Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cYvNkIPEF-Z_k2N1HfSgwQemtRY.roa
File: cYvNkIPEF-Z_k2N1HfSgwQemtRY.roa (raw, json)
Hash identifier: x2FpcQTb0kqwOcyo330DzfTbzxmiL4PoG9GW+pm6ziI=
Subject key identifier: 71:8B:CD:90:83:C4:17:E6:7F:93:63:75:1D:F4:A0:C1:07:A6:B5:16
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0884
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cYvNkIPEF-Z_k2N1HfSgwQemtRY.roa
Signing time: Tue 29 Sep 2020 09:52:07 +0000
ROA not before: Tue 29 Sep 2020 09:52:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2180 (0x884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=718BCD9083C417E67F9363751DF4A0C107A6B516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d9:83:5f:45:b3:4c:29:ad:8b:79:f5:c9:8c:
78:f9:d1:60:1a:2f:07:4a:88:a3:15:d9:31:5a:7f:
59:c6:59:11:a8:73:2e:67:ca:a0:10:8d:f6:ce:32:
b3:46:21:b3:0a:a4:05:9a:00:9c:74:5b:f9:9f:05:
03:e8:ed:70:a6:d3:be:29:81:57:cb:e3:7d:45:a2:
cb:68:49:ac:76:65:f2:6b:74:75:2a:9c:1e:fe:b0:
47:e1:73:05:6d:9b:d8:54:38:88:fb:1c:37:cc:ce:
f7:d7:52:ef:13:c7:cc:9c:9b:70:e9:3b:ae:16:f9:
db:da:98:3a:4e:06:69:17:2a:93:4a:dc:8e:6c:aa:
5a:0c:61:74:e5:51:4c:e8:6f:90:ed:21:48:ff:44:
20:bd:c4:d9:c4:8f:9a:84:e0:d2:c0:ec:3d:f1:5d:
7d:a4:cd:2c:0d:da:98:2a:99:a1:be:01:fe:73:ac:
d4:d7:47:f7:b7:3b:c9:f1:4e:73:fa:65:c2:0e:95:
a9:85:d1:1a:b6:4a:65:72:a2:56:7c:0a:64:e5:e7:
c7:7b:cf:72:f4:14:27:25:ef:30:82:1a:09:76:75:
b6:37:a3:a9:9e:ec:56:16:2c:3d:9e:48:68:e7:b3:
ec:c5:3e:fe:39:0f:4d:6e:56:b4:4e:63:fc:f1:65:
81:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8B:CD:90:83:C4:17:E6:7F:93:63:75:1D:F4:A0:C1:07:A6:B5:16
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cYvNkIPEF-Z_k2N1HfSgwQemtRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
94:19:aa:92:7e:32:b7:39:e4:32:a5:1b:c8:ef:4c:3d:1a:8c:
b0:96:5b:c1:9e:6d:6b:6c:71:1e:9c:89:07:78:aa:7f:fb:69:
3a:5a:01:15:79:4a:50:3b:bb:07:84:09:e0:e3:46:62:f0:7a:
29:b0:20:3f:34:12:e3:4f:64:4b:a1:37:b9:09:05:a5:c6:bc:
68:dd:fa:3f:8e:d3:49:fc:a3:f6:39:40:b3:0b:05:dc:e5:50:
5b:01:95:72:97:2c:11:e1:ae:ad:5b:45:3b:f8:43:b8:78:c4:
ee:4c:cf:a2:98:be:88:86:36:22:7a:bc:e1:59:8c:f9:36:19:
83:a0:43:50:f7:1b:1a:18:83:89:f8:cd:d7:2f:6d:9b:aa:8b:
9c:6b:35:f7:30:ea:ca:b1:eb:99:38:29:3c:fa:b0:8b:f9:9f:
97:22:fe:78:02:c9:01:11:90:21:9e:80:3b:86:99:c9:47:52:
21:64:4d:85:e5:79:99:a8:2f:f3:9b:80:b7:8a:52:0e:15:b2:
6f:ff:a7:78:e3:fb:9b:55:fb:ff:00:37:1b:98:23:33:7f:c9:
fa:cf:ab:c1:f8:5e:a8:5c:af:22:91:a1:1e:8b:f6:ff:64:f7:
b8:9f:ed:b2:10:98:7e:71:44:5c:1b:70:6d:c1:dc:70:82:68:
f2:66:79:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org