Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/k8MqKSunBzhE--n6gHk_mn9gznc.roa
File: k8MqKSunBzhE--n6gHk_mn9gznc.roa (raw, json)
Hash identifier: j3cXxfpByenZrb3bB0TFGvX0IYODfHYT8mrUWroyBZI=
Subject key identifier: 93:C3:2A:29:2B:A7:07:38:44:FB:E9:FA:80:79:3F:9A:7F:60:CE:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D07
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/k8MqKSunBzhE--n6gHk_mn9gznc.roa
Signing time: Sun 07 Feb 2021 11:47:56 +0000
ROA not before: Sun 07 Feb 2021 11:47:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3335 (0xd07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=93C32A292BA7073844FBE9FA80793F9A7F60CE77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ab:54:28:e3:92:31:c1:a9:ab:e1:a7:2d:fd:
07:10:90:9e:69:ec:6f:0b:09:5e:af:08:b6:0d:27:
f4:6f:4e:09:a9:5a:d2:5a:fa:0a:f1:49:7b:f1:26:
2f:59:ca:61:56:8e:19:6f:b5:5a:a1:47:be:50:32:
75:3b:15:ff:1f:cf:7d:e1:7a:4e:44:9f:7a:68:01:
62:ad:6a:99:6f:df:00:c9:8e:24:c0:d7:ca:2f:aa:
ab:5c:69:a1:ad:f0:4d:fc:5e:bb:88:1d:45:40:b1:
f8:ad:39:38:da:ba:9a:44:ea:81:fd:e7:e0:f6:9e:
70:0f:88:46:1a:3f:5d:e6:aa:75:b7:bf:bf:aa:54:
a9:18:97:59:d4:d3:d8:9b:bc:6d:0c:e8:55:b6:e0:
e0:74:5e:52:e6:73:f5:89:49:38:82:61:d4:fd:4d:
d3:77:19:a6:cf:59:20:ca:df:72:0f:a5:2f:c6:5d:
63:af:f9:aa:12:7f:0a:2b:f6:08:0b:a6:de:65:30:
ed:cc:3f:f2:dd:ec:b4:33:4a:db:42:07:0b:5a:89:
74:84:1f:65:6c:90:12:fa:ba:e4:bd:13:08:13:d5:
73:22:db:97:93:01:9a:d4:ca:6d:d9:69:74:48:01:
12:61:66:ae:6f:44:52:41:d4:2a:2b:84:ee:d1:19:
47:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C3:2A:29:2B:A7:07:38:44:FB:E9:FA:80:79:3F:9A:7F:60:CE:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/k8MqKSunBzhE--n6gHk_mn9gznc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:17:97:82:3c:48:ef:04:dc:23:eb:b2:70:47:3a:3c:ae:65:
61:9f:a9:62:e3:92:08:c1:4c:dc:b6:93:ac:7d:6f:d8:8c:bb:
fc:6e:05:a9:70:f9:9b:f6:f2:06:0d:ae:7b:87:52:5a:94:0b:
7a:27:f0:2a:64:17:5e:5d:47:f6:df:c6:06:4c:7c:3b:2f:08:
b0:ef:01:eb:92:b2:66:ee:f8:3f:52:a2:4f:f6:da:a3:8c:04:
77:dd:2d:b8:1a:bc:ed:15:22:a5:22:0d:6b:85:3a:ab:da:a5:
66:f4:87:bd:c0:99:7f:65:92:df:9e:b0:2f:26:15:25:b1:27:
a3:5e:dd:7f:57:12:7a:a3:00:cf:10:b0:80:2c:ea:4f:dd:1e:
67:f7:9a:80:39:02:02:f2:cd:0b:28:2a:21:a0:f7:e8:bb:bf:
12:14:41:0b:ff:0f:fa:e8:08:f1:75:df:9a:89:84:3d:e4:99:
01:35:92:fd:e1:e1:a7:69:c2:37:f3:31:cd:d3:15:13:58:ef:
0c:24:c6:34:82:fe:2e:94:06:ce:b4:cc:62:e6:97:7f:55:53:
da:8e:76:b3:95:db:96:1f:3e:4f:a1:25:d8:01:9e:df:ea:58:
74:88:6e:68:b2:26:25:4b:b8:4e:21:a9:4d:83:06:b8:46:57:
a7:67:33:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org