Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kWtIHv6CGSUZ9mRr6mSwR_ixilU.roa
File: kWtIHv6CGSUZ9mRr6mSwR_ixilU.roa (raw, json)
Hash identifier: nxqe4tQM94P9A2XBK34UByF/ZjYUnlRIM8lQhNbEqYA=
Subject key identifier: 91:6B:48:1E:FE:82:19:25:19:F6:64:6B:EA:64:B0:47:F8:B1:8A:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D11
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kWtIHv6CGSUZ9mRr6mSwR_ixilU.roa
Signing time: Sun 07 Feb 2021 11:48:08 +0000
ROA not before: Sun 07 Feb 2021 11:48:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.51.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3345 (0xd11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=916B481EFE82192519F6646BEA64B047F8B18A55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a3:64:e4:11:a4:60:d8:db:6f:f4:32:f5:61:
f8:4e:d5:97:d9:51:02:32:3d:1b:d7:3f:b8:cd:aa:
28:cd:46:bb:91:48:4b:66:d9:89:a5:43:03:de:95:
39:56:96:ef:6e:fa:89:1e:37:29:2d:11:fc:04:95:
da:1c:1d:8b:ee:8b:25:c4:20:f0:ca:2a:ad:d3:df:
f4:59:80:03:cc:ed:75:1d:0a:95:9b:aa:83:16:f0:
6f:81:54:e3:a1:37:7c:63:c0:25:de:c6:ff:4f:e4:
9c:28:4e:ba:8d:b4:86:95:06:fa:c1:6e:df:59:b0:
a1:13:10:a5:4e:cd:95:23:21:85:fe:0f:31:93:48:
df:71:48:9d:ba:62:f6:50:dd:91:d4:c8:62:ab:5d:
31:00:86:76:51:7b:2a:3b:a2:79:cd:98:30:16:84:
c8:0e:ac:df:1f:9e:fc:c2:5c:66:50:8a:05:3e:b5:
dd:28:7d:c2:4c:88:24:04:1a:dd:fc:e7:f4:9b:67:
c8:44:2e:b7:08:59:3f:81:69:bf:07:a7:37:43:12:
87:82:14:bd:4d:e1:1b:7f:d0:34:97:3b:d5:b5:59:
42:29:03:e8:d4:77:47:7d:56:09:57:5b:8c:84:6c:
d1:5f:ab:f4:a6:0e:ed:00:6b:7d:f0:16:68:82:aa:
2b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6B:48:1E:FE:82:19:25:19:F6:64:6B:EA:64:B0:47:F8:B1:8A:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kWtIHv6CGSUZ9mRr6mSwR_ixilU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.181.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c3:13:58:a1:39:9e:15:6f:17:be:46:5d:b4:17:7b:e2:09:
18:14:73:f8:d5:6e:db:5c:a2:eb:38:0a:0a:d9:65:2d:e2:e0:
1f:ba:73:a9:82:c2:44:ec:75:cb:7a:19:ad:59:ca:13:41:2d:
1c:34:e8:64:14:09:cf:1a:5e:4e:2c:c2:69:6b:8a:c7:5e:6a:
7a:1e:3c:86:c2:88:69:36:11:fb:d8:14:68:aa:78:44:e5:10:
d8:96:fd:65:fc:2c:c2:32:67:c7:ea:7d:9d:ab:5a:47:a6:bd:
6c:a0:48:32:c6:2c:72:8f:da:2f:a5:44:1c:d4:f2:de:65:d7:
ce:e8:39:c4:35:13:1f:3c:3d:6b:cb:df:e2:e0:b1:58:e3:5b:
c8:1f:0c:b5:06:9a:bd:02:b2:1c:23:cc:e7:e2:b1:51:ba:54:
63:71:09:ae:1a:83:7a:aa:d5:01:4c:08:56:bf:60:dd:19:02:
1c:4d:88:68:4d:a9:6a:73:a3:40:c3:d9:20:22:0e:11:92:2f:
4b:e6:cc:01:80:74:0f:03:8b:96:f5:ab:64:98:5d:fa:6f:1f:
69:6c:f5:e7:a8:53:47:bd:5d:8c:d8:a1:0c:cf:25:a4:b7:a4:
81:34:d1:01:1d:01:46:40:92:18:3d:a4:1b:62:27:fa:55:f3:
6c:f3:07:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org