Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gXBBOAqbQAWL-ZOBsxzXBr26x_w.roa
File: gXBBOAqbQAWL-ZOBsxzXBr26x_w.roa (raw, json)
Hash identifier: XXpJeZG4rN7NxydTY2rzxJ6kC7nDNpTI/EGuaqGzBD0=
Subject key identifier: 81:70:41:38:0A:9B:40:05:8B:F9:93:81:B3:1C:D7:06:BD:BA:C7:FC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D35
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gXBBOAqbQAWL-ZOBsxzXBr26x_w.roa
Signing time: Sun 07 Feb 2021 12:59:01 +0000
ROA not before: Sun 07 Feb 2021 12:59:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 133747
IP address blocks: 115.30.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3381 (0xd35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 12:59:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=817041380A9B40058BF99381B31CD706BDBAC7FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b4:27:a8:dc:f6:c0:c4:28:f7:c1:4e:23:8b:
0a:2e:23:69:97:85:91:84:94:7f:45:c4:b3:c7:34:
9f:4a:66:ae:83:8f:90:d3:32:df:ce:66:dd:5a:8f:
56:eb:58:7f:56:11:86:4b:de:7c:3b:1d:43:59:b9:
0f:e4:22:c2:81:ab:87:f9:cd:47:1a:dc:00:15:5e:
0d:13:a4:7a:f7:cb:11:9d:98:1e:44:f1:86:30:63:
df:f4:79:6e:5d:e5:0c:9c:1c:c5:4f:27:5a:90:85:
e0:c6:4d:44:83:3b:88:af:29:0e:1e:0a:04:b5:ab:
e8:82:0d:1e:51:12:62:b6:8a:ad:a9:2e:48:c2:bd:
36:41:52:ae:43:9a:af:af:21:e7:a2:b1:14:aa:aa:
4e:ae:6f:4e:e4:c6:05:7b:f8:51:ee:0c:cb:71:a2:
3e:cd:54:9f:d5:fd:dd:c8:81:a6:6e:f9:e2:9b:18:
4c:9d:ef:df:5b:e0:53:c8:11:69:92:89:d7:b4:71:
a8:cb:79:8d:cd:34:a2:8e:f0:7a:46:2c:2e:aa:69:
38:40:8e:02:ff:c2:92:11:e3:73:6a:0f:b6:3b:c5:
da:e5:af:03:63:e8:ab:d7:6e:21:ea:f8:2f:74:ec:
0a:f9:5a:a3:ec:e3:1c:11:41:9a:8b:b3:39:d1:ea:
50:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:70:41:38:0A:9B:40:05:8B:F9:93:81:B3:1C:D7:06:BD:BA:C7:FC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gXBBOAqbQAWL-ZOBsxzXBr26x_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.64.0/21
Signature Algorithm: sha256WithRSAEncryption
22:53:ff:ea:86:4b:ce:ee:50:d3:d9:2e:7f:4e:47:e5:2d:87:
42:31:0c:0b:4e:fc:a0:32:a4:c1:ea:54:8a:6a:0b:3e:d9:2a:
d1:c0:4f:c8:37:a4:ba:e4:6c:5f:cc:3e:82:9e:55:f9:54:b2:
57:6a:a3:d4:63:5e:cd:71:45:12:44:0e:6e:0c:16:03:5c:1c:
25:99:5a:1a:6c:ae:a5:70:63:54:12:e2:72:ed:4e:40:c5:d8:
16:ad:d0:c7:48:56:0a:c8:41:3f:a2:23:41:bf:4e:2c:8a:dc:
e0:67:8e:e0:99:79:5b:06:1f:60:30:0a:e6:0a:35:d4:c0:1e:
94:8e:ed:a4:82:18:19:15:9a:8b:17:80:ce:61:ff:9e:bc:cf:
b5:ee:e8:45:49:0c:97:ab:48:13:ab:81:e1:38:c8:e3:2c:15:
b8:ba:59:ed:2d:d0:83:40:ef:a4:09:46:61:84:9a:75:44:54:
34:15:66:03:c9:93:bd:7b:1b:6b:24:12:33:a3:17:c6:27:be:
7b:4a:e3:68:34:77:cf:f5:00:b1:e8:3b:8c:58:9b:d7:cf:91:
4f:72:44:73:9c:ce:4a:bf:44:2c:52:99:28:45:12:4f:94:ee:
75:1d:fb:24:26:74:e9:ac:64:f3:63:d5:43:41:6d:2b:39:a4:
5c:7b:d6:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org