Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dvzvJi1fiq_Qrn4PX5ET8nt1yFU.roa
File: dvzvJi1fiq_Qrn4PX5ET8nt1yFU.roa (raw, json)
Hash identifier: aHrw1VxcEaSaoL4BRofi4SJTVmU8gRKkRBusI0qS/Mc=
Subject key identifier: 76:FC:EF:26:2D:5F:8A:AF:D0:AE:7E:0F:5F:91:13:F2:7B:75:C8:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EA9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dvzvJi1fiq_Qrn4PX5ET8nt1yFU.roa
Signing time: Wed 29 Sep 2021 02:43:49 +0000
ROA not before: Wed 29 Sep 2021 02:43:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3753 (0xea9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76FCEF262D5F8AAFD0AE7E0F5F9113F27B75C855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2f:9d:85:3f:01:5b:d8:be:70:2b:84:ae:97:
7c:1e:23:1d:3f:55:d5:a5:14:e0:3a:18:0c:23:fb:
1f:86:ba:e7:b5:7e:ba:b4:58:27:26:7b:b2:25:e0:
5d:77:55:f2:95:fb:dc:b6:5b:e8:9d:94:cd:93:38:
8a:7c:73:c7:bd:7a:9c:32:b3:ea:8e:f6:d4:7f:fe:
01:47:4d:54:6c:d6:6c:15:63:f1:ad:19:18:84:60:
01:64:cd:05:d1:3b:e7:01:ce:76:e5:2f:25:a7:f4:
7c:0c:c1:4f:58:c4:38:1e:ac:e7:fa:db:14:52:65:
2f:5b:a8:2e:27:12:33:33:c2:40:a9:a8:dd:7d:0e:
fa:19:1b:1b:0b:ed:ea:74:38:e7:d2:bc:63:9e:9a:
33:c8:88:e2:98:57:52:7e:4f:a1:1e:16:ae:5b:3b:
ba:ed:74:78:59:c4:ab:83:9b:00:c5:71:c9:a8:76:
7d:df:38:5f:84:fd:27:22:05:f5:24:29:f3:7d:52:
8c:a8:5b:66:6e:f9:1c:30:53:6a:1c:76:c6:52:1d:
f2:82:2a:b6:3a:25:02:66:11:69:af:2e:62:87:a9:
3d:e9:19:3e:74:da:e4:6f:bd:e8:ef:93:26:74:b0:
e3:9b:52:25:44:00:44:1a:ae:12:b8:c1:be:27:6f:
aa:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FC:EF:26:2D:5F:8A:AF:D0:AE:7E:0F:5F:91:13:F2:7B:75:C8:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dvzvJi1fiq_Qrn4PX5ET8nt1yFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0c:b1:bb:ac:5a:74:e2:b7:34:42:db:2c:9c:08:c2:73:1d:3f:
00:d7:cb:2e:5d:f5:a8:b5:3b:6d:f6:f8:67:ab:07:59:6e:e0:
45:a0:05:78:0a:52:af:cc:64:d7:5d:58:6d:51:14:03:fd:a5:
f8:1a:f3:40:6b:48:bb:ec:25:35:44:1f:06:cd:2e:09:b0:4c:
75:d2:af:cd:29:48:70:88:f5:0a:7e:c8:2e:e0:78:83:6c:41:
fd:f4:51:61:66:34:99:a6:cf:dd:1b:42:b8:49:dd:4b:c8:0e:
d8:1c:8a:2a:5f:05:d7:52:0b:11:6c:71:5b:05:bc:7f:d9:d3:
0b:57:17:07:d4:ce:19:76:55:ce:c2:c3:50:47:15:d0:8c:5d:
33:51:6d:fc:4d:bc:8f:c5:6c:c6:f2:27:01:23:0e:ee:37:e2:
fa:36:1d:1e:7f:2a:41:ec:55:e5:7c:0c:c7:84:e8:4a:4f:63:
06:56:8a:69:b7:d2:5c:3c:04:e2:57:37:65:29:6a:dd:6a:42:
5b:d7:e9:83:7d:28:3d:6d:56:f6:e2:58:cc:87:ba:9e:7d:73:
24:5d:34:62:26:1a:94:33:e5:a7:bc:51:ff:9d:8e:c6:4f:9e:
d1:e6:17:14:7f:7c:64:b1:04:64:04:5c:a9:e4:5c:a9:a2:7b:
77:3f:72:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org