Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hN59uKD2R4LfoZkoD3gk3ytE-GY.roa
File: hN59uKD2R4LfoZkoD3gk3ytE-GY.roa (raw, json)
Hash identifier: /vKTF6WO0noI3w+K/KhlXGtZ+XPV37K0hkLu/qHixwY=
Subject key identifier: 84:DE:7D:B8:A0:F6:47:82:DF:A1:99:28:0F:78:24:DF:2B:44:F8:66
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EAE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hN59uKD2R4LfoZkoD3gk3ytE-GY.roa
Signing time: Wed 29 Sep 2021 02:43:51 +0000
ROA not before: Wed 29 Sep 2021 02:43:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3758 (0xeae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=84DE7DB8A0F64782DFA199280F7824DF2B44F866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:92:56:c1:f6:72:a5:e9:14:86:f4:23:6e:f5:
1b:9f:b1:69:c6:54:f3:d2:2a:c5:98:2c:82:30:fe:
ee:87:83:0a:71:e5:68:8e:42:a7:4f:26:52:3f:8a:
40:c0:4b:fa:ef:32:46:68:9c:a6:9c:d6:e7:70:b0:
92:ba:39:c2:27:47:e3:4c:d3:c7:ff:6b:06:47:a3:
af:8b:81:62:19:3c:79:06:a1:36:6a:43:9e:c7:67:
41:55:97:fa:68:33:4b:eb:98:51:f7:e5:c1:e9:b3:
71:97:ae:1e:19:7b:64:40:c5:6e:f6:e6:4c:03:e1:
54:cc:92:df:32:66:d3:41:c0:f6:0d:08:c1:e5:45:
90:60:a0:b8:f8:eb:1c:fa:37:d8:f1:b9:6d:e4:5c:
47:3b:a6:6a:b7:db:30:25:63:d1:ab:18:49:0f:6d:
ae:21:cd:62:e3:e2:d7:e9:5e:47:9f:ce:84:0e:67:
0d:8b:32:8b:41:90:8d:a2:34:de:72:d5:7e:ec:77:
e6:89:b5:0c:cc:a0:d5:46:43:86:2c:a4:b8:dc:3f:
82:2d:d6:74:9b:fb:f5:e7:5a:8e:31:fa:ad:c3:f9:
9c:c5:87:35:be:ae:23:7f:40:cf:7f:fc:06:b7:44:
37:33:8c:55:28:37:c4:e8:8d:32:c0:2f:d6:d9:6f:
06:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DE:7D:B8:A0:F6:47:82:DF:A1:99:28:0F:78:24:DF:2B:44:F8:66
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hN59uKD2R4LfoZkoD3gk3ytE-GY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:17:10:c1:0f:cf:12:de:30:e1:3f:24:31:27:1c:9a:d6:6a:
cf:84:f1:68:8c:5b:f4:7a:6a:f9:ee:3f:c0:3e:12:45:31:13:
3c:3d:e0:d4:71:98:5f:14:7a:e1:58:75:ec:b8:21:3c:ec:01:
86:0b:54:78:e0:e7:72:08:0d:a4:89:51:a4:90:05:18:41:bf:
a2:2e:c1:ca:e0:a3:d6:0b:9c:84:93:69:ee:55:81:c1:23:55:
7b:cb:11:05:fb:d7:fa:6c:78:cc:ad:df:1f:ca:0f:b2:1b:90:
14:af:21:df:d2:79:fe:de:33:9d:c5:0b:51:65:1a:56:0e:14:
c6:9c:d0:58:ce:33:4b:7a:24:41:76:da:d9:a3:94:04:c0:1d:
e5:69:71:a9:b1:90:01:3c:0c:bf:31:87:e2:e3:8b:51:95:6e:
82:48:fa:17:cc:c3:c8:03:3f:ad:7f:b9:e1:63:40:1a:14:8a:
52:25:a8:9d:c7:66:d2:61:88:1b:69:1a:c0:3c:d7:57:d6:13:
f3:60:5f:fc:e8:fe:fc:f8:43:7d:fd:20:2d:9d:9b:4c:4e:ef:
ba:9e:9d:2c:66:f7:50:58:73:03:44:91:22:44:ac:0c:36:8f:
1f:da:10:29:ca:ad:44:2e:1e:37:2b:7c:66:b0:df:cb:62:24:
30:6c:3c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org