Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/i7ASc0c8ftnY5Au5dBJ1Rdl5jy4.roa
File: i7ASc0c8ftnY5Au5dBJ1Rdl5jy4.roa (raw, json)
Hash identifier: PQfzvir6kW9ILYgP/oarUz/28SxHP1SOZdvLzwj0J8I=
Subject key identifier: 8B:B0:12:73:47:3C:7E:D9:D8:E4:0B:B9:74:12:75:45:D9:79:8F:2E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D0F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i7ASc0c8ftnY5Au5dBJ1Rdl5jy4.roa
Signing time: Sun 07 Feb 2021 11:48:06 +0000
ROA not before: Sun 07 Feb 2021 11:48:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.51.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3343 (0xd0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8BB01273473C7ED9D8E40BB974127545D9798F2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:e5:63:12:15:43:68:1a:23:05:f6:72:70:
fe:d4:4c:bd:25:bd:77:0e:df:3d:2d:85:71:5e:a1:
3f:6b:e7:27:72:eb:7f:f4:7d:b6:1d:b1:c0:78:a7:
22:00:d1:26:1c:8b:dd:3e:9e:4b:e7:ea:42:f9:1d:
32:b0:1e:ed:f4:2e:c8:b4:6c:79:2d:69:94:2e:91:
0f:3c:19:48:e3:ad:00:6f:0c:0b:60:db:b9:d9:77:
a2:ff:4e:20:a2:03:48:ac:87:9d:6f:ab:f0:f5:81:
75:91:28:5f:c0:9e:9e:9d:75:86:05:27:64:95:13:
55:3d:14:dc:24:36:74:9c:9c:af:ed:83:05:59:22:
b1:30:39:c0:2f:bd:4d:09:cd:6e:86:5f:b0:f3:15:
6d:1a:14:b8:84:03:44:57:f0:2a:62:f9:a3:a8:3a:
06:dc:54:aa:23:1b:99:03:84:d7:d8:84:65:af:5d:
75:2c:70:44:98:f0:2f:b0:cb:56:8e:6d:b6:19:ff:
3b:8e:46:cd:2a:bb:35:98:15:fc:f8:cb:29:1d:4b:
e1:1d:91:52:dc:b7:65:47:78:ae:c8:aa:a3:ea:94:
42:1e:ab:bd:2a:42:af:0e:4b:6e:a2:51:2e:c2:dd:
c6:e2:f5:ce:4e:32:37:19:70:0b:23:c7:76:5b:fb:
73:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B0:12:73:47:3C:7E:D9:D8:E4:0B:B9:74:12:75:45:D9:79:8F:2E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i7ASc0c8ftnY5Au5dBJ1Rdl5jy4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.180.0/24
Signature Algorithm: sha256WithRSAEncryption
83:88:7e:ba:50:cf:a1:17:ad:dc:c1:70:aa:83:85:b7:38:76:
57:90:d8:a6:0d:a3:bc:cd:03:0c:bf:11:0b:5b:c7:9d:2a:4e:
ac:cc:72:da:24:79:15:c2:2d:6f:58:00:39:4d:66:0f:e4:7e:
82:35:8b:6f:d4:84:fc:04:5c:be:da:47:5b:62:fe:e1:50:01:
90:88:80:8d:d7:d8:52:2e:61:90:8e:42:ff:b7:49:80:53:d0:
06:07:af:0a:26:15:a1:f1:a5:56:72:d4:18:c3:53:34:e4:48:
01:f8:ad:29:93:78:0f:47:00:5b:01:e0:8c:d4:73:e0:4c:7f:
b0:3b:0e:b0:49:92:99:46:6c:f9:cc:ff:7e:d4:33:b4:5f:e1:
91:14:ad:fe:a6:bc:54:e4:db:23:03:9f:82:6e:10:a6:57:79:
95:1f:2b:0e:24:69:a6:81:06:25:3a:f1:c6:03:3b:06:90:c9:
8f:20:40:24:3b:ba:7b:5c:68:e9:c4:58:d0:30:39:2b:40:a9:
f9:7a:a8:e8:6a:41:37:5e:47:4e:1b:15:92:5c:a4:80:4c:7e:
da:91:87:ed:3c:f3:7e:44:fc:c6:8e:8d:39:29:30:01:cf:98:
cd:21:da:8a:e5:3c:67:f6:77:3e:69:67:5c:ac:76:ff:da:2c:
27:ec:e9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org