Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/et_D45tNpUZzLJ14_34v001cC24.roa
File: et_D45tNpUZzLJ14_34v001cC24.roa (raw, json)
Hash identifier: RjnRb9qGMOcL3e/INHHEQp8DJIUWTs2dJoWAsr0gv9k=
Subject key identifier: 7A:DF:C3:E3:9B:4D:A5:46:73:2C:9D:78:FF:7E:2F:D3:4D:5C:0B:6E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 086B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/et_D45tNpUZzLJ14_34v001cC24.roa
Signing time: Tue 29 Sep 2020 09:52:01 +0000
ROA not before: Tue 29 Sep 2020 09:52:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2155 (0x86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7ADFC3E39B4DA546732C9D78FF7E2FD34D5C0B6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:3a:b6:19:72:30:4e:c8:1d:e0:f6:0d:de:
d3:8c:f3:f7:04:da:5f:e2:14:9b:76:b4:89:c4:f8:
88:5f:79:aa:ce:89:3b:bb:b2:04:3b:f2:0e:cd:36:
e8:f4:49:55:43:d9:2d:76:f8:48:ca:fe:62:99:a2:
b6:d2:2a:8b:d3:0b:1a:89:19:04:1c:63:3b:9b:1a:
54:bd:e6:ae:d2:36:c2:3e:4d:72:31:2a:2c:2e:60:
04:d1:a7:68:e1:cd:74:3b:ab:00:dd:f7:3c:5d:ed:
e4:b3:35:8f:50:34:c5:d2:5d:98:c0:76:c3:66:ff:
96:fd:81:2b:fc:e8:6c:ec:d9:83:73:52:9c:6b:ce:
01:63:bd:67:19:64:a3:11:21:02:a6:ef:8c:9b:ca:
eb:b9:99:09:81:c1:5d:89:95:75:85:fb:05:fe:7f:
d3:20:82:b6:fd:5b:bf:96:c2:9e:f8:b8:83:55:a1:
14:6f:67:72:04:7b:70:00:b3:da:ee:e8:ff:02:12:
5a:40:c8:42:48:3c:90:9c:a6:0f:ed:3c:2d:93:c3:
6c:c5:78:ef:b1:c4:27:eb:ce:79:9c:f6:25:c8:fc:
bc:e8:a4:f2:04:bd:b0:85:b7:55:da:91:e5:e1:23:
f0:26:2d:ea:2f:4e:b3:1a:c1:70:d8:69:c1:44:8c:
ac:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DF:C3:E3:9B:4D:A5:46:73:2C:9D:78:FF:7E:2F:D3:4D:5C:0B:6E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/et_D45tNpUZzLJ14_34v001cC24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c8:05:4f:89:a7:2d:28:b8:25:c4:b4:a9:9b:b3:d7:53:aa:ab:
89:34:2f:3f:f5:7f:99:bc:89:db:70:f1:ea:0f:bc:e9:bf:c5:
8f:75:ca:37:56:93:06:07:07:8a:87:68:67:ae:e4:81:74:7b:
ed:89:61:b2:26:d3:88:32:0e:af:fb:9e:5b:21:17:47:15:94:
a3:2c:23:c8:dd:55:b3:5f:80:92:85:93:29:7d:55:81:51:4d:
63:fb:ff:e6:91:a1:31:42:5f:ea:d2:eb:01:9f:19:58:20:c4:
08:8c:5f:99:82:47:79:27:e2:8d:d8:71:fc:84:b2:49:44:7f:
da:53:57:0d:b9:30:2a:df:e1:56:b0:a9:a3:9a:62:b2:72:e3:
09:69:25:32:e1:43:a1:a5:b6:e6:8a:15:47:49:b3:34:05:88:
07:b6:81:1b:6d:e1:1c:b5:87:61:91:e5:8e:c6:5e:d5:62:50:
4c:98:82:b6:08:76:dc:03:59:c5:31:6e:e1:9a:bf:f8:9e:70:
41:1f:e4:ab:37:78:f2:2c:72:55:24:1d:d0:16:bd:5d:8c:63:
96:da:c5:c1:26:b5:ed:13:83:35:9f:0a:3d:3b:2e:27:7a:12:
c7:66:c7:94:e9:99:f2:c7:fb:26:01:ca:de:8c:e6:26:98:14:
fe:a0:5c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org