Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/i02EcInuOR3tNFYGzRTjbc1rgug.roa
File: i02EcInuOR3tNFYGzRTjbc1rgug.roa (raw, json)
Hash identifier: YETcEnem5tuAQc/1dTN3ffkrT1L4Yh487RzmW6x//Ao=
Subject key identifier: 8B:4D:84:70:89:EE:39:1D:ED:34:56:06:CD:14:E3:6D:CD:6B:82:E8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CFB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i02EcInuOR3tNFYGzRTjbc1rgug.roa
Signing time: Sun 07 Feb 2021 11:47:41 +0000
ROA not before: Sun 07 Feb 2021 11:47:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 175.183.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3323 (0xcfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8B4D847089EE391DED345606CD14E36DCD6B82E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:8d:30:b4:0f:93:4e:e0:a1:4f:6d:50:02:
0e:1d:24:de:a0:c0:71:97:33:9d:28:88:58:89:ad:
ac:15:1d:f6:78:e1:08:c8:94:87:f8:08:24:5d:fc:
93:26:1f:06:87:11:61:67:95:2c:60:5d:9c:cc:44:
99:cf:fd:da:f4:72:c1:27:2c:13:84:aa:e9:db:b3:
d5:a8:8a:5c:05:5c:01:92:48:de:4b:61:7c:9d:da:
41:ee:96:95:db:56:b5:54:d6:f0:17:50:8e:0c:65:
43:0e:11:c1:ec:1c:db:49:9b:c7:ef:74:d2:fd:25:
57:d7:e5:97:0d:ec:72:fb:1d:c4:d9:3b:64:27:fa:
fe:d0:dd:b1:80:2a:6d:75:0b:45:9b:cd:84:20:6e:
28:a8:22:ac:3b:08:95:f7:a4:9d:4b:16:a1:03:3a:
db:70:df:87:f7:d0:f1:3f:c6:ca:15:e0:26:85:87:
b0:0c:9d:c6:e1:5c:ab:a0:ff:73:d9:86:a5:22:05:
b6:22:fe:50:a9:8b:7d:4d:28:08:ee:32:3b:0b:09:
cb:42:43:b0:7e:a2:f0:24:30:50:9e:47:f1:1d:e2:
97:41:5e:f9:68:18:4b:ed:ea:2c:4d:74:28:7f:02:
3f:fb:11:bf:34:5f:84:da:6e:a8:a1:34:f8:f7:97:
97:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4D:84:70:89:EE:39:1D:ED:34:56:06:CD:14:E3:6D:CD:6B:82:E8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i02EcInuOR3tNFYGzRTjbc1rgug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/17
Signature Algorithm: sha256WithRSAEncryption
17:94:6c:32:f8:e4:07:18:96:e4:b4:eb:f4:dc:73:31:fe:64:
4f:c4:c8:6d:e8:d7:98:0d:2d:ad:75:06:bf:f7:8e:b4:e9:29:
3a:3e:ca:fd:28:f9:40:fc:a4:b3:63:3c:83:81:09:7b:1a:a0:
17:40:35:26:b7:1d:42:2c:d4:65:99:dd:00:df:ca:bd:fd:34:
d5:aa:cd:cb:f6:bd:43:75:4e:f2:9e:f5:85:22:9e:48:05:eb:
59:67:50:31:e8:32:84:3f:1b:9c:c5:1c:e5:c7:94:1b:65:54:
ef:d7:a7:6b:53:84:6a:dd:89:f2:13:eb:fd:2d:4f:b8:a4:83:
d0:8c:a6:a1:31:13:a0:82:73:51:ca:eb:df:61:f0:1c:44:ce:
c1:11:21:d9:29:0f:5e:73:80:e3:d6:b7:d6:d8:01:44:bd:e1:
43:ae:64:b4:7d:04:e1:c2:92:7c:99:3c:91:6d:d0:93:54:7a:
c3:a4:2a:b5:ab:a1:6a:46:fe:2c:bf:17:28:d7:49:e5:e8:d7:
80:ad:4d:7a:8b:2b:c5:61:ad:7c:d4:3c:3e:77:b9:15:6d:5a:
34:20:ef:31:5d:7f:66:fb:36:ac:c4:97:c4:32:df:3e:1d:9f:
ba:51:ce:c7:9d:b9:a2:6c:bf:1f:7a:54:94:3d:4f:90:59:8a:
f5:89:04:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org