Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fVd5JYxbe8A686g_w2Dk0WIMFE0.roa
File: fVd5JYxbe8A686g_w2Dk0WIMFE0.roa (raw, json)
Hash identifier: 6P3SfhYE0WzN7cDb1ZWxDGKpsz014ciurEmhZNk088A=
Subject key identifier: 7D:57:79:25:8C:5B:7B:C0:3A:F3:A8:3F:C3:60:E4:D1:62:0C:14:4D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E29
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fVd5JYxbe8A686g_w2Dk0WIMFE0.roa
Signing time: Wed 29 Sep 2021 02:43:15 +0000
ROA not before: Wed 29 Sep 2021 02:43:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3625 (0xe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7D5779258C5B7BC03AF3A83FC360E4D1620C144D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:94:5f:39:7e:f9:c0:10:00:60:5e:b3:4d:
50:af:a2:e9:a3:5d:cb:e7:4d:cc:e3:7f:6b:68:af:
07:07:cd:ab:59:58:bf:a0:3b:36:b3:18:dc:3c:2c:
17:46:e5:fb:dc:14:34:e9:37:84:84:29:13:d8:5d:
41:2c:1f:3b:88:76:2e:3e:6a:76:35:06:2b:4e:7f:
ab:fd:aa:3f:e6:95:16:54:8b:77:e7:35:d6:8f:63:
bd:d3:6f:25:2a:77:06:9f:5b:00:f9:e4:60:9b:16:
cd:2b:61:b1:a7:66:65:77:71:ae:db:4a:cb:98:42:
4a:a0:6a:d8:61:3b:53:a1:a3:ee:c2:d2:ec:1d:33:
a8:2b:f8:62:60:09:21:60:1a:7f:a9:13:f2:ab:74:
27:c4:e0:3c:b8:61:d6:03:d8:fe:76:a9:3d:cb:55:
7b:39:70:31:28:6e:82:f9:a6:58:1c:3c:8c:fd:9a:
be:61:0a:fb:9d:f2:8b:ca:b1:3f:94:6f:1a:ab:52:
ff:55:ee:59:cc:b1:e8:fd:fc:b5:ee:54:cf:da:3b:
53:2d:0d:16:81:69:02:db:d0:9e:94:ae:b2:d4:66:
ca:44:f8:2d:c6:4c:8e:10:90:d9:d7:0e:81:79:8a:
42:8d:e5:a2:11:1b:cd:2c:94:89:c0:22:7f:c4:c3:
e8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:57:79:25:8C:5B:7B:C0:3A:F3:A8:3F:C3:60:E4:D1:62:0C:14:4D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fVd5JYxbe8A686g_w2Dk0WIMFE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:8b:be:53:d3:a4:c6:51:01:45:ed:15:44:99:41:3c:7b:25:
ff:72:ec:84:be:4a:d9:f3:1b:9d:97:ae:cf:0d:51:73:b0:d1:
fe:75:a7:41:c6:2a:54:eb:7e:94:f0:0e:a1:38:89:1e:f0:f7:
5f:b8:71:c0:79:94:5e:5e:db:5b:da:f7:00:af:8e:52:59:ac:
cd:51:58:de:e4:16:21:c4:c0:e0:ac:49:ae:bf:b2:81:cb:b1:
3b:1b:ef:bf:ca:2e:39:6d:44:ec:79:cd:6d:c4:c4:35:f5:23:
27:6c:a0:09:21:9d:9b:46:78:c1:39:a9:76:55:8e:0d:2a:20:
8d:1d:4e:83:14:9a:13:43:7b:14:c9:1a:bf:df:83:f2:0b:bf:
f2:96:81:eb:18:2f:80:e9:74:7b:12:54:a5:17:40:06:cd:dd:
a4:15:2e:77:18:a2:0f:21:75:ee:5e:9f:36:4a:e1:bc:45:fd:
fd:76:20:47:05:d4:0f:19:0a:8e:49:b6:df:08:6a:0f:d1:8f:
f8:48:ed:5a:cc:92:3d:83:8f:39:03:31:af:ad:81:32:aa:ee:
12:6e:ea:e7:cc:6a:7f:7f:2f:2b:bb:20:19:57:2e:36:ab:48:
74:7e:ae:34:4b:34:fc:34:c7:f9:ac:2e:c0:d2:ec:70:db:7d:
9d:8d:54:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org