Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dzMB7-l_juMESyH0LqyB15yQ1ro.roa
File: dzMB7-l_juMESyH0LqyB15yQ1ro.roa (raw, json)
Hash identifier: KLsiPsHyhFl5/mCMCS6xkAfooqvIexJtZM12i7JMHro=
Subject key identifier: 77:33:01:EF:E9:7F:8E:E3:04:4B:21:F4:2E:AC:81:D7:9C:90:D6:BA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E33
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dzMB7-l_juMESyH0LqyB15yQ1ro.roa
Signing time: Wed 29 Sep 2021 02:43:17 +0000
ROA not before: Wed 29 Sep 2021 02:43:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 220.228.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3635 (0xe33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=773301EFE97F8EE3044B21F42EAC81D79C90D6BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:66:18:c6:6a:75:c1:2d:80:5c:79:60:b4:87:
c3:dc:8d:96:58:b0:8d:be:76:da:50:49:fa:c5:c7:
09:ba:99:f3:ec:dd:24:90:0c:30:8b:c8:68:21:55:
0c:f7:60:fe:ba:24:1b:1d:2a:f3:ba:50:04:e3:8e:
27:cd:91:ea:ab:f2:a7:55:f3:3c:30:44:93:88:31:
cf:37:5e:f3:6f:96:73:92:b9:c6:70:a6:05:16:56:
5e:9e:08:a6:a1:f2:ad:06:d1:03:06:39:58:79:de:
d1:2f:92:8e:20:25:f6:27:aa:b0:39:97:44:b9:48:
e1:fa:89:ed:ae:21:ba:49:27:69:03:2f:a0:30:1e:
b3:ff:01:af:36:ef:a4:16:b6:3c:f1:8e:5b:5a:e4:
b9:fa:be:d9:00:15:29:58:8f:b2:2f:64:1e:d9:d6:
92:0f:0e:c6:55:62:b2:c0:87:c2:01:9a:6f:75:c2:
c2:9d:83:95:33:b2:78:68:1a:1d:7b:76:9e:82:e5:
fc:26:1b:e6:5e:e0:77:d5:d5:d9:6c:fd:b6:c7:8a:
70:6c:37:bd:9b:13:b9:23:40:99:9b:f0:a5:b5:85:
da:64:ca:c6:5c:19:ed:92:ad:0e:16:06:c3:9a:93:
07:31:3c:ae:3f:17:62:98:c3:21:7d:5c:d3:75:8d:
0f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:33:01:EF:E9:7F:8E:E3:04:4B:21:F4:2E:AC:81:D7:9C:90:D6:BA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dzMB7-l_juMESyH0LqyB15yQ1ro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:ba:c1:3f:a5:a9:8e:d4:8c:2c:72:56:9b:b2:2f:7a:f9:3b:
d5:7b:64:8f:7f:a7:98:b7:5a:dc:18:4d:b7:ba:44:d8:5a:39:
cb:e5:fc:01:a5:3c:f5:da:ef:cd:88:90:73:4c:cb:0e:3c:e5:
ed:e4:55:39:d2:4e:a4:f3:d2:e7:65:95:cc:83:b4:6e:16:a2:
5c:39:45:3d:24:d0:4f:1f:ce:c8:63:55:cc:c4:8a:b0:d9:77:
14:f7:82:9b:cc:36:b9:f0:05:1f:1d:75:7e:84:4b:a1:04:14:
d5:b1:c2:d1:ba:a3:9d:58:9c:f1:d2:35:03:49:82:b2:28:34:
81:19:e0:7c:6a:93:ee:6b:d4:fd:de:10:73:94:bb:44:4c:6d:
65:41:d2:69:24:ee:63:13:d0:8f:44:de:de:2d:4a:aa:6d:41:
93:0a:18:37:6c:85:33:5c:4e:a1:d2:74:cf:da:ad:d7:fe:d4:
e3:95:d6:f0:0f:d8:43:5d:17:b0:8e:da:fe:2d:05:1e:f9:25:
9e:90:ba:19:04:63:07:c0:bf:54:61:0a:00:a8:0d:a7:a8:f6:
2f:fe:7c:77:91:62:24:3c:66:7f:85:4e:4a:47:aa:f3:20:a3:
fd:64:96:07:43:ef:8a:91:71:48:e2:0e:c5:6a:eb:b8:16:e0:
41:3f:ce:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org