Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlIWo_O_ry9wamYVInMLjVPJ6fQ.roa
File: mlIWo_O_ry9wamYVInMLjVPJ6fQ.roa (raw, json)
Hash identifier: UOXrrQOGefAsPBqSV6zPdYHDGR82zsTfnr0YLnkY81E=
Subject key identifier: 9A:52:16:A3:F3:BF:AF:2F:70:6A:66:15:22:73:0B:8D:53:C9:E9:F4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0878
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlIWo_O_ry9wamYVInMLjVPJ6fQ.roa
Signing time: Tue 29 Sep 2020 09:52:03 +0000
ROA not before: Tue 29 Sep 2020 09:52:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2168 (0x878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A5216A3F3BFAF2F706A661522730B8D53C9E9F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:48:8b:79:e5:3d:1d:29:d5:63:7a:5b:8e:71:
de:3a:30:89:5c:28:a2:c4:c2:f6:78:e1:72:c3:80:
35:27:b9:96:22:47:a4:db:dd:9c:a0:cc:cb:b9:6f:
ba:fc:73:77:1d:4d:1d:c4:53:65:d8:7c:84:72:43:
1a:5e:5d:6a:5c:32:0b:ec:4b:95:5e:ad:6a:5e:f1:
6a:7d:15:d8:b7:07:4d:6b:1a:3c:a6:ac:73:3d:ac:
3c:6b:2d:ed:22:fe:03:d1:5d:85:54:be:7d:1d:bd:
ec:7c:96:63:18:65:c8:8d:1a:1c:dd:98:bf:b1:51:
b9:71:33:60:eb:b0:d8:d8:06:01:25:6c:0e:4b:c7:
70:6e:5e:88:48:55:8d:38:23:4e:d6:0e:1e:d0:55:
23:d3:39:a1:9d:bf:7b:cc:b3:94:10:45:1c:03:51:
90:c3:e4:6d:3c:06:b1:a7:61:da:05:8e:b3:6e:99:
bf:65:88:97:09:35:2d:58:3e:7f:72:2a:03:5e:fc:
66:b5:d7:1a:f9:18:42:44:96:82:49:eb:cd:30:a4:
65:15:b3:71:ae:47:cb:b3:76:d2:b7:bf:b3:d5:b8:
47:fc:24:76:13:74:ca:c5:39:4c:d0:cc:7b:43:ca:
f8:41:fc:0b:0b:cc:6b:74:08:f2:be:0a:d0:63:2a:
ed:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:52:16:A3:F3:BF:AF:2F:70:6A:66:15:22:73:0B:8D:53:C9:E9:F4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlIWo_O_ry9wamYVInMLjVPJ6fQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c8:a8:84:7d:01:83:48:02:05:c0:f0:2f:0a:1f:39:a4:af:83:
6e:eb:ee:9e:72:8f:59:9e:7d:fa:db:2d:ee:8d:58:ab:da:92:
45:f2:9a:20:09:e9:3b:b6:d5:6c:8a:7f:ad:f0:2d:95:f9:5f:
b8:a9:d3:34:76:06:71:8b:18:b2:c3:f2:78:a4:f8:e9:5b:eb:
de:0e:86:5a:bc:95:89:cf:ef:a4:dd:5b:f7:67:7d:d1:da:97:
19:47:93:5e:c0:85:61:43:1e:81:9a:32:68:f0:46:22:17:e4:
3d:16:f3:c2:3b:d5:be:2c:a2:42:a7:38:09:5f:a6:a9:61:aa:
6d:1d:6a:33:b5:b7:72:dd:48:d5:ac:29:07:20:26:d2:fa:9c:
19:33:55:45:c1:3e:4f:9b:b7:48:ba:1c:19:2f:98:6d:36:66:
fa:4e:91:d6:e5:a1:fa:39:d2:5e:22:bf:0d:67:28:5e:9f:b8:
14:b2:fe:3b:b0:d7:bb:ad:5e:29:01:88:0f:d6:65:e3:cd:06:
84:65:84:4b:43:28:b1:9d:1d:9a:ee:20:a2:42:ef:13:0f:e4:
1c:7a:10:bc:24:df:3e:53:09:51:df:6f:8f:5a:d7:7a:e6:cd:
b7:b3:2d:ad:fb:99:83:84:d9:b9:76:11:70:1f:3b:23:62:cf:
fe:fa:71:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org