Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kDgxGd8XSmH6-dmNg1iyAOO-tmk.roa
File: kDgxGd8XSmH6-dmNg1iyAOO-tmk.roa (raw, json)
Hash identifier: 7sKQ3fDHm1Jw5Dk+N4V64BwlBnabXC2GA68OjOnaV0o=
Subject key identifier: 90:38:31:19:DF:17:4A:61:FA:F9:D9:8D:83:58:B2:00:E3:BE:B6:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C09
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kDgxGd8XSmH6-dmNg1iyAOO-tmk.roa
Signing time: Sun 07 Feb 2021 06:45:09 +0000
ROA not before: Sun 07 Feb 2021 06:45:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.78.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3081 (0xc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:45:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90383119DF174A61FAF9D98D8358B200E3BEB669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:dd:10:a3:30:69:d5:62:3a:ba:7c:53:20:84:
12:dc:f7:06:86:03:a4:82:f3:3a:8b:b6:14:07:0c:
59:a1:29:e8:08:87:cd:25:41:d0:83:5b:bc:5d:5d:
3e:7f:33:4b:72:ab:2f:56:3e:83:d6:cf:b6:a1:4d:
6f:49:67:23:06:2c:e0:63:12:17:2b:56:7e:6a:14:
fd:6a:af:82:9a:a7:03:f0:e5:12:b9:7c:f2:6e:f0:
a5:ad:c7:a9:20:6a:ca:51:ff:bf:03:7b:65:9c:3f:
02:8b:d2:61:6d:c7:b8:c7:dd:3a:39:40:90:08:cd:
71:cc:5a:32:c0:29:d6:0d:e2:d5:94:ba:0c:b3:9f:
e5:62:9f:14:5d:cf:69:10:b4:8e:3a:4f:8e:0c:a3:
9a:b8:5f:69:69:fc:a5:e1:d8:1d:c4:8a:fe:3b:a8:
95:6f:e5:ce:9c:5d:eb:5b:82:86:91:77:e1:ae:df:
44:62:77:fd:e9:dd:72:7a:06:04:c0:a9:b6:91:dc:
f9:07:73:b5:2f:5f:03:d9:31:5f:c6:89:54:7d:a9:
5b:3b:6b:ed:b7:fe:f7:30:6e:34:09:0c:8c:cb:35:
6c:96:7c:20:75:e9:75:f9:3b:20:e7:e3:cb:cf:90:
2f:72:12:cc:80:e7:65:de:4d:f6:88:50:1c:af:f2:
c8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:38:31:19:DF:17:4A:61:FA:F9:D9:8D:83:58:B2:00:E3:BE:B6:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kDgxGd8XSmH6-dmNg1iyAOO-tmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.160.0/19
Signature Algorithm: sha256WithRSAEncryption
70:c7:d5:76:61:0f:44:f3:c9:ca:a6:3e:f2:de:a0:ea:96:95:
d6:56:be:74:f0:64:91:43:e5:b9:53:9e:1f:b9:e9:76:25:4d:
f4:31:a6:86:d0:d6:57:fc:d5:2d:06:24:8e:e4:9c:2a:84:1b:
90:45:8c:54:19:4a:d8:d0:6e:69:19:ec:fa:34:24:4a:5f:85:
5c:11:3b:67:33:c1:56:b7:f4:36:51:43:f6:c4:eb:a9:04:70:
37:6b:f9:d7:86:9e:0e:76:c6:81:0a:b7:a2:00:14:ec:d2:66:
d9:56:71:56:71:e9:8e:4c:12:f6:68:39:51:20:af:3e:66:c0:
1f:31:79:04:4f:b3:f6:5e:cc:a5:36:fe:c8:94:57:8b:8a:c4:
d8:cf:ec:92:94:d8:dd:b4:bd:a7:b9:66:a8:bf:fd:4a:b9:72:
3b:09:73:64:6e:b5:7e:95:40:44:f3:93:21:fc:70:d0:dc:78:
34:f2:3c:41:bd:5a:97:ac:e9:4c:79:10:12:ea:bd:43:e9:95:
bf:5f:24:97:d8:c6:25:69:e0:03:e9:0a:1d:24:1a:f2:d8:b9:
92:39:03:48:36:dc:c2:0e:58:f7:6a:f7:6b:60:ae:e7:7a:72:
71:e8:86:79:66:3d:22:b4:5a:72:14:b2:76:12:0e:ab:58:49:
86:66:87:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org