Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hTLM4DaA9tFubyx83JOO7407Tb0.roa
File: hTLM4DaA9tFubyx83JOO7407Tb0.roa (raw, json)
Hash identifier: USoZ2AHKjvkI2MS/pcJDyPUI7YS11m8couQA+OrzIyU=
Subject key identifier: 85:32:CC:E0:36:80:F6:D1:6E:6F:2C:7C:DC:93:8E:EF:8D:3B:4D:BD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E83
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hTLM4DaA9tFubyx83JOO7407Tb0.roa
Signing time: Wed 29 Sep 2021 02:43:41 +0000
ROA not before: Wed 29 Sep 2021 02:43:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3715 (0xe83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8532CCE03680F6D16E6F2C7CDC938EEF8D3B4DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:89:89:70:5b:08:12:40:b9:ee:5b:fb:24:7d:
72:cb:77:09:1e:8f:be:58:37:2f:85:14:b3:84:7d:
89:05:3d:2b:7e:66:77:c6:30:9a:58:be:4f:03:be:
d7:bd:f4:75:c0:0d:36:b5:ff:e6:27:9b:8c:03:e1:
da:f5:1b:0b:3d:ba:da:12:e0:39:1d:3d:35:c3:a9:
2d:d3:d3:9d:82:94:5c:5c:1a:03:c2:9b:1e:2f:05:
3f:48:66:24:8c:fa:10:bb:79:5b:29:38:31:65:9d:
93:d7:6d:fb:bd:2e:3d:c1:3d:1b:17:bb:5b:6f:16:
ec:ed:19:9b:5e:27:54:98:e0:db:c4:51:58:42:2b:
2f:ff:40:91:bf:f7:91:b8:16:cc:16:aa:9d:9b:41:
22:3f:0a:02:a8:27:bf:61:66:54:7b:27:d6:d4:5d:
79:d9:9d:eb:40:49:c4:f0:a9:4a:32:97:cf:02:fd:
e1:8b:a3:f1:74:f8:94:e1:4b:73:14:ed:c5:cd:69:
31:d1:19:4d:fb:49:97:5e:6b:9d:13:5a:78:28:bd:
3e:66:4e:f4:ee:34:e3:fc:27:11:45:52:cc:59:b7:
f5:f7:e1:ad:36:e5:de:2f:8e:88:f4:8d:60:49:9a:
52:cd:36:95:4f:8f:1a:5d:00:9b:b9:47:11:9f:c2:
e2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:32:CC:E0:36:80:F6:D1:6E:6F:2C:7C:DC:93:8E:EF:8D:3B:4D:BD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hTLM4DaA9tFubyx83JOO7407Tb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
80:2a:e6:26:d0:3e:cc:e3:57:d1:be:11:03:92:e8:66:0e:11:
6f:02:7b:05:7b:f4:13:db:eb:8c:32:12:02:37:55:15:ab:ac:
b3:73:fb:cc:2e:9b:39:40:6c:91:2a:af:af:a7:37:21:8a:f4:
48:d3:a1:76:be:40:3f:b5:b5:fb:bf:68:76:83:93:0d:9f:38:
d2:ac:92:84:7a:35:31:56:44:d3:e2:8e:2b:92:60:d8:cf:c5:
fa:31:8e:38:89:38:c4:6e:0b:a2:da:d3:03:11:8f:32:76:2c:
2f:e1:1b:e2:32:36:b6:5a:be:de:24:69:e3:30:72:a5:81:77:
d4:37:08:2d:08:d1:50:91:52:9c:35:81:30:4b:ba:4a:c9:49:
a8:c9:cd:eb:ab:71:76:5e:3b:70:cd:92:f2:9d:dc:91:9b:e4:
9c:fd:ff:c0:3f:48:a9:46:b4:05:af:92:e7:3d:97:06:c0:26:
2e:93:3b:2d:b4:d9:ac:9f:c3:85:b7:52:de:42:cb:b0:37:21:
24:a5:68:22:a9:c1:25:ed:d7:8f:f0:09:95:6a:7b:ce:06:6e:
1b:80:4b:e5:93:02:a9:13:df:1e:b4:23:70:83:63:31:67:bb:
e1:35:88:b0:17:0b:f3:27:93:d4:55:32:3a:1f:cc:2d:1d:e6:
9f:5a:aa:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org