Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/muf-2DM9kK09wF4UqLPhXoIbifA.roa
File: muf-2DM9kK09wF4UqLPhXoIbifA.roa (raw, json)
Hash identifier: FyXQ3rVs6EmVHFv22BUx0AriUneOJuaFMYOHLNlHTDw=
Subject key identifier: 9A:E7:FE:D8:33:3D:90:AD:3D:C0:5E:14:A8:B3:E1:5E:82:1B:89:F0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EC3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/muf-2DM9kK09wF4UqLPhXoIbifA.roa
Signing time: Wed 29 Sep 2021 02:43:56 +0000
ROA not before: Wed 29 Sep 2021 02:43:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 112.105.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3779 (0xec3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9AE7FED8333D90AD3DC05E14A8B3E15E821B89F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:57:6b:ea:40:ad:94:b3:78:6a:b8:56:81:1a:
19:c5:80:53:82:a6:20:33:3b:44:1f:af:6b:6e:3b:
7b:c7:2b:19:b0:39:0d:c8:43:ce:91:61:2b:43:71:
0a:cd:4e:88:76:df:8d:1f:70:19:96:05:4a:de:a9:
a4:20:f9:61:1e:33:44:3c:79:5a:d9:fa:a3:2d:ae:
01:6a:36:52:fa:09:04:76:45:7f:d8:9d:d9:36:2d:
79:c8:0c:1b:ce:4f:74:1e:8f:b1:70:81:f7:95:c5:
b2:9e:b0:a6:3b:b2:9c:a1:b0:14:87:b2:44:64:71:
ba:fd:9b:eb:a1:07:0c:d7:06:68:03:bc:65:e6:19:
c9:a8:47:2b:97:e9:ed:f1:cd:76:90:26:93:6b:d9:
5e:9f:72:b5:e7:8c:a3:34:46:ce:39:42:a5:30:5b:
2b:51:42:f5:aa:c5:36:14:f3:38:c4:d8:f0:43:8a:
30:47:83:51:29:4e:c6:c5:59:ed:e6:f0:24:b6:7f:
c6:81:5b:58:ab:12:f4:75:c3:6c:b1:8f:f0:95:87:
e7:d3:fc:eb:4d:72:dd:cd:17:e4:aa:59:f4:0d:a5:
c1:6d:3e:dd:3c:6f:21:87:a1:68:dd:18:a0:dc:6d:
35:47:19:bb:3e:1d:c1:e4:5d:85:bc:3a:14:08:8f:
28:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E7:FE:D8:33:3D:90:AD:3D:C0:5E:14:A8:B3:E1:5E:82:1B:89:F0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/muf-2DM9kK09wF4UqLPhXoIbifA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.8.0/24
Signature Algorithm: sha256WithRSAEncryption
97:50:68:b8:41:0a:63:a3:16:12:5f:11:1a:72:c4:c2:ed:c9:
92:41:2c:54:79:ea:db:33:c7:0e:dc:f6:8a:f4:56:d9:ad:26:
1b:af:f7:cb:46:24:19:f6:18:28:4f:d6:94:98:9a:b9:a6:a4:
ab:a1:a0:61:e6:82:c6:6e:cc:93:90:97:cc:16:8d:15:48:f4:
f1:51:cb:b4:6a:fa:65:4f:43:bd:84:4e:14:9d:7e:e8:59:aa:
ab:d4:2b:4c:ab:73:9f:ff:16:80:5a:27:a1:d3:9b:c3:75:95:
58:7e:d1:fb:29:d4:2a:f7:1b:b7:41:a1:9a:f8:a9:f7:d3:2f:
92:13:2a:b3:c4:1a:8a:97:52:c6:17:ce:fb:5a:e9:4f:4f:25:
c5:bb:11:3b:e6:60:38:12:54:f6:0b:57:ab:61:ea:88:78:78:
1c:e7:2d:db:40:f9:2f:13:7e:ed:b8:60:0a:40:01:61:dd:d8:
11:fc:c4:5d:ef:bc:74:84:32:93:3e:b2:93:55:20:5b:dc:26:
08:42:9a:ba:c7:d7:f3:44:b7:21:13:a2:53:c3:cc:ed:49:99:
61:97:eb:d2:ee:d8:43:60:ec:b8:74:5c:de:67:51:61:ff:26:
4c:dd:e8:32:45:ff:04:3e:51:ff:7e:f6:c1:ca:67:83:49:49:
d5:50:d4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org