Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ehFqO4N1VpzB6NwxhiL8kY5ABaw.roa
File: ehFqO4N1VpzB6NwxhiL8kY5ABaw.roa (raw, json)
Hash identifier: iHTAEDvR/B1bGhQ/1IVuRXBj8bTPClkcSrR1CeLH5Cw=
Subject key identifier: 7A:11:6A:3B:83:75:56:9C:C1:E8:DC:31:86:22:FC:91:8E:40:05:AC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 084F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ehFqO4N1VpzB6NwxhiL8kY5ABaw.roa
Signing time: Tue 29 Sep 2020 09:51:54 +0000
ROA not before: Tue 29 Sep 2020 09:51:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2127 (0x84f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7A116A3B8375569CC1E8DC318622FC918E4005AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:91:b0:50:e1:b4:dc:85:77:fa:1a:01:da:b5:
cb:34:84:51:54:78:0a:bb:d8:18:b4:84:1e:42:c4:
57:1a:72:f6:ad:f9:87:db:c8:5e:c8:35:3f:26:6a:
34:12:f9:20:05:f4:eb:13:91:6d:ae:a9:ec:f8:3b:
65:3a:8b:c6:74:69:55:c4:f8:a3:68:6e:43:76:11:
2a:8d:13:90:25:8b:ea:97:95:91:ed:71:0b:ca:69:
d0:1f:07:5b:09:1a:df:fc:50:4a:90:5e:fb:55:8a:
bc:5a:2e:b9:66:64:f7:95:3f:86:74:37:fe:17:f8:
7f:12:f2:8b:1c:32:36:cc:f1:c8:48:d2:17:45:45:
d2:6e:fc:03:0f:cc:d3:3c:63:47:72:f2:e1:ef:f8:
41:e0:10:1e:54:b9:94:bf:ea:c9:a5:a5:ff:3b:2f:
d6:32:65:d8:d4:13:32:ad:ac:4a:db:c0:b8:91:71:
45:40:9c:58:1a:8b:56:7d:32:e7:7d:08:f1:15:c7:
55:1b:e5:77:fe:af:b0:10:d8:d7:66:f6:26:49:8f:
65:bb:74:17:b3:b3:e4:8e:38:a4:fb:c8:67:a2:3b:
d3:9b:ee:a3:9a:fc:fe:8f:81:65:c9:34:c0:96:1f:
b6:65:09:db:e2:37:2f:67:d0:65:74:91:6d:86:4e:
c7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:11:6A:3B:83:75:56:9C:C1:E8:DC:31:86:22:FC:91:8E:40:05:AC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ehFqO4N1VpzB6NwxhiL8kY5ABaw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:27:fc:c9:4d:20:55:80:4a:62:5f:06:9a:3a:73:47:90:02:
ce:63:07:b3:8a:0c:67:d9:30:d6:53:fc:66:30:34:17:07:9f:
58:a1:66:52:f2:85:1c:7e:8c:45:94:cf:13:26:aa:3f:a4:7e:
ba:7b:59:09:df:ac:a2:e9:85:e4:02:64:43:5e:44:5e:3c:7f:
65:3c:92:66:de:02:b8:7d:ae:8e:52:1f:61:5b:ec:d2:4c:03:
26:6a:e6:7f:f6:84:e5:6e:5a:10:f0:61:a8:02:8c:1e:4e:66:
77:7e:e1:c0:5c:a5:52:ee:d7:a4:73:1a:22:2d:06:97:47:d9:
2c:bd:6a:e1:7a:e6:ca:14:95:3a:b8:7c:21:cf:5c:30:5e:3c:
47:fc:74:94:61:c4:c2:e4:7e:db:d5:b3:03:54:f7:ad:04:7a:
07:45:4a:a2:89:a2:e4:c0:e6:50:c4:1f:8d:b8:21:0d:c7:8b:
33:2d:d4:22:6d:26:98:f6:42:b4:2c:32:5d:70:94:a9:9f:c0:
d9:8a:d0:d4:58:4f:3a:21:9d:1c:e7:b8:26:0b:59:d5:a8:50:
3b:10:9f:00:88:88:b6:62:a7:90:27:4c:83:ed:e0:b9:02:6e:
66:81:03:30:94:7a:a6:97:e0:e3:9f:98:0c:41:a1:e7:4c:9a:
8f:bd:7f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org