4e:b2:9d:65:94:df:b6:8f:58:61:bb:6b:b7:f4:1f:e6:df:c2:
27:6f:21:5a:4e:fa:8a:8b:c3:fd:f2:b0:b1:18:dd:b4:6b:e5:
b5:28:c3:ea:c6:b2:87:ae:b6:9f:e0:01:5c:4b:43:9a:14:ed:
09:fe:0a:2e:ad:1b:4f:51:1b:3a:ad:18:ae:4b:a0:49:32:77:
5d:c1:a7:51:e8:61:f1:fb:2f:98:0f:d0:48:1d:31:bf:a1:4e:
02:12:32:42:4e:7e:ba:69:19:ac:f2:31:6b:c9:b6:40:b4:91:
42:0c:74:0d:c4:ea:c8:42:c2:cb:a2:ea:9b:bc:09:f7:49:2f:
03:81:f5:fe:f2:ae:34:d4:28:7e:d3:82:8b:ee:c4:fc:46:4c:
c0:0f:4c:e8:a2:5c:f7:a7:87:7b:f7:71:c4:4a:f0:a8:be:95:
41:28:ac:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org