Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cmyoVKouqygtLFod_jcMhgkuX9U.roa
File: cmyoVKouqygtLFod_jcMhgkuX9U.roa (raw, json)
Hash identifier: L6qGjzCP7KEcqloRYZLaVCc13CD1F3ZEItBC7R2ttlo=
Subject key identifier: 72:6C:A8:54:AA:2E:AB:28:2D:2C:5A:1D:FE:37:0C:86:09:2E:5F:D5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0895
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cmyoVKouqygtLFod_jcMhgkuX9U.roa
Signing time: Tue 29 Sep 2020 09:52:10 +0000
ROA not before: Tue 29 Sep 2020 09:52:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2197 (0x895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=726CA854AA2EAB282D2C5A1DFE370C86092E5FD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:81:db:36:3f:4e:0c:1b:90:52:6a:30:dd:
68:77:31:54:da:34:f9:41:4e:13:b6:35:e9:e8:81:
7c:a6:e0:dc:ce:d6:fb:2e:be:fa:3e:cc:0d:87:1c:
a6:5e:6e:37:d6:16:d3:3d:6d:07:66:8e:c4:08:70:
d5:b0:d3:c5:c9:a5:50:98:96:1b:5f:bc:35:20:ef:
72:02:c4:a3:96:fc:81:06:29:f9:c8:a8:5d:a7:13:
64:34:51:8b:1e:c5:aa:11:21:0d:79:68:a5:e3:65:
6c:e9:41:cd:2c:77:27:1a:19:e0:5d:22:30:d0:b2:
3b:24:96:d7:3d:bb:05:9a:52:ce:68:b8:8d:df:eb:
41:81:4d:fd:25:82:44:eb:81:87:98:ad:eb:26:59:
ed:18:f3:13:c5:b4:2e:b1:00:9f:fe:46:75:a1:db:
69:02:21:21:48:c1:76:16:78:ae:31:da:bc:8e:03:
2a:75:d8:8b:3b:73:2a:13:89:ac:50:8a:33:8b:d3:
95:99:49:94:42:3a:57:d8:b3:4e:94:a5:a0:87:d5:
98:00:dd:57:f8:40:85:db:c7:f8:2b:8f:e7:cb:67:
f9:2d:43:6d:6c:30:fb:b5:64:e1:59:36:50:74:5c:
8c:01:fc:59:78:ca:60:55:17:39:e6:af:ce:f8:e6:
fa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6C:A8:54:AA:2E:AB:28:2D:2C:5A:1D:FE:37:0C:86:09:2E:5F:D5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cmyoVKouqygtLFod_jcMhgkuX9U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
82:95:48:20:34:6f:9f:a8:1d:db:84:9c:ae:86:17:f4:23:61:
db:dc:27:b4:9b:7e:8e:2a:3d:16:3e:be:ac:d2:90:f2:4c:2d:
97:e7:d7:85:ae:fc:6b:84:96:08:b6:8e:3a:d5:7a:b5:29:d2:
c3:eb:8a:2f:86:e2:6c:51:65:94:f5:80:ec:d1:c6:a1:5a:31:
86:da:58:41:95:00:c9:d5:6f:71:f9:05:d1:28:b3:a8:7b:62:
b4:28:29:93:ac:4d:12:65:9b:a4:5c:52:0c:91:01:22:82:e8:
63:e3:46:bf:4a:96:2b:31:63:ef:59:ee:82:5f:9a:c8:1e:3e:
ab:57:ef:ca:fc:88:b6:61:ab:2f:7a:9a:84:7b:0d:88:8a:8a:
4d:86:3a:b4:c2:e7:dc:bb:70:c3:ba:0d:66:2a:79:1c:03:b4:
4f:bb:44:8a:d1:52:ad:4e:8e:5b:a0:f7:4a:70:4e:58:b1:01:
a1:4d:b3:f3:ac:d2:ff:c1:bb:f6:57:32:9b:dd:fe:13:b2:7d:
3b:95:7c:cc:c5:e7:51:28:50:6c:ba:13:86:5f:4a:ad:66:b3:
77:b8:21:b1:f1:ef:86:88:01:fe:6d:c7:a4:52:d5:44:f4:17:
00:63:b3:93:02:bf:4e:d5:b8:cb:9e:93:46:98:de:ac:93:15:
2c:63:87:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org