Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jtb5fds-8foiyR4qzMGavCFbuLo.roa
File: jtb5fds-8foiyR4qzMGavCFbuLo.roa (raw, json)
Hash identifier: Mjcsh4eO2qDk2DiYtvlM5Z6pEVEFhbZMOrE9v1iB96Y=
Subject key identifier: 8E:D6:F9:7D:DB:3E:F1:FA:22:C9:1E:2A:CC:C1:9A:BC:21:5B:B8:BA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BBF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jtb5fds-8foiyR4qzMGavCFbuLo.roa
Signing time: Sun 07 Feb 2021 06:33:37 +0000
ROA not before: Sun 07 Feb 2021 06:33:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3007 (0xbbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:33:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8ED6F97DDB3EF1FA22C91E2ACCC19ABC215BB8BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:89:bc:0a:78:65:f4:c6:df:91:96:18:be:52:
c3:1d:6b:0e:a3:3d:ce:85:d6:b9:d0:ef:a5:17:a0:
5a:e0:35:94:15:70:92:bd:56:b5:ab:36:67:9a:20:
e9:b4:03:59:9e:ec:48:78:f1:af:87:71:d1:7f:67:
da:29:17:10:dc:99:07:80:a1:4c:c9:1c:62:85:68:
c8:3f:4e:87:be:f0:50:a3:96:42:cc:5a:4e:f8:82:
a1:ae:cb:71:e5:a9:3c:da:06:d3:e7:f1:11:0f:57:
89:43:1a:12:49:e6:f2:ba:de:b0:0b:19:1c:f2:df:
a2:62:15:b5:1c:8a:f9:d7:c7:ae:7d:09:f8:6e:12:
54:42:a8:91:a1:ec:b9:1d:e5:87:ec:e1:ad:d1:13:
da:72:2b:0e:57:7c:7c:8e:1f:6c:37:01:ee:f3:e5:
ab:e5:89:01:f3:9f:97:4f:f9:f9:b1:27:f0:4d:f0:
c7:e2:72:74:a5:0e:8f:73:de:14:9b:80:25:8a:c0:
a4:88:5f:fa:b8:12:f5:e5:b5:78:b9:7b:45:29:f6:
ef:ba:51:aa:d6:ab:c2:cd:1e:9d:be:10:60:36:02:
f2:70:31:a2:23:7d:f7:19:d1:08:f1:99:dd:01:63:
91:85:10:fc:b5:49:9b:a8:85:09:4a:9e:e5:8a:7d:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D6:F9:7D:DB:3E:F1:FA:22:C9:1E:2A:CC:C1:9A:BC:21:5B:B8:BA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jtb5fds-8foiyR4qzMGavCFbuLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:42:15:00:00:97:ca:0d:be:aa:57:3c:ac:db:02:c3:1c:62:
31:41:11:36:81:e1:0d:e3:27:ee:22:5a:2b:ce:91:88:bc:47:
eb:cc:cd:0b:53:85:0c:81:5d:3b:ab:88:a0:a6:45:ad:0b:2a:
32:71:b9:af:54:66:ba:b7:94:60:10:ea:17:29:51:0d:90:9b:
66:46:49:a5:0e:95:fb:b1:0c:41:1e:56:36:c0:c8:b8:bb:a3:
fe:9d:2c:ab:b6:d1:36:11:78:4c:4b:d5:a6:6d:3b:63:e0:16:
0f:bd:03:ea:23:44:0d:b0:e9:8a:a1:ab:a6:bb:2a:ff:b6:62:
70:44:27:87:4d:f4:34:33:e4:8e:dd:8e:ec:fd:9f:54:da:51:
e5:e7:62:24:dd:dc:b1:5d:9e:56:82:24:2f:09:93:74:86:75:
76:f2:5a:0e:4f:a4:42:5b:35:38:98:d5:2c:a0:42:ad:84:ac:
2e:1a:61:3c:35:b9:c5:36:d4:72:87:90:b3:d1:a2:d7:35:e3:
49:42:0b:95:80:6b:2d:af:fa:86:7b:5e:fb:f4:5b:ce:30:f4:
a7:cf:ec:12:09:2b:76:3d:46:8e:dc:d0:ca:0a:8a:96:21:70:
d1:08:52:62:90:8b:63:3a:dc:f6:00:34:95:59:78:89:44:6b:
30:8b:0b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org