Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mkhHy-pzF3wH0w2Nbr4yMa_7dt0.roa
File: mkhHy-pzF3wH0w2Nbr4yMa_7dt0.roa (raw, json)
Hash identifier: QhHyE+gYighmB8bpdD7ksUwnd4jI8Hc8c31zIQyhcL4=
Subject key identifier: 9A:48:47:CB:EA:73:17:7C:07:D3:0D:8D:6E:BE:32:31:AF:FB:76:DD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E3C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mkhHy-pzF3wH0w2Nbr4yMa_7dt0.roa
Signing time: Wed 29 Sep 2021 02:43:20 +0000
ROA not before: Wed 29 Sep 2021 02:43:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 175.183.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3644 (0xe3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9A4847CBEA73177C07D30D8D6EBE3231AFFB76DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:0f:18:cc:8d:ff:a2:c7:47:57:85:db:74:
a0:52:d0:98:fa:a8:95:cf:b8:45:5d:84:81:d9:69:
d9:71:31:6e:5c:3b:7c:99:8b:bb:06:c6:59:90:4b:
95:bd:65:9e:73:c3:68:3a:b4:40:cb:9f:ca:55:ce:
85:06:ef:a5:0d:f1:14:25:ff:e6:90:07:07:e1:ba:
eb:4c:1a:91:6b:61:92:43:cc:e5:61:ac:d2:c6:bc:
c1:ae:68:a6:75:c4:e7:da:76:a3:9c:44:0b:85:50:
f1:78:05:d9:cf:95:b2:8b:ff:08:63:8c:d7:d8:4b:
d7:6a:57:ea:1b:a9:43:27:dc:3b:61:bb:fd:94:79:
cb:7a:18:f2:66:46:bc:2f:8f:73:fb:f9:3d:6a:88:
07:26:ff:f2:3f:3d:f4:d1:96:1f:26:94:e0:c5:13:
78:db:02:32:05:7e:69:b8:94:cc:7d:5d:fc:0d:3e:
46:63:32:3b:1a:3b:5d:66:14:3d:66:40:b8:5c:7a:
c6:0f:5a:f3:a2:90:3c:f1:29:76:d2:af:b0:d7:50:
83:58:1a:1d:10:ae:f2:46:8e:57:10:31:9f:7d:fa:
37:b3:e9:28:93:ae:fd:23:f5:6d:21:71:e6:1f:fc:
b8:a0:4b:0c:06:cc:8a:e3:13:e7:8c:73:01:d9:fe:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:48:47:CB:EA:73:17:7C:07:D3:0D:8D:6E:BE:32:31:AF:FB:76:DD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mkhHy-pzF3wH0w2Nbr4yMa_7dt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.80.0/20
Signature Algorithm: sha256WithRSAEncryption
45:bb:c0:8c:1b:05:93:53:a7:d2:6e:f2:93:a0:ff:8a:86:f1:
ad:bf:15:7b:ee:46:59:28:64:75:e7:72:88:42:4d:49:18:c3:
0e:a0:5c:8e:64:66:87:93:6a:d0:9a:ee:b8:09:c3:c0:11:d1:
d9:7d:6c:f7:5c:18:fa:1b:41:da:bb:44:fe:de:c6:43:6d:6b:
b9:c3:42:f7:cf:eb:0e:56:9e:a1:0c:48:b7:ff:40:b3:46:4a:
25:7d:25:21:01:32:a0:4c:a8:4b:e3:d6:70:a9:86:4f:70:f1:
45:a8:86:d5:8f:ec:31:85:de:b5:d6:3c:bb:d0:5e:49:a2:d1:
a7:1d:ed:6e:19:20:23:b0:22:52:33:5c:a4:fe:ca:f1:be:f8:
25:57:9f:f7:3d:0f:c7:c7:c9:a7:07:3e:1a:75:67:9c:b3:57:
f8:1c:bc:7a:00:a5:72:16:fe:2d:50:25:51:d7:51:be:39:e0:
9b:24:da:be:6a:ca:72:64:37:0e:de:ae:c4:c3:2f:5a:83:ba:
c1:15:20:0b:28:a0:1c:95:81:98:b3:99:44:5b:67:df:b1:c6:
8d:b5:15:ca:32:0a:0f:95:49:9f:ce:dc:81:de:da:22:8b:3a:
84:be:35:82:fd:f5:64:a0:4d:24:c4:64:82:c6:10:74:fd:8b:
98:d7:76:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:12 2023 by rpki-client on console-fra.rpki-client.org