Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lyQkMmfLZlguuL0dVKl8u4c1Dxw.roa
File: lyQkMmfLZlguuL0dVKl8u4c1Dxw.roa (raw, json)
Hash identifier: dVjTh7GVf+0kTspvr3pZJQcrSuQ6DMc1VAodJLEdruI=
Subject key identifier: 97:24:24:32:67:CB:66:58:2E:B8:BD:1D:54:A9:7C:BB:87:35:0F:1C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E0B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lyQkMmfLZlguuL0dVKl8u4c1Dxw.roa
Signing time: Wed 29 Sep 2021 02:43:08 +0000
ROA not before: Wed 29 Sep 2021 02:43:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 175.180.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9724243267CB66582EB8BD1D54A97CBB87350F1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f1:06:64:b2:46:4a:2f:38:df:28:fb:92:a2:
6d:03:e6:e9:0f:4a:22:b5:5f:0c:b0:23:17:e5:b5:
83:3b:81:5e:45:c9:5e:71:ba:f7:23:46:64:df:b9:
65:12:ce:31:9f:22:4f:ff:65:a8:e1:8b:c6:f9:c5:
7c:39:bf:79:1c:cf:02:bd:48:2c:bc:e5:1c:92:b0:
80:ee:b3:af:ca:b9:d5:71:66:2b:46:0d:9e:4c:4c:
88:58:ac:2b:8e:35:28:62:29:be:a5:5e:01:2f:33:
8b:66:9b:c3:4d:36:06:ad:24:5f:da:9f:c0:a0:d7:
86:35:6d:c5:e9:3c:70:1e:23:e3:09:ce:8c:71:ea:
f8:f0:34:62:bb:57:72:d3:49:97:b7:94:b2:18:bd:
73:f6:40:2e:49:4e:6e:64:78:a8:19:90:97:2b:d4:
a6:c7:57:d6:d8:bb:35:a5:e6:f8:b4:ec:e5:0b:16:
77:3f:b2:83:66:80:28:bb:21:00:e2:b4:79:c6:99:
c5:a9:06:1e:d4:27:25:5d:7d:30:c1:2b:c2:bc:ff:
d0:ae:bb:0c:72:1e:0e:7a:40:fb:b4:58:2a:0c:5f:
53:f5:24:b4:2a:15:14:2d:ec:75:ef:23:94:41:37:
6f:9e:f5:da:32:75:ec:6b:a0:2d:98:90:d9:ce:18:
9b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:24:24:32:67:CB:66:58:2E:B8:BD:1D:54:A9:7C:BB:87:35:0F:1C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lyQkMmfLZlguuL0dVKl8u4c1Dxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/14
Signature Algorithm: sha256WithRSAEncryption
54:3c:55:49:d3:c8:de:6d:2e:ff:a9:4d:ea:c9:7a:c7:68:7e:
d9:5d:d6:1a:ba:08:91:59:d2:f8:8a:a8:56:b4:a3:4b:a9:f0:
c2:44:eb:cd:73:b5:e0:51:e3:a0:64:5c:37:c0:13:ad:74:47:
5c:e5:c9:31:a9:29:f8:b1:aa:5d:9d:91:40:00:33:2e:bf:ae:
2d:eb:99:ce:18:78:de:5a:c6:5f:01:42:3a:0c:2d:0b:17:bf:
f0:b1:ea:23:4b:e2:f0:6a:b2:ee:1b:ad:6a:01:7a:13:2c:ca:
ab:60:7c:c4:c2:97:c0:67:60:51:91:84:bf:82:a3:9c:3c:92:
88:5f:ea:ec:f3:8e:a1:c2:47:c1:44:e7:43:57:f9:5f:dd:73:
8d:20:74:4b:81:78:be:ca:ad:99:ee:f2:ba:94:d3:2f:d7:7b:
c5:41:9e:64:cc:15:c6:5b:42:7e:c5:6a:d0:33:f2:0a:fe:d2:
33:90:00:9b:b0:f5:ac:2a:67:53:ab:84:34:25:63:e3:d6:77:
57:70:a9:d1:cf:01:30:07:bb:07:2d:92:78:80:18:84:04:1a:
6a:37:a6:a0:a4:d3:c0:08:77:e5:4a:82:a1:76:1b:c9:68:4f:
7c:57:00:11:13:6c:38:88:f9:0d:7a:a9:9e:4c:d1:3a:cb:8f:
ed:35:8b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org