Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/odJm4PRLqu_bqCvPSrfX5oS-5yc.roa
File: odJm4PRLqu_bqCvPSrfX5oS-5yc.roa (raw, json)
Hash identifier: CaWohlEya+launiuyk4riW5ITEJgLShSqNttasf3n2k=
Subject key identifier: A1:D2:66:E0:F4:4B:AA:EF:DB:A8:2B:CF:4A:B7:D7:E6:84:BE:E7:27
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DFC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/odJm4PRLqu_bqCvPSrfX5oS-5yc.roa
Signing time: Wed 29 Sep 2021 02:43:04 +0000
ROA not before: Wed 29 Sep 2021 02:43:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 203.67.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3580 (0xdfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A1D266E0F44BAAEFDBA82BCF4AB7D7E684BEE727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b5:cc:52:ca:b2:0f:9c:b0:5d:c6:a6:cb:5d:
65:af:7d:ba:95:17:a1:67:cb:0a:8a:82:64:60:3e:
40:c4:9c:00:66:df:d1:a2:02:10:c6:9a:2d:c2:73:
45:80:ac:6b:29:c7:17:09:75:cb:37:cc:05:22:22:
fb:e8:e4:47:c9:f8:35:c7:5a:a8:bf:81:be:e7:c5:
dc:88:73:9f:19:e7:47:b0:9f:62:54:78:4f:2b:6b:
66:ff:cb:a4:3f:ab:e0:4a:a2:35:f6:02:09:3c:18:
80:c5:7c:4f:fa:f0:87:34:f5:d1:48:8a:26:02:dc:
fc:c9:45:58:4f:10:89:97:62:48:74:8a:46:33:35:
8a:5d:fc:bf:41:8b:3d:c2:c5:55:df:91:6a:7e:54:
d5:da:a4:91:66:0c:cc:5d:1c:fd:4c:5b:9f:98:70:
88:05:08:7e:61:aa:62:ba:34:8d:52:9d:c7:9a:01:
40:92:ef:fd:ba:b5:2a:e9:e1:e7:07:b6:53:bc:86:
74:24:e4:10:92:48:5b:46:a8:40:0a:ed:a0:67:96:
35:d7:33:c2:0d:38:54:b6:e9:ac:ff:0d:b6:f7:cf:
11:a8:11:f8:b3:76:4e:24:ac:f0:ce:2c:71:b8:d7:
ab:93:71:98:e7:b3:de:8b:e2:fc:3f:fb:d9:38:3a:
e1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D2:66:E0:F4:4B:AA:EF:DB:A8:2B:CF:4A:B7:D7:E6:84:BE:E7:27
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/odJm4PRLqu_bqCvPSrfX5oS-5yc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.67.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:91:35:57:1a:32:05:6a:b7:9a:1b:94:fa:c6:1a:12:e1:69:
72:7b:eb:6b:8a:0e:39:93:bd:c0:56:30:28:20:0c:4b:e9:1c:
39:0a:83:9f:47:20:fb:44:0a:5a:0a:c7:87:88:b4:05:59:eb:
a4:af:55:a0:e6:c0:e1:22:a2:4a:7a:23:38:a0:5f:8c:e4:2b:
d3:df:a1:10:73:0f:b5:b5:d5:b0:21:7c:8a:15:38:c9:37:87:
fc:89:08:dc:ff:1f:af:f2:cc:83:4e:8b:de:64:f0:95:4a:c6:
88:41:72:1c:84:7d:1e:be:ca:c5:d7:db:0a:0e:e8:f0:74:99:
ec:8f:e7:09:aa:7b:cb:2b:49:00:cf:6d:bc:80:fb:87:4f:86:
a4:0a:18:9e:b4:cd:b7:ca:d0:aa:fa:53:73:48:4c:4a:da:8c:
e4:71:f7:4b:42:41:06:ba:4d:d4:53:70:d7:4e:5f:5a:8e:25:
22:e1:25:e1:5e:e0:7d:93:d6:fa:8a:3f:21:fe:83:46:79:6a:
0a:03:d9:44:76:4b:7d:da:4b:b6:6b:91:21:f0:11:9a:0c:48:
eb:71:61:68:16:cf:40:0a:80:2e:6c:d9:7c:4b:f0:4b:93:c4:
c5:97:1d:a8:e8:81:51:37:55:7b:b4:5a:d6:45:dc:7a:25:25:
cb:4b:d7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org