Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ewSSwsIaU2-Mhq3ZI72TLae-bcg.roa
File: ewSSwsIaU2-Mhq3ZI72TLae-bcg.roa (raw, json)
Hash identifier: A6ZmIJgX2BXZ4Wwo18B04REp6q8z4uSvsgQ+Qjaylbc=
Subject key identifier: 7B:04:92:C2:C2:1A:53:6F:8C:86:AD:D9:23:BD:93:2D:A7:BE:6D:C8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 084A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ewSSwsIaU2-Mhq3ZI72TLae-bcg.roa
Signing time: Tue 29 Sep 2020 09:51:52 +0000
ROA not before: Tue 29 Sep 2020 09:51:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2122 (0x84a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B0492C2C21A536F8C86ADD923BD932DA7BE6DC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:28:19:5c:ce:c2:d0:be:47:9f:15:ce:ee:82:
93:8b:38:44:0e:1a:a0:dd:8f:e8:df:bc:ad:7d:da:
36:ec:75:1c:e5:50:cc:61:94:ee:1a:06:3b:bb:8c:
d2:e0:2b:30:00:48:12:ec:b3:8d:6e:36:62:47:85:
04:96:5b:02:c8:0d:2f:dd:63:f5:a2:5e:03:ff:70:
4b:a0:84:66:34:d1:e5:42:5f:bc:fb:bf:c1:1f:d5:
bf:d6:58:46:cb:f2:1f:62:12:1f:eb:c4:93:85:97:
88:9d:ca:e9:33:38:8f:da:cf:df:f9:2b:2c:48:42:
47:f9:b7:95:da:99:18:d5:b4:06:c8:63:35:d6:20:
c5:c3:2c:88:13:bf:83:ee:0b:46:3e:8b:c7:0c:aa:
da:c3:0b:a4:09:44:f9:36:c0:03:e0:86:5c:59:f1:
b7:2d:f9:fa:55:bc:fc:55:42:45:77:1d:90:7e:e3:
16:fc:af:65:d8:e4:81:78:6c:2f:fd:0e:32:11:d6:
48:c5:be:52:70:d3:06:82:05:14:44:8e:69:6f:af:
5a:51:a3:a0:3e:d7:01:bb:89:01:72:86:97:75:54:
c6:be:9a:09:2d:91:38:fc:fe:15:37:da:3c:62:fa:
2d:96:36:4c:b4:32:c2:9a:5d:51:b8:ad:75:f2:93:
54:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:04:92:C2:C2:1A:53:6F:8C:86:AD:D9:23:BD:93:2D:A7:BE:6D:C8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ewSSwsIaU2-Mhq3ZI72TLae-bcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:87:c0:b9:60:42:e3:7c:a4:96:5e:3a:1a:4d:b4:4e:4e:21:
07:50:f0:0c:a1:73:96:57:2d:e4:b3:be:81:44:1c:ac:2f:d7:
bb:c5:58:4e:e3:cf:a1:06:70:a1:2f:2c:b4:7c:90:0c:c2:6b:
c9:33:2a:83:e3:86:cd:dd:15:d9:3f:dc:ca:cb:bc:89:f6:d4:
30:4e:71:15:c8:2c:74:1f:8f:56:01:19:f9:5d:ac:b2:e4:7b:
1b:6d:34:18:6d:84:11:9d:67:33:57:7e:1b:b7:ad:6d:c7:9e:
e4:fb:ad:58:28:c1:87:a3:9e:e4:f6:c6:79:2b:a8:d1:e2:35:
61:26:a4:6d:62:13:aa:7d:c3:34:92:28:59:9d:f5:a8:ea:ec:
75:2a:cd:7a:18:38:d5:08:0a:e4:68:59:7f:76:18:6c:5a:2c:
d6:77:47:27:54:d3:6b:fa:3c:b4:00:0a:f7:f8:7f:c0:42:ed:
83:5a:c3:5d:9f:f0:4f:fa:0c:d6:6d:4e:12:26:21:b5:05:07:
83:19:04:05:20:e4:f3:be:27:01:30:ba:0d:b0:1b:ee:b9:ac:
c6:19:df:68:c5:94:3c:2e:10:da:d6:d1:d5:59:ab:16:d9:b8:
e3:cf:c1:85:89:48:67:5b:f6:11:8e:c1:05:07:a6:52:64:01:
bc:2f:fd:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org