Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iMqKyH_0FIS00Zh-TKgS2ECY6HA.roa
File: iMqKyH_0FIS00Zh-TKgS2ECY6HA.roa (raw, json)
Hash identifier: Myu1tTZLElH1PbicUwSO0+BvbJoXplQgVLP9sYuVeIs=
Subject key identifier: 88:CA:8A:C8:7F:F4:14:84:B4:D1:98:7E:4C:A8:12:D8:40:98:E8:70
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B96
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iMqKyH_0FIS00Zh-TKgS2ECY6HA.roa
Signing time: Sun 07 Feb 2021 06:26:14 +0000
ROA not before: Sun 07 Feb 2021 06:26:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 45.64.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2966 (0xb96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:26:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=88CA8AC87FF41484B4D1987E4CA812D84098E870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b3:20:ef:bc:0f:94:2b:18:df:68:0b:04:4a:
fa:6a:fa:03:c4:94:8e:2d:40:14:0a:fb:d4:10:bd:
87:3c:f6:4d:b0:b7:e1:3e:b8:85:5c:bc:8f:28:cf:
2f:a9:85:d6:4f:a4:4b:98:b0:58:78:53:71:de:c9:
84:06:55:9e:6e:f2:81:da:2f:e3:82:b5:bc:7b:09:
5d:2b:1c:1f:9c:ea:56:5c:4c:e3:90:76:aa:03:7a:
f8:92:db:51:b4:8e:a8:98:8e:66:f0:48:f1:76:1b:
8e:8b:69:02:9f:02:53:fd:37:0a:0c:3d:a5:aa:d9:
f7:ed:bb:d5:af:e6:13:ea:28:35:a6:a4:1d:fc:6d:
ad:72:48:c9:fb:b3:02:6f:d4:26:bd:9f:47:b5:fe:
15:39:79:86:bb:8e:13:34:55:5f:b8:4a:dc:97:5e:
7e:84:ef:1a:2a:58:18:9e:5c:15:ca:a4:15:c4:66:
d2:c1:91:b5:6b:4f:fd:fd:59:29:80:d8:e6:d3:be:
05:20:1d:22:22:83:72:a3:7e:26:ed:34:32:06:30:
06:13:1e:0a:3f:c0:a9:58:c0:2e:0e:5d:f5:9a:28:
f4:02:5f:ef:e3:17:79:96:1b:50:19:cb:08:02:ec:
76:9f:44:ca:f9:72:d0:34:68:c4:66:9d:95:f5:a4:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CA:8A:C8:7F:F4:14:84:B4:D1:98:7E:4C:A8:12:D8:40:98:E8:70
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iMqKyH_0FIS00Zh-TKgS2ECY6HA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.228.0/22
Signature Algorithm: sha256WithRSAEncryption
25:63:f0:83:19:95:4d:c6:0a:78:ee:98:e2:c8:91:d7:05:14:
74:a4:f7:d9:a4:aa:2f:97:c4:a8:fa:57:33:5a:ff:a8:5f:13:
12:36:cf:b2:09:6d:2b:88:60:e3:a1:15:af:bf:d5:0f:ce:ab:
a1:1d:74:57:83:f1:a7:21:5c:b2:13:e0:43:d1:4d:ac:a6:d5:
d2:e2:0d:db:56:d5:c2:4b:0f:48:86:b1:9b:e6:51:42:23:53:
77:9c:1d:58:79:19:78:ce:44:4a:22:25:a5:cd:f0:ff:71:2e:
69:a7:d9:b8:ad:47:7d:e4:fe:b5:7b:81:b4:de:68:b3:c4:ad:
3a:0a:c6:10:29:da:9f:0a:af:7c:56:d2:41:61:24:f5:85:66:
f9:8e:8a:ec:11:a8:30:7e:91:d2:40:61:a4:4d:49:5c:5d:29:
99:24:8b:ee:c5:1c:cb:da:69:e3:1c:b8:d0:18:72:c3:f1:aa:
14:91:b3:20:7b:e7:83:b5:8d:19:e7:6e:28:03:69:4f:80:8d:
60:af:4b:b2:71:54:32:6f:70:85:c2:da:8d:a4:51:74:57:d0:
d6:89:19:86:e4:67:cd:e5:1b:3e:11:63:87:80:b5:7e:d2:49:
12:49:84:e9:af:99:54:b8:e1:26:02:d4:ac:67:a1:ef:1a:78:
0d:70:a8:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org