Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1Wj3VS8ulZh3G_TTJBxavzpl-Q.roa
File: c1Wj3VS8ulZh3G_TTJBxavzpl-Q.roa (raw, json)
Hash identifier: FVFSix9d61zqPnXmw0RXLAmpBQG87QECD+U9zi52z+s=
Subject key identifier: 73:55:A3:DD:54:BC:BA:56:61:DC:6F:D3:4C:90:71:6A:FC:E9:97:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 086D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1Wj3VS8ulZh3G_TTJBxavzpl-Q.roa
Signing time: Tue 29 Sep 2020 09:52:01 +0000
ROA not before: Tue 29 Sep 2020 09:52:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 60.245.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2157 (0x86d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7355A3DD54BCBA5661DC6FD34C90716AFCE997E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6d:91:cf:7c:d3:32:99:2a:55:30:f6:dc:2a:
8a:86:2e:68:02:53:2f:7a:04:00:31:75:42:e2:4c:
1f:1b:ff:a1:15:82:b9:5e:7d:b1:3c:14:a2:d5:83:
7a:db:6c:05:31:4a:56:9e:f7:80:43:56:b1:ad:62:
c5:a8:0c:5a:d4:0b:96:23:7e:64:a5:fe:3e:bf:f0:
78:52:5d:26:2e:ad:62:92:06:df:f5:d8:53:c0:4d:
3e:22:18:df:4a:c7:16:eb:a4:94:f9:a8:c9:68:4b:
87:cd:28:d7:76:32:e0:5b:3a:9f:c8:95:22:5d:96:
9b:e1:e0:b7:c5:79:82:52:e0:db:d8:b4:65:c1:bb:
b3:b4:32:d9:1d:2b:fc:4b:ac:e7:8d:03:fa:a3:7f:
63:77:c0:ed:86:7b:e7:26:4d:af:a4:76:72:15:64:
af:d5:c2:6c:bb:54:18:14:b4:a8:11:81:0c:1b:ee:
3c:9b:e2:fa:35:b0:2d:32:06:04:b2:2d:cb:a2:ac:
30:1f:49:64:98:65:bf:52:f3:71:a5:86:63:a7:96:
b0:37:f4:72:05:4a:a0:89:83:8e:f3:d9:4c:6c:4f:
3b:e2:0c:9c:b9:e0:5d:03:27:f3:73:ca:3c:3a:f8:
f7:0c:1e:07:f0:4c:be:f7:7a:0c:c6:38:41:04:8d:
20:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:55:A3:DD:54:BC:BA:56:61:DC:6F:D3:4C:90:71:6A:FC:E9:97:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/c1Wj3VS8ulZh3G_TTJBxavzpl-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.120.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:f6:61:43:e7:55:31:e1:ea:ab:2d:40:df:67:18:8c:dc:ef:
dd:58:5f:73:a5:67:7c:0f:0e:67:1e:bd:2e:27:d4:d1:c3:f4:
5a:33:f3:97:38:1e:3a:ce:ae:7b:c3:4f:48:3d:9a:7e:70:1a:
b3:58:ea:4b:dd:1b:d0:7e:ed:60:72:a1:32:d7:76:c3:d9:4a:
3b:cc:65:a1:8a:9e:68:58:0e:43:03:f5:12:fb:2c:af:bf:67:
a2:b7:e4:b8:26:66:97:b9:ed:64:51:74:d7:05:2c:5c:35:48:
ac:64:55:28:a9:22:5d:83:5b:3c:3d:b1:a4:c4:b8:23:76:41:
26:e7:9f:b2:5c:c6:cd:04:46:eb:70:a5:5f:32:43:cd:4f:cd:
db:79:3c:63:ba:77:1a:18:ca:49:aa:d7:80:7c:fe:e7:ff:8a:
90:0e:df:28:3f:98:3f:f6:7c:dd:71:e5:d2:d3:c6:0c:53:3b:
6d:6d:d8:28:dd:a9:e3:cc:f3:72:06:45:3d:39:59:cf:31:6d:
aa:58:b7:b2:5d:ff:37:df:26:b0:cf:2c:d0:24:c0:b6:a1:cd:
f9:f9:6f:9c:40:91:1c:47:db:ef:c4:b4:aa:ec:de:b1:37:97:
74:7b:37:b0:9e:32:16:01:25:10:cd:db:6d:08:78:b2:86:12:
8a:26:65:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org