Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfG-Bqj7fmfzEyc9ekt1LQRGpmo.roa
File: mfG-Bqj7fmfzEyc9ekt1LQRGpmo.roa (raw, json)
Hash identifier: sc57YWdVh0LdrFDYh9VtkXtKKOgcjTumXSMkv7UZ0y4=
Subject key identifier: 99:F1:BE:06:A8:FB:7E:67:F3:13:27:3D:7A:4B:75:2D:04:46:A6:6A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0879
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfG-Bqj7fmfzEyc9ekt1LQRGpmo.roa
Signing time: Tue 29 Sep 2020 09:52:04 +0000
ROA not before: Tue 29 Sep 2020 09:52:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2169 (0x879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=99F1BE06A8FB7E67F313273D7A4B752D0446A66A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ba:a7:13:da:31:53:80:ee:6a:88:af:41:bc:
fb:54:cb:dc:98:05:03:ab:28:67:16:22:b4:2f:97:
84:da:a6:0b:f4:f9:0b:d6:71:10:9b:b0:40:6c:c0:
27:72:e8:b0:1f:26:cf:57:dc:63:76:7f:22:00:3b:
9b:3b:32:af:4d:21:bc:f6:ba:42:3b:5c:a7:74:91:
b9:ba:27:5b:3e:a5:2e:35:5e:84:28:9a:71:df:3e:
83:1e:7c:93:81:9e:bc:3e:a1:72:66:c0:c5:9e:1d:
99:d8:24:5b:a7:3c:96:32:ff:28:d9:4e:e2:10:cb:
2a:b0:90:98:84:8c:44:18:36:b1:09:14:f8:eb:14:
ad:05:78:e8:5c:64:e9:12:01:0a:06:b4:f1:95:c3:
09:00:85:04:de:3d:01:36:c0:dc:13:a5:bb:27:90:
19:04:b4:ff:6d:25:e0:7f:d4:f5:f4:20:3e:85:fb:
57:69:ff:05:c8:49:0f:83:3c:cd:80:00:85:b3:4e:
ec:77:86:b0:d0:17:50:83:8f:81:2e:b9:93:76:33:
4b:de:45:af:25:0c:c2:98:57:9c:06:01:f3:09:1a:
b4:7d:4a:64:d9:3e:86:1f:46:b7:ba:67:bc:5c:ef:
9e:dc:4a:c0:ee:ce:46:f6:90:43:0f:4a:2e:4f:19:
c9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F1:BE:06:A8:FB:7E:67:F3:13:27:3D:7A:4B:75:2D:04:46:A6:6A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfG-Bqj7fmfzEyc9ekt1LQRGpmo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:d7:26:64:16:94:0b:c3:c6:ec:cd:b1:87:64:d6:da:fa:70:
bd:37:bf:d1:7e:2f:2a:90:1b:36:c0:bb:20:c2:34:54:94:bb:
b4:ca:26:1d:cc:cb:71:be:e5:0b:cc:80:6b:20:e7:3b:95:fa:
40:3f:a2:8b:d9:c5:74:3c:d6:17:5a:0d:31:c3:17:9f:18:9e:
14:87:51:15:3f:b0:0a:74:a5:25:67:13:0f:6c:e9:43:75:48:
94:10:3b:4d:02:6f:85:32:24:72:4e:90:c4:f4:4c:42:12:19:
6e:dd:4a:dc:4b:a0:5c:fb:be:df:8e:f4:3e:78:f9:66:76:83:
ef:8f:7f:be:26:04:20:6a:1b:e1:26:10:e5:b5:31:c7:47:6b:
ad:27:6c:3b:1f:aa:44:3a:40:84:b8:96:77:66:e4:db:97:6b:
68:a7:0c:45:aa:47:18:43:9c:7c:34:ca:44:5f:51:79:eb:eb:
d6:5b:65:17:24:85:c2:40:04:b9:91:d0:50:ac:b8:22:ce:bd:
36:7e:97:b1:dd:38:9f:71:25:9e:fe:fe:61:3c:32:e8:ed:a7:
7e:d3:18:cb:02:4e:03:5f:1c:a3:5e:1b:49:19:d9:01:14:34:
21:51:43:1f:63:dd:59:b8:78:5d:5d:af:5a:6e:94:8e:1b:01:
9e:06:bb:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org