Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kaLXXZPpt3lJhac2DXKe2LkCcLs.roa
File: kaLXXZPpt3lJhac2DXKe2LkCcLs.roa (raw, json)
Hash identifier: rvu22sjxMMfn8cXxMqKN63u+FGvZDFx/qkN4onQGl9E=
Subject key identifier: 91:A2:D7:5D:93:E9:B7:79:49:85:A7:36:0D:72:9E:D8:B9:02:70:BB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C03
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kaLXXZPpt3lJhac2DXKe2LkCcLs.roa
Signing time: Sun 07 Feb 2021 06:44:29 +0000
ROA not before: Sun 07 Feb 2021 06:44:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:44:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=91A2D75D93E9B7794985A7360D729ED8B90270BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3a:fc:ff:af:ad:6f:7e:3e:ad:f3:26:fb:96:
22:1d:03:fa:8d:06:d3:35:cc:3d:28:30:24:79:04:
a8:c2:19:8f:35:ea:14:38:17:61:08:01:6b:67:2e:
dc:66:e4:f5:6a:6d:f5:0d:f7:ec:2d:3e:27:d5:7d:
24:b6:bf:8d:ff:46:0a:bd:00:61:67:d9:e6:8d:8e:
63:19:47:36:4c:43:7f:de:17:7d:87:42:a2:70:86:
4a:59:a0:a3:9b:2b:31:f7:e1:63:ad:7a:7c:55:2a:
61:ab:0a:bf:f5:6c:98:02:a7:49:73:a3:d3:de:67:
e0:b0:16:01:d0:45:65:79:79:96:7f:ea:21:2d:4b:
d9:f3:58:d7:27:4e:37:9c:43:65:51:24:8f:71:40:
7a:37:00:28:58:92:c4:d3:97:d8:00:7c:24:3e:b2:
4d:94:56:cf:a2:4a:e1:12:89:7c:cf:53:b7:72:d0:
19:47:97:21:52:ba:a2:ae:a0:c5:c6:52:1b:11:e3:
67:ad:94:14:9b:9a:55:7b:8c:05:47:c2:43:3b:c3:
ab:7a:8f:0e:90:a7:70:f8:77:e6:ce:d5:d1:1e:2b:
60:55:ef:43:22:b3:d5:be:67:43:19:0d:66:2f:b3:
9e:ff:1e:47:f8:32:c8:13:ab:c0:7d:5c:95:a0:d0:
32:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A2:D7:5D:93:E9:B7:79:49:85:A7:36:0D:72:9E:D8:B9:02:70:BB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kaLXXZPpt3lJhac2DXKe2LkCcLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
95:4d:a0:62:89:0b:08:80:9d:f5:70:9e:72:55:3b:f4:83:99:
63:d5:a8:c1:e3:ed:61:83:e3:0b:19:aa:41:5c:b7:56:fc:37:
64:c1:b6:fe:e8:56:46:fd:81:c5:e2:80:4a:ab:b6:04:7b:27:
63:9c:ad:38:e4:45:74:87:0c:6d:7a:25:0c:ef:5f:e9:18:6d:
b5:df:b5:94:c6:ed:e0:6f:56:02:a0:b5:0c:ff:16:7a:a9:a6:
16:1f:f5:25:cb:85:d8:e0:36:64:2d:bf:75:2d:b7:ba:5f:e8:
6d:1f:3f:4e:82:35:52:b2:a1:bc:7d:cf:b5:92:61:97:63:80:
d5:1e:0d:c7:e9:89:87:47:04:fd:60:15:b5:a3:7b:ab:38:5f:
e6:78:f7:44:99:73:6e:af:6a:be:95:e6:56:6f:fa:82:10:f9:
e8:16:32:4a:a4:a0:45:7a:65:e5:d9:18:8d:89:5b:d8:fc:f3:
4d:84:b3:c0:69:12:b2:70:74:99:df:98:e9:52:85:c1:c9:3d:
e6:85:05:fc:a4:eb:54:eb:40:a5:8a:1d:75:1a:3a:d0:4d:e5:
22:31:07:4a:ac:ec:0c:e9:29:34:61:8b:94:ec:96:a6:11:fd:
1e:6f:ea:e2:96:43:be:c3:21:96:23:b8:4a:a8:0d:d7:6f:fd:
44:a9:d0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org