Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/e49AsNrW_7XGM6pLwgx35AMk_Xo.roa
File: e49AsNrW_7XGM6pLwgx35AMk_Xo.roa (raw, json)
Hash identifier: PTgUsrVTmTBoxMJFumXC8rzvehS9nQ0f2Ymtv/9dKPY=
Subject key identifier: 7B:8F:40:B0:DA:D6:FF:B5:C6:33:AA:4B:C2:0C:77:E4:03:24:FD:7A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E24
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e49AsNrW_7XGM6pLwgx35AMk_Xo.roa
Signing time: Wed 29 Sep 2021 02:43:14 +0000
ROA not before: Wed 29 Sep 2021 02:43:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 210.68.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3620 (0xe24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7B8F40B0DAD6FFB5C633AA4BC20C77E40324FD7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:86:db:1c:5c:d5:b7:78:cf:be:1c:4f:c8:93:
0a:28:67:cb:8f:71:76:06:42:0e:61:91:aa:f6:41:
6c:7d:9f:a6:19:60:70:80:b8:47:68:51:15:3e:19:
43:c2:6a:f7:11:47:7b:6f:dd:a9:4d:91:4b:b4:27:
a2:5d:a3:62:df:05:7d:4f:3e:72:c9:31:42:c8:27:
6d:64:cc:84:7e:03:d1:c2:e0:68:07:c5:ab:f8:be:
ad:13:98:d9:1a:e2:58:a4:5d:09:98:43:5d:c3:d8:
5a:18:ef:9d:48:df:5f:91:05:ae:ec:d4:72:e3:49:
42:9e:c8:63:98:5b:35:ce:45:54:f9:0a:e9:7a:c7:
8b:f8:8c:37:c4:ac:57:0e:32:d6:22:ec:24:81:da:
3b:21:7c:6f:db:ba:13:06:de:9a:b7:a4:e2:46:27:
a6:ec:e1:ec:cd:28:1c:2f:ea:2d:b3:f3:3b:a0:c9:
f1:ae:cd:6a:c6:7e:b4:ca:9c:28:33:66:ab:08:75:
96:3e:72:6e:7b:0c:96:fb:00:14:9b:d4:f1:b9:76:
23:8f:f7:3b:fd:9d:28:85:13:6b:e6:d5:29:99:ab:
7c:74:3e:17:3b:76:9e:99:06:d2:45:7f:f2:a7:73:
79:59:86:52:5c:a4:ee:9a:a0:99:de:e2:6b:30:f6:
68:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8F:40:B0:DA:D6:FF:B5:C6:33:AA:4B:C2:0C:77:E4:03:24:FD:7A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e49AsNrW_7XGM6pLwgx35AMk_Xo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bd:ce:3a:53:f3:27:51:1b:d2:e3:3f:ca:fb:69:7f:28:49:8f:
af:88:17:b6:72:5e:6d:9b:9a:dc:4f:ac:e6:ff:a7:1a:b4:17:
93:fe:ca:d6:6f:4d:d3:63:d6:84:63:76:6e:fd:cd:aa:45:64:
db:15:19:13:7a:03:6f:dc:1f:00:58:9a:2c:00:a4:39:48:c4:
36:b3:0c:df:e0:bc:bf:64:ab:28:3d:89:ce:0e:55:f3:e7:88:
75:46:22:74:2c:3c:20:53:e8:44:7e:8b:c6:26:ab:67:3a:ff:
f8:15:62:d6:58:6b:fa:f1:34:8f:b0:a8:ed:f9:f0:c1:61:32:
dc:b8:e3:e7:5c:57:b8:4d:fa:09:82:d3:50:dd:43:f2:d8:3d:
66:d8:99:3b:6c:bf:97:93:7a:b5:ff:7a:a6:e5:48:41:71:da:
8a:21:74:ac:ec:b8:4c:42:e3:37:71:3f:8c:e0:01:57:75:dc:
b3:d5:45:d9:31:52:5f:fc:0c:6d:27:9d:f0:b7:51:ed:e3:75:
6a:da:38:43:3d:da:3a:06:72:b5:7e:84:a8:cd:4b:da:4f:b9:
27:ed:b0:50:9b:8d:bd:ad:28:68:32:41:a4:50:be:25:9c:91:
95:04:25:e8:0e:dd:8b:00:1b:0e:ef:32:f0:13:24:7e:e0:b1:
97:99:38:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org