Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mqBwqZnSj3UDpE34up9Wo7TJ5Bo.roa
File: mqBwqZnSj3UDpE34up9Wo7TJ5Bo.roa (raw, json)
Hash identifier: WnLCxgsVU+VVxef4Ge6lRnGEJq8P5s4GToX2a5D+i+g=
Subject key identifier: 9A:A0:70:A9:99:D2:8F:75:03:A4:4D:F8:BA:9F:56:A3:B4:C9:E4:1A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0882
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mqBwqZnSj3UDpE34up9Wo7TJ5Bo.roa
Signing time: Tue 29 Sep 2020 09:52:06 +0000
ROA not before: Tue 29 Sep 2020 09:52:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2178 (0x882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9AA070A999D28F7503A44DF8BA9F56A3B4C9E41A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:85:2a:cb:fa:64:da:40:88:f9:dd:6a:b5:36:
da:46:b3:87:fe:8e:37:f1:c5:e8:3e:38:25:b7:6a:
56:01:05:f3:02:77:2c:5b:ec:8a:7d:da:33:23:46:
8d:f4:bd:63:87:97:53:50:8d:fe:60:21:b3:a8:53:
a4:a8:95:6b:aa:23:4d:ba:e7:f2:02:a7:39:69:2b:
f6:86:d0:02:85:84:84:c8:f0:8a:d8:96:62:50:b6:
00:bd:9b:6e:9d:c7:1f:ee:7d:16:e5:04:35:fa:36:
93:41:df:bb:85:82:98:51:44:6e:6a:16:5c:ca:1b:
b3:db:d9:c0:b0:f4:c3:69:c7:4d:87:60:bb:fa:5a:
f5:80:c7:f7:ef:ce:d6:b1:7a:52:a4:c6:da:83:e0:
25:69:9d:7e:6b:fc:9b:cd:18:d1:47:2d:ce:84:d2:
d0:90:c4:3e:34:25:84:01:4c:0f:d4:f7:8e:01:24:
85:f4:9f:36:fe:86:f5:59:6c:cf:72:6c:0a:93:cb:
1a:8d:12:01:c1:fe:73:64:4e:f2:1a:52:3b:02:23:
87:aa:68:2e:57:14:f5:1c:48:b9:5c:eb:63:25:e2:
bc:b2:3a:d8:ab:89:a8:57:65:31:40:68:ce:27:d1:
38:67:ed:3b:f9:76:00:83:3e:e0:f4:08:03:da:ba:
c9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A0:70:A9:99:D2:8F:75:03:A4:4D:F8:BA:9F:56:A3:B4:C9:E4:1A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mqBwqZnSj3UDpE34up9Wo7TJ5Bo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.192.0/18
Signature Algorithm: sha256WithRSAEncryption
2f:99:49:38:38:52:da:b9:c8:b4:31:91:23:b9:e7:8e:4a:28:
27:cd:a4:c2:52:5b:93:54:32:99:fd:40:b4:c4:d7:02:12:22:
72:f1:0a:a9:0c:81:13:c1:9e:50:13:f6:d7:e2:2c:ba:f5:99:
aa:18:53:8b:e3:f2:58:0d:87:bf:c5:10:42:53:50:dd:ed:e8:
2c:39:a4:67:31:77:80:93:97:57:d1:ef:9e:4b:95:b8:4c:8d:
89:5d:22:f6:c0:b3:46:73:b1:ef:76:bb:e4:8f:a1:e5:44:94:
61:32:03:b9:11:6f:b0:6e:87:c1:ab:f2:ff:ab:a3:25:ef:ec:
b0:46:c5:be:2f:ec:ae:41:56:a8:2e:b4:0d:4d:e2:de:ca:9f:
97:54:ae:75:aa:63:7b:0e:f1:ad:cb:d9:f9:e0:95:07:99:c7:
b8:e0:1d:63:3a:00:2a:b0:7d:a4:7f:fc:84:6b:55:c8:7b:7b:
6b:4b:e0:e4:05:45:8f:f8:78:1a:a4:0c:40:e4:a1:e6:b2:31:
ad:2b:17:d6:55:d0:98:c0:7b:ee:38:a6:4b:8f:b4:4a:4d:e7:
7e:ac:43:1e:18:7e:aa:51:0d:f7:e8:56:11:75:ea:d4:84:c4:
79:15:bc:79:6d:ca:b8:c7:46:a4:5c:b2:b0:f8:03:11:05:af:
f4:39:28:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org