Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fhbt2CU2Mm_49NFCeNX5GUkY6ps.roa
File: fhbt2CU2Mm_49NFCeNX5GUkY6ps.roa (raw, json)
Hash identifier: 10UyJ2eDptzEI8E1iK7GH9LfozYqmYL8pnmvSKib3NA=
Subject key identifier: 7E:16:ED:D8:25:36:32:6F:F8:F4:D1:42:78:D5:F9:19:49:18:EA:9B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E1A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fhbt2CU2Mm_49NFCeNX5GUkY6ps.roa
Signing time: Wed 29 Sep 2021 02:43:12 +0000
ROA not before: Wed 29 Sep 2021 02:43:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3610 (0xe1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7E16EDD82536326FF8F4D14278D5F9194918EA9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:4a:d3:a7:27:d8:1d:4b:64:eb:88:f2:ed:
5a:02:44:ba:8b:2d:f8:af:5a:3c:6e:12:fa:0d:b7:
74:20:9c:86:ec:c9:1d:9c:8f:69:1b:9c:27:c3:16:
89:7d:5d:8d:cf:e4:16:6d:c2:29:7b:ba:df:f4:3f:
77:04:b5:22:57:f1:4c:b7:9c:81:a9:4e:4c:4c:ee:
38:18:e6:e7:1b:a9:f7:89:43:5c:35:43:b4:e0:e6:
74:de:80:6e:7d:a9:b1:8a:9e:74:d9:7d:d5:96:57:
bb:2f:ca:58:67:47:16:30:fe:e9:cd:54:21:d2:58:
db:c9:6d:16:db:30:a8:ba:b2:07:09:fc:e6:b7:6e:
53:d3:38:ec:2c:51:a7:5a:9e:28:c1:81:a8:5a:e6:
66:9e:63:85:8b:9f:7b:cb:b3:34:97:0e:89:1b:a5:
9e:ec:2b:38:48:4a:0a:d1:7a:b1:8f:dc:cf:c5:5c:
68:b3:6a:3e:5a:e4:ef:90:20:9d:14:af:9c:c7:aa:
01:6a:3f:de:5c:af:25:20:cc:c4:fe:15:24:21:16:
2c:be:5a:ee:ce:1e:e1:e7:63:57:92:06:1a:6c:a2:
3d:4f:50:a9:6e:69:ad:f7:27:8d:7a:66:69:24:da:
ff:44:65:71:a2:ee:6a:9e:47:db:2f:b4:1b:62:2a:
e0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:16:ED:D8:25:36:32:6F:F8:F4:D1:42:78:D5:F9:19:49:18:EA:9B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fhbt2CU2Mm_49NFCeNX5GUkY6ps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8b:09:50:fa:1e:bb:59:22:25:88:99:20:35:0c:6b:e6:98:1f:
be:69:40:0a:54:7f:5a:41:5e:e0:2d:7b:e0:d8:c3:8f:ea:d6:
a3:4c:1c:66:58:eb:4c:a5:bf:de:33:02:90:da:3a:f9:53:f8:
12:1a:95:f0:a0:d0:53:1e:60:ca:9d:22:ca:44:b0:5e:a3:20:
40:28:d3:fc:99:c5:74:3b:4d:3d:42:36:77:47:84:81:77:51:
73:42:a3:21:ac:10:c6:4c:c8:86:83:56:57:97:46:a4:52:c0:
3a:43:3c:7d:65:b8:2e:1e:4a:99:c5:93:e3:19:51:b3:6d:de:
f2:0f:6d:eb:4c:cb:c3:bb:d9:5c:e5:bc:e0:25:5e:7b:37:9b:
f9:5e:41:25:99:63:a5:65:95:16:b9:04:eb:16:9f:d3:48:43:
3d:66:5d:5d:c1:f1:a4:81:97:02:6a:92:93:11:aa:97:de:6b:
df:85:07:40:c4:0d:da:8f:9a:29:ad:85:31:06:8e:f6:2a:d1:
6d:cc:86:96:39:ae:40:e1:67:15:6f:26:f0:57:f6:e7:16:1a:
d7:45:46:7d:81:e0:46:29:29:e9:77:6d:c4:7d:7b:fc:85:d3:
7c:8f:d5:13:70:b3:17:8b:c9:b8:0c:57:51:f2:db:a9:c8:98:
14:ce:3d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org