Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ivPr6V6RpT51ZqW7sql5btGSEj0.roa
File: ivPr6V6RpT51ZqW7sql5btGSEj0.roa (raw, json)
Hash identifier: OoMoZQdb8FP9PVS7k2ws7J7+Eyw9soxj4h+0716WtmU=
Subject key identifier: 8A:F3:EB:E9:5E:91:A5:3E:75:66:A5:BB:B2:A9:79:6E:D1:92:12:3D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E91
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ivPr6V6RpT51ZqW7sql5btGSEj0.roa
Signing time: Wed 29 Sep 2021 02:43:45 +0000
ROA not before: Wed 29 Sep 2021 02:43:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 220.229.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3729 (0xe91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8AF3EBE95E91A53E7566A5BBB2A9796ED192123D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5d:e5:51:45:09:b2:16:18:3e:1d:02:a8:a5:
3f:fd:70:26:30:42:08:35:3a:9d:86:0b:d8:fe:e3:
80:e8:f3:e9:31:b7:a2:bd:db:11:a3:11:2d:3d:e6:
04:8c:2a:32:43:32:d3:5d:11:a5:42:a0:94:a4:86:
a5:69:be:e2:35:e8:18:58:0c:1b:05:b2:05:11:57:
5d:b7:86:e9:c0:57:43:ce:9c:4f:0e:3a:39:77:14:
5d:3a:f6:a4:3d:5d:bf:df:9f:a7:1b:66:1c:81:79:
7b:35:0b:b5:54:19:5f:8b:5f:50:8d:c6:93:3f:77:
d4:9a:a4:52:47:19:dd:01:63:59:94:e1:3b:86:10:
ed:37:cc:26:62:7f:e1:39:1d:72:64:74:33:b0:b5:
46:45:a8:e7:fd:46:17:8b:0e:cb:b1:ef:09:09:d6:
d8:c6:e1:30:48:aa:66:06:75:c1:65:47:a3:3c:5a:
cd:4a:ef:35:08:ae:38:0b:14:8b:1d:97:38:b9:c2:
32:3e:40:1b:7f:4f:f4:31:44:01:a1:42:0d:16:29:
98:13:fb:97:8b:c7:ef:58:2b:ff:ae:be:6d:dd:34:
dd:8b:84:f7:8a:ca:e1:ce:b9:fb:10:79:10:e6:4d:
a6:99:55:e1:27:e1:90:69:94:44:58:3e:dd:0f:cf:
0b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F3:EB:E9:5E:91:A5:3E:75:66:A5:BB:B2:A9:79:6E:D1:92:12:3D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ivPr6V6RpT51ZqW7sql5btGSEj0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.96.0/19
Signature Algorithm: sha256WithRSAEncryption
4d:e7:2f:b0:0a:e6:c1:76:64:93:a1:e0:33:da:14:98:cc:ba:
51:b9:1f:fe:37:73:61:9d:60:86:ce:ff:80:8c:57:3e:7f:07:
dd:64:b6:f7:14:98:a2:5d:93:02:28:5e:29:04:3c:47:51:1f:
db:01:f0:6d:fc:f8:64:8a:ce:89:97:37:06:cc:f3:53:d2:45:
74:33:35:91:e1:df:19:a7:a6:88:b4:ab:f2:18:40:e4:f5:e1:
a3:4f:ed:28:c0:49:ef:fb:75:97:12:78:78:26:27:b1:51:a4:
08:0b:fd:b9:55:27:fd:7f:08:d1:52:00:d5:0a:2b:3d:e8:c9:
3a:bd:5b:a3:ca:3f:ea:06:d3:f5:ff:12:39:ff:b8:d4:47:d7:
b9:00:5a:c2:4b:dd:37:1d:cb:e8:e2:b5:6f:81:81:e6:03:f1:
86:cf:9b:4c:e6:97:25:67:6d:ec:74:86:2f:11:b9:fc:03:c0:
b3:14:cc:16:ea:56:bb:fd:be:12:6a:64:19:54:8e:9f:d3:b0:
e6:7b:36:86:f1:82:19:cc:13:57:91:7e:af:7b:e4:fb:5f:de:
b3:09:16:a7:49:26:4a:a3:7b:ce:db:fb:ac:9e:ec:f7:75:c3:
7a:58:d5:a9:1f:3c:c6:39:cf:c1:66:21:58:32:9a:29:75:eb:
18:6a:1b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org