Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ld1VN3U3u9w8la-h5uVDeY2HVaI.roa
File: ld1VN3U3u9w8la-h5uVDeY2HVaI.roa (raw, json)
Hash identifier: jWngktAxG9lCr1WMi6oqu4qAWsRNpsY4oKi1i4/1dDI=
Subject key identifier: 95:DD:55:37:75:37:BB:DC:3C:95:AF:A1:E6:E5:43:79:8D:87:55:A2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D2D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ld1VN3U3u9w8la-h5uVDeY2HVaI.roa
Signing time: Sun 07 Feb 2021 11:48:50 +0000
ROA not before: Sun 07 Feb 2021 11:48:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131586
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3373 (0xd2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:48:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=95DD55377537BBDC3C95AFA1E6E543798D8755A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:06:3b:d1:ef:66:b6:ea:3e:86:44:3f:22:db:
5a:be:ac:fe:4d:a4:63:8f:6c:76:d4:93:24:73:1f:
60:8d:92:a6:cc:2f:aa:f6:32:8b:5b:4b:48:9f:a3:
e1:d3:1e:e3:8c:0f:57:02:ec:e5:5a:ae:f0:ca:56:
bb:4b:bb:b2:5c:65:b7:f2:53:71:f0:1b:6d:72:96:
3b:1e:d1:46:05:56:a9:6a:e9:16:2c:9f:88:6b:ec:
7e:80:7d:1d:25:f4:56:ce:83:ae:c9:28:3e:0d:8e:
c2:a3:c5:01:ba:66:5c:34:5e:83:d8:da:f9:23:d6:
f0:df:06:d0:6e:39:87:cc:f8:ec:70:61:bf:6d:f4:
01:10:c1:68:f6:3e:ea:cb:57:31:86:6d:b9:8e:3e:
29:f2:14:1c:9c:20:d9:93:33:1d:dd:09:a9:e6:af:
68:76:55:11:49:ad:c5:96:8d:bc:aa:f2:41:b6:2d:
8a:65:00:d5:8e:97:3d:f4:2d:2c:f7:e7:d1:e0:cf:
8e:5e:19:e9:72:26:43:0b:25:ba:79:fa:70:28:ef:
51:be:54:d1:ea:99:ac:34:24:28:ae:f7:cb:27:b8:
fa:d4:4c:03:33:54:57:0e:5a:9d:a8:c8:09:23:9d:
47:79:c3:77:d0:05:22:58:e6:f2:19:41:df:ad:d5:
a2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DD:55:37:75:37:BB:DC:3C:95:AF:A1:E6:E5:43:79:8D:87:55:A2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ld1VN3U3u9w8la-h5uVDeY2HVaI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:8e:71:17:f2:34:88:11:85:ec:58:0e:2a:70:bc:5d:00:ce:
cd:09:cc:38:af:8c:3a:d4:0d:f1:23:2d:41:d5:86:cc:62:26:
ec:d8:fc:3f:70:b2:65:ee:92:73:a8:71:81:a2:6a:28:68:0a:
b2:70:44:e5:7e:b2:da:02:9b:6e:d4:04:bc:0b:fd:48:e8:56:
6d:af:12:17:9c:58:87:3b:43:8e:61:7f:04:a5:5b:9f:2d:9c:
e2:21:fd:55:83:f6:c2:40:c2:b5:45:e7:13:4d:b3:69:78:03:
06:db:2a:85:97:b8:79:57:3d:12:fb:70:18:04:54:13:3f:d3:
db:e0:33:e4:47:05:65:03:bb:4f:67:a7:71:42:94:01:f6:be:
e3:2d:86:46:28:93:f6:0b:83:0b:fa:30:b5:40:5c:ff:b8:69:
3f:6e:21:ed:54:7a:87:ef:2c:fc:73:18:de:3b:de:c3:6c:f3:
94:62:74:64:c2:9a:6d:83:53:52:06:e9:73:40:eb:4b:c6:f1:
e0:e4:34:5b:57:b2:f6:68:bd:b9:03:f6:cc:c4:b7:c8:4b:f5:
89:d6:b9:48:b3:40:72:16:c3:3f:6c:34:64:e4:37:a4:00:08:
bb:1f:02:5b:54:09:e0:62:e5:24:ef:65:40:c7:01:31:bc:00:
70:98:04:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org