Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jO6F0nbuuJ2MS0s8KXF8HhwfW6k.roa
File: jO6F0nbuuJ2MS0s8KXF8HhwfW6k.roa (raw, json)
Hash identifier: XT6AO2CA1Xh73Uv4XQ5VR39EPJ0AOE0U2Rwn3QJLCXQ=
Subject key identifier: 8C:EE:85:D2:76:EE:B8:9D:8C:4B:4B:3C:29:71:7C:1E:1C:1F:5B:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D09
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jO6F0nbuuJ2MS0s8KXF8HhwfW6k.roa
Signing time: Sun 07 Feb 2021 11:47:58 +0000
ROA not before: Sun 07 Feb 2021 11:47:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3337 (0xd09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8CEE85D276EEB89D8C4B4B3C29717C1E1C1F5BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:43:aa:ca:cd:36:d2:cf:aa:e0:30:01:61:84:
c9:90:af:b2:17:77:e3:da:e0:13:74:4f:6a:a2:3e:
31:99:60:6f:33:dc:51:a5:22:5d:10:57:10:9f:46:
c0:55:9f:de:4f:16:be:c3:f1:e0:7b:1a:85:b6:a2:
a3:de:c3:83:f4:86:74:18:15:00:d0:30:f4:0a:0f:
49:28:62:bf:af:57:94:3b:dc:bb:24:8f:80:6a:74:
c7:19:ee:51:ea:0e:7a:50:13:e0:27:ef:ba:6f:10:
01:b6:0c:79:59:1d:5d:54:22:3f:d4:d4:a1:28:65:
0f:10:bc:8d:88:b4:39:24:d5:c5:5d:6f:bb:c5:10:
c1:30:c5:40:37:8d:a3:36:a9:90:95:14:4d:47:ed:
12:f2:0d:87:e5:53:df:8d:2d:5b:28:f3:0d:d6:bd:
cf:58:1a:d2:35:f2:95:7c:e6:81:f9:62:55:a2:fa:
08:04:08:f7:ba:9a:06:8f:26:9f:d0:99:90:1e:2e:
42:7e:ad:ae:f3:be:e0:fa:cf:cd:5e:78:f6:d8:52:
98:56:8b:11:0f:fb:3a:2d:56:6d:c2:83:3f:90:94:
32:99:ee:18:66:a3:93:ba:af:30:ad:8b:48:f9:61:
53:2f:6f:67:1a:25:9b:e5:42:2d:dd:29:fb:88:f3:
1a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EE:85:D2:76:EE:B8:9D:8C:4B:4B:3C:29:71:7C:1E:1C:1F:5B:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jO6F0nbuuJ2MS0s8KXF8HhwfW6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:37:c0:d2:a7:f1:4f:9d:fd:f4:f8:3f:f4:c8:76:38:29:90:
d8:e9:60:f4:6f:5e:5b:44:af:cf:d1:76:7a:c2:94:0b:4e:e9:
86:ae:8d:2c:81:ed:80:8b:f3:f8:cf:28:b9:d3:a3:e0:5d:40:
ac:16:87:4b:ac:b9:f2:57:84:94:3d:d1:ea:c4:d3:5c:69:f9:
6c:3b:8d:c9:4b:bb:77:5e:62:fd:30:fe:ea:c5:8a:a5:9f:b8:
eb:c9:c6:92:ae:39:07:75:49:fb:1b:3e:3c:35:48:13:fd:93:
e9:28:e1:39:d3:37:00:bd:48:73:87:f1:61:a3:2a:81:1c:d3:
53:f0:78:ce:18:89:33:57:1e:b6:84:de:10:7a:61:9f:0e:91:
e0:ad:3e:ac:87:7b:92:2f:25:31:d9:04:7b:80:23:00:b3:dd:
4b:d7:b9:56:34:47:63:2c:ae:05:3a:da:f8:8f:1d:f1:02:0b:
a7:f1:e9:a7:84:1c:1e:00:72:3a:49:74:f9:38:7e:eb:df:05:
38:84:7f:c4:f8:ed:cf:21:44:54:e9:ee:9f:0f:bf:55:5f:bf:
1d:da:ea:34:bd:79:33:d4:52:06:0e:6c:95:8f:3e:4c:08:38:
0e:ff:45:49:43:88:08:9e:5e:eb:ad:92:8c:e0:86:35:6a:bc:
65:6e:72:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org