Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pe9NXpcw2DH32aEwoFMeGMfIZZ8.roa
File: pe9NXpcw2DH32aEwoFMeGMfIZZ8.roa (raw, json)
Hash identifier: GBi+bpLnDl3tYEG2+0ydfk2pPcZ6Yjnqvf0u/HqOHx8=
Subject key identifier: A5:EF:4D:5E:97:30:D8:31:F7:D9:A1:30:A0:53:1E:18:C7:C8:65:9F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DEC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pe9NXpcw2DH32aEwoFMeGMfIZZ8.roa
Signing time: Wed 29 Sep 2021 02:42:59 +0000
ROA not before: Wed 29 Sep 2021 02:42:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3564 (0xdec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A5EF4D5E9730D831F7D9A130A0531E18C7C8659F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:0e:6a:0b:6b:d5:04:ee:7c:ec:fb:df:27:
7e:8d:f5:a9:db:6e:b5:b4:ed:4f:3d:30:a8:b0:b9:
22:5f:ef:10:5c:cd:ed:36:bb:a5:e7:19:04:a1:48:
ac:6b:6a:18:42:fe:81:74:b5:de:c5:8b:a0:09:1d:
b1:b8:9b:fa:21:4d:b0:e7:4d:4b:fd:65:c4:c1:ec:
0a:0e:48:87:99:e3:d4:ba:03:6d:a7:cf:0f:28:ca:
a3:70:8d:5e:91:f1:1b:c5:d5:fa:7f:34:01:d1:ed:
83:ca:8e:53:5e:df:62:ee:b2:64:8c:94:bf:32:58:
2c:62:b1:45:81:78:60:d2:42:48:a6:ce:c8:9b:24:
7c:be:c9:e6:78:ca:bb:e4:c0:56:17:e3:7c:c9:24:
49:73:66:b3:dc:9d:e4:c5:7d:c6:ca:fe:16:12:af:
1a:f7:d5:24:48:6c:05:91:1c:6b:0f:b2:e0:35:b4:
ad:3c:cf:b1:af:72:d1:29:6f:f6:e5:e8:f0:65:30:
52:db:30:6d:3c:9d:b5:ba:51:43:85:e5:46:a6:da:
cf:90:a0:cb:56:99:b7:4f:7e:13:1a:02:22:40:e8:
8f:76:27:df:de:a5:91:c3:63:89:35:ef:64:9c:05:
a8:76:5a:25:db:a2:c5:70:a0:81:73:ff:59:19:a1:
3a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:EF:4D:5E:97:30:D8:31:F7:D9:A1:30:A0:53:1E:18:C7:C8:65:9F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pe9NXpcw2DH32aEwoFMeGMfIZZ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bb:5f:f2:49:a9:0a:aa:d3:8c:47:66:f9:a5:9f:f1:db:b9:d8:
5e:83:42:0f:7c:50:e7:88:30:b4:ec:c1:df:5f:09:80:45:9b:
56:59:a1:a6:52:a1:ef:4c:cf:60:24:67:c0:71:43:33:a5:77:
54:56:ea:a7:1b:40:8b:97:fc:9f:c0:c9:f2:08:79:ea:77:8e:
d1:cf:2d:bb:05:a6:dc:ea:eb:57:57:05:4d:00:ec:84:1f:00:
0b:3f:c9:9b:4b:0e:c6:e1:ca:b3:14:d2:13:17:b2:c3:8c:ed:
05:b8:34:e5:23:48:1b:8f:63:23:0b:ca:16:34:c9:07:ae:2a:
97:0b:77:cd:d1:b0:d9:83:6c:bf:12:31:d5:b8:be:8f:c8:e9:
db:5b:84:3a:97:19:13:de:fd:bf:bd:6b:3f:d3:ef:c4:7e:53:
ff:91:54:0e:20:e0:04:af:fa:dd:7e:f4:99:56:06:1d:cf:23:
f4:76:89:c6:1b:2a:54:c1:dc:e9:c0:12:61:6d:25:77:97:a3:
2b:a2:db:57:3b:67:dc:2a:94:40:36:11:15:9e:c9:bc:84:74:
5b:aa:01:a6:9f:bc:7c:27:11:8b:b2:f6:be:fc:9b:48:46:e3:
a7:19:31:63:5c:07:ec:d2:b4:25:4a:93:80:45:e1:b2:c7:ea:
ba:9a:5b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org