Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jrsDl3BPJpwSbKpdtV7Rh2tRkCM.roa
File: jrsDl3BPJpwSbKpdtV7Rh2tRkCM.roa (raw, json)
Hash identifier: zZFsjzpBAKjrcNgbML17pAMhM9szViRk4WhqNwHnQzg=
Subject key identifier: 8E:BB:03:97:70:4F:26:9C:12:6C:AA:5D:B5:5E:D1:87:6B:51:90:23
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D03
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jrsDl3BPJpwSbKpdtV7Rh2tRkCM.roa
Signing time: Sun 07 Feb 2021 11:47:51 +0000
ROA not before: Sun 07 Feb 2021 11:47:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3331 (0xd03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8EBB0397704F269C126CAA5DB55ED1876B519023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:60:2e:6b:f9:d2:03:15:18:00:d9:88:90:2b:
ab:4e:5d:6e:10:4e:54:34:ea:b8:6c:01:67:7c:80:
df:4f:29:7c:dc:1f:d8:ab:2a:08:fe:ac:9e:22:c8:
35:24:08:ea:00:9d:a3:0e:05:be:ac:a6:08:17:86:
7a:4d:21:32:be:82:1f:48:53:72:e3:1a:c0:c5:33:
d0:4b:08:d0:19:56:0e:95:d0:c1:f8:09:64:be:df:
34:a0:00:05:bc:1e:08:04:31:01:d6:73:64:3f:35:
60:f0:ea:0b:65:ba:d2:81:94:40:df:5b:e2:01:bb:
ef:f3:05:37:60:7d:84:40:4f:24:97:e3:07:98:7c:
21:74:b7:7a:2e:cc:30:04:c8:7f:96:63:67:7b:5e:
e4:86:ff:8a:fe:0a:0f:75:29:ef:28:a3:a9:f3:67:
b2:c3:51:5d:32:28:9b:00:6b:42:a0:f5:62:4f:e6:
a1:96:8f:78:c8:c0:d3:df:c6:d5:92:cf:ff:2d:46:
40:2e:1a:14:19:f4:d0:5a:2d:a5:fa:cb:b3:9d:0c:
93:08:5d:f6:1f:b7:3f:57:60:ee:39:a2:4e:94:8b:
b7:e5:3b:82:7b:5b:2a:e9:10:d0:2f:e9:a8:28:9b:
6e:ba:31:e0:1a:fb:0e:fd:6c:16:3f:62:95:19:e9:
5c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:BB:03:97:70:4F:26:9C:12:6C:AA:5D:B5:5E:D1:87:6B:51:90:23
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jrsDl3BPJpwSbKpdtV7Rh2tRkCM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.56.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ce:02:b8:22:99:aa:9f:4b:98:98:16:d5:fc:65:53:df:fe:
2d:ba:9e:ed:2d:3f:6a:67:95:5f:b3:d3:4d:19:64:92:fc:54:
1d:cd:7b:f5:6f:8b:fd:0f:b9:17:1f:e7:c7:dd:fa:c3:70:96:
b1:c2:93:ad:d8:55:87:5c:2c:64:78:b9:08:ba:5c:fd:34:06:
c3:e2:3f:29:83:5a:1b:62:61:e1:3d:fc:93:6b:4b:d7:21:97:
7b:65:fa:63:20:13:7d:03:68:91:46:f7:09:57:4c:82:75:ee:
58:27:9b:64:d0:bb:80:5a:ba:c4:bd:97:3f:26:ba:21:bc:83:
41:7b:13:9c:6c:c8:8b:ad:af:22:4b:57:9c:04:4d:02:88:7e:
98:cf:33:b8:44:d1:e0:53:61:53:c7:c9:b9:4b:02:63:5e:ba:
3c:b7:36:fa:75:54:f7:34:44:4a:db:8e:97:aa:38:80:2a:bc:
19:c5:68:51:64:e2:02:ec:e5:b6:a7:43:f1:5c:89:65:0b:d7:
a6:6d:ae:2e:bd:d0:8e:9b:61:c5:3f:99:96:0a:0e:ef:84:9e:
00:23:ab:6c:d4:0b:43:07:f9:fc:94:a4:58:a6:98:95:d3:63:
7f:eb:c5:06:3c:fd:76:26:d8:58:9a:0c:a5:a9:cc:01:c5:02:
cf:74:3d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:00 2023 by rpki-client on console-ams.rpki-client.org