Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cb5joDwAsjTZ4VXAIg0cKhLlhE8.roa
File: cb5joDwAsjTZ4VXAIg0cKhLlhE8.roa (raw, json)
Hash identifier: Q937DwKf1rIWS2OU3ihw8AoSMwBTACnEaHo3IAznmm4=
Subject key identifier: 71:BE:63:A0:3C:00:B2:34:D9:E1:55:C0:22:0D:1C:2A:12:E5:84:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0901
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cb5joDwAsjTZ4VXAIg0cKhLlhE8.roa
Signing time: Tue 29 Sep 2020 09:52:41 +0000
ROA not before: Tue 29 Sep 2020 09:52:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.78.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305 (0x901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71BE63A03C00B234D9E155C0220D1C2A12E5844F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c5:ce:4e:f5:aa:ff:29:74:39:ec:aa:a2:d8:
a6:8f:90:22:ff:f1:a4:77:8d:b7:0a:bc:40:e6:a8:
bf:17:3a:92:3d:7d:b0:9c:81:c2:e9:db:9f:ca:f8:
5b:a1:46:8a:af:56:2a:08:14:76:b6:cf:cd:27:51:
16:54:e8:14:e9:d9:5c:15:8d:58:fd:15:d2:a4:30:
7a:bb:47:ce:80:9a:d0:55:59:04:9b:8e:2a:ea:30:
a2:1e:22:2a:f1:a7:d7:5b:c6:01:6f:8c:aa:42:1f:
5c:f6:63:96:66:aa:72:9c:c3:0c:fc:eb:4d:e9:3a:
4b:2e:f4:2b:cd:f2:f7:cc:05:f5:c9:2f:92:7a:11:
bd:a3:b3:94:35:77:60:ea:c3:18:75:10:b3:51:85:
ab:db:86:d3:b0:bd:0c:36:1c:b8:08:4a:b6:80:0f:
6b:64:76:48:06:48:ef:63:6c:0d:c6:0c:06:b6:58:
ab:c9:d7:b8:a8:ce:e4:e7:47:8a:cc:5d:87:93:ef:
67:7a:8d:bb:8e:a6:51:aa:50:2b:05:49:8a:34:c8:
94:12:c5:20:fc:e4:8a:99:84:85:63:41:a8:b6:2a:
bb:a9:74:ca:aa:f3:99:7e:9a:f1:1d:e4:82:34:cc:
76:01:10:92:f7:d7:11:c7:b2:a5:95:5d:14:45:92:
ec:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BE:63:A0:3C:00:B2:34:D9:E1:55:C0:22:0D:1C:2A:12:E5:84:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cb5joDwAsjTZ4VXAIg0cKhLlhE8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:e7:56:fd:a3:be:80:49:1e:fb:c9:85:00:9e:98:ba:09:a1:
e8:89:2f:36:86:47:5c:ad:42:7e:23:77:74:32:ce:b8:02:86:
79:ed:fa:2f:c7:8a:fd:26:ce:ed:d7:56:c9:f2:b6:43:8a:05:
92:25:f8:4b:7f:6d:86:1a:b9:50:4d:e8:90:27:66:31:72:01:
29:74:e3:0f:94:86:49:15:0b:4a:d9:22:1f:ef:38:e8:60:56:
85:58:6b:8e:17:50:ce:60:92:1d:c4:24:b8:dc:a8:61:e4:00:
80:55:23:e0:3a:8d:f4:c0:20:17:45:34:4b:e8:59:fc:aa:46:
5b:dd:d3:b8:ee:7b:b4:5d:00:f7:09:69:da:3a:a3:61:fb:41:
35:a3:85:2f:18:97:6e:fe:55:ab:23:e1:c8:0d:79:73:64:b1:
44:b7:b7:21:a2:40:9b:27:99:60:a6:69:f4:3b:83:96:73:aa:
12:68:b5:75:5b:36:c6:ef:06:c8:3e:f4:74:75:a2:58:40:e3:
7b:83:c7:e6:f6:bc:64:e9:51:b7:c1:1a:f8:e2:10:96:92:0e:
99:a7:f9:98:ab:d1:62:e0:55:56:eb:28:d9:a1:c7:1d:a5:9d:
99:2a:e0:b5:ae:64:b1:24:ae:45:25:ef:4e:2f:42:83:08:e8:
4b:4e:1f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org