Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hI5m0ZD6-BJbT-KsQ89eMYpYlp8.roa
File: hI5m0ZD6-BJbT-KsQ89eMYpYlp8.roa (raw, json)
Hash identifier: k+L5CKw5rRqZUT1ZJN82FKUUwE5noicf9FK0wxV5Ru8=
Subject key identifier: 84:8E:66:D1:90:FA:F8:12:5B:4F:E2:AC:43:CF:5E:31:8A:58:96:9F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C3F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hI5m0ZD6-BJbT-KsQ89eMYpYlp8.roa
Signing time: Sun 07 Feb 2021 07:20:53 +0000
ROA not before: Sun 07 Feb 2021 07:20:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 210.244.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3135 (0xc3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:20:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=848E66D190FAF8125B4FE2AC43CF5E318A58969F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4d:4a:83:80:52:33:ac:e0:b3:72:d3:e7:55:
62:e8:38:b8:a6:f2:5e:b9:b5:58:ec:00:ef:98:cf:
1c:1b:e4:cb:a1:3d:12:90:f7:5b:13:96:bc:c5:6f:
59:99:59:b0:1c:63:4b:f4:c8:77:ae:69:ca:4f:68:
82:1b:77:db:9f:c3:4e:79:f9:88:44:54:43:3f:88:
d7:72:b1:30:a5:1a:d1:04:89:34:65:53:81:aa:f9:
1c:e9:0c:f2:6f:42:91:9f:c6:00:d8:ae:24:39:7e:
2c:dc:68:2c:16:e7:00:d0:a3:40:db:9e:c3:45:0a:
c1:46:11:28:73:a0:3a:2f:03:27:6c:9c:83:ca:e6:
0c:27:01:aa:ac:ce:ed:e1:df:a7:9a:e6:f9:90:6b:
07:14:4b:35:28:eb:f5:84:56:fa:26:67:db:ef:ba:
ff:71:ae:7f:a4:17:b2:2f:5a:52:a2:31:97:42:b0:
34:89:c3:90:de:1a:87:5c:89:01:2e:1a:c5:18:4e:
af:a4:33:dd:06:d0:fa:f2:46:2b:db:91:e4:59:54:
c6:9b:79:f6:c8:6f:0c:79:c5:92:fc:46:fd:9e:8a:
c0:cb:95:73:71:3a:f1:b8:00:00:b4:e6:65:5a:34:
bd:23:d3:b8:59:45:02:b2:30:49:4d:83:85:cd:35:
43:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8E:66:D1:90:FA:F8:12:5B:4F:E2:AC:43:CF:5E:31:8A:58:96:9F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hI5m0ZD6-BJbT-KsQ89eMYpYlp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:0e:34:ed:d4:f1:3e:fd:85:15:6d:7a:51:fc:04:28:58:94:
25:3c:03:27:e1:ea:67:14:c5:06:e4:99:61:7c:e3:86:d3:0e:
c0:e0:f5:ea:b1:1f:29:32:30:c6:7a:4c:af:05:51:0b:cf:95:
ff:cd:02:01:95:e6:3d:2f:70:55:52:16:cd:65:43:f0:cd:ad:
f3:21:23:e1:d1:10:09:51:68:64:b3:91:4d:a8:01:9e:5e:94:
12:d3:91:99:1c:80:a7:81:9c:0b:5b:68:f9:8d:95:87:49:71:
ac:57:fa:36:77:ee:fc:99:27:2d:a9:09:63:ed:95:f7:3e:77:
4c:04:29:c1:30:6e:db:d1:c0:f2:8b:17:48:cb:c0:a8:94:29:
7e:bd:77:2a:50:a7:d6:93:4f:6a:e6:11:17:b5:96:a9:a9:97:
02:7f:4e:a8:a7:8e:86:cb:00:23:d9:bc:c3:c2:e2:4e:52:3a:
ed:c1:fe:02:ec:4b:48:e3:71:d8:3a:b9:cf:a9:16:ae:c4:57:
6e:34:75:ac:a7:72:2e:c7:9b:41:98:fb:8e:7a:cf:28:d5:8a:
01:a8:4c:45:67:67:98:ba:da:89:ad:a9:b7:37:57:04:f4:32:
df:6a:df:51:8a:6e:0f:23:8a:cf:78:66:ca:83:37:24:fe:2f:
51:8f:c4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org