Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fpY5u5fOaQt_VhWNHh2eppVZGTc.roa
File: fpY5u5fOaQt_VhWNHh2eppVZGTc.roa (raw, json)
Hash identifier: 2P/JquHom5r+6urGtf2lhctJ+F3Gtswz/kg843Eg1K4=
Subject key identifier: 7E:96:39:BB:97:CE:69:0B:7F:56:15:8D:1E:1D:9E:A6:95:59:19:37
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fpY5u5fOaQt_VhWNHh2eppVZGTc.roa
Signing time: Wed 29 Sep 2021 02:43:02 +0000
ROA not before: Wed 29 Sep 2021 02:43:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3573 (0xdf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7E9639BB97CE690B7F56158D1E1D9EA695591937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5c:d6:d8:67:20:34:54:3c:16:f9:5d:66:cc:
78:71:7a:20:f3:a7:dd:75:0c:74:8d:21:17:3c:da:
b1:1f:1f:48:a2:82:2e:45:99:72:3d:07:0c:d9:4a:
d5:64:c8:cc:76:22:d8:1e:99:e2:33:8c:59:47:17:
b3:74:ca:70:4a:2e:94:58:e0:33:21:dc:2a:37:de:
cd:37:bf:3d:b1:e4:db:a5:9a:66:8e:a9:7f:bc:47:
6c:25:cd:d8:13:c9:8c:06:c3:11:ec:4d:7f:1a:04:
12:aa:cb:d5:30:10:c1:1d:7f:93:99:86:ec:ba:7b:
93:d9:2a:a3:3a:5c:e8:45:8d:43:f0:d1:d9:3a:17:
a8:32:00:88:f6:09:ee:37:78:c0:b1:63:f6:5e:27:
a0:d5:47:8c:27:23:de:3e:7b:61:19:49:87:e3:f3:
5c:e9:7e:09:83:88:52:1e:4b:00:71:af:49:f0:a8:
90:67:76:85:1f:41:9a:78:73:54:b5:6f:5a:22:0e:
18:71:3d:5c:8b:af:00:df:f8:4c:58:82:23:9d:f7:
e4:8e:22:45:56:3b:df:61:2e:3d:85:ab:d2:01:27:
48:37:84:af:a6:96:de:9d:15:12:eb:9f:6a:ee:ac:
52:d2:eb:d7:39:8c:a6:3a:6a:10:e5:f5:17:d2:87:
23:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:96:39:BB:97:CE:69:0B:7F:56:15:8D:1E:1D:9E:A6:95:59:19:37
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fpY5u5fOaQt_VhWNHh2eppVZGTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:74:65:99:c3:de:b4:92:a0:bc:5d:db:74:74:ee:bf:96:6a:
67:ce:49:63:d5:ba:24:4b:fd:db:b4:c3:37:03:6e:64:1f:1c:
11:47:be:47:6d:b9:45:d0:fa:2e:82:a5:c5:cd:d4:75:68:14:
31:13:12:5e:c1:cd:e8:28:ea:0d:c4:bf:75:93:74:b1:f1:d1:
b7:a1:d4:fa:54:9e:c9:36:7c:4d:04:a3:2e:65:e7:b6:b5:53:
70:16:8c:ec:b7:9e:53:6e:4a:cf:55:05:0d:7c:fa:81:46:b1:
71:1c:6a:8a:de:6e:76:89:c4:a1:53:95:79:a5:db:6a:a1:dd:
e2:7d:96:00:15:f5:6b:c9:56:9f:04:6b:d6:e9:90:2c:76:65:
36:34:ea:4f:c5:8f:a3:4b:98:d7:8f:72:23:2d:2b:dd:e7:41:
72:0d:c0:55:26:50:06:99:f0:c2:22:aa:c7:43:47:be:bd:01:
0a:4f:cf:1a:ed:dc:fd:32:64:38:4a:ac:ef:bd:e9:ac:1e:96:
88:65:f2:eb:b7:78:ae:d0:4e:12:0b:6a:b8:4b:45:e2:67:03:
54:b1:4d:d7:f9:a9:3c:5c:42:45:e4:82:c7:e8:d1:7e:39:68:
c0:72:f4:35:a1:fd:d2:a8:c9:96:5f:9c:5b:c7:d1:0d:72:37:
a0:c0:5e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org