Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pspIAIKZrUP9W85iGf2mn0Djevk.roa
File: pspIAIKZrUP9W85iGf2mn0Djevk.roa (raw, json)
Hash identifier: kCWBsOONc4rM7En4kI61ZG+CYSNFO+vzlsgKaTWZ+9I=
Subject key identifier: A6:CA:48:00:82:99:AD:43:FD:5B:CE:62:19:FD:A6:9F:40:E3:7A:F9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pspIAIKZrUP9W85iGf2mn0Djevk.roa
Signing time: Tue 29 Sep 2020 09:52:13 +0000
ROA not before: Tue 29 Sep 2020 09:52:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 45.64.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2204 (0x89c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A6CA48008299AD43FD5BCE6219FDA69F40E37AF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5b:3d:73:44:21:c1:47:ee:e8:9b:6b:a2:ad:
56:9f:79:dc:17:83:24:cb:ef:ef:c9:56:a7:ad:77:
b4:18:bd:9d:a6:93:62:d5:a2:56:12:61:3b:5a:77:
ec:31:85:02:b8:fd:04:34:5a:1b:27:73:8d:08:21:
83:82:84:2c:fd:a7:2a:10:fb:5e:30:0b:1c:cb:b1:
9f:33:b9:64:5b:5d:88:24:db:a4:28:63:35:99:05:
d7:fe:d7:bd:4e:7d:dd:24:a1:09:16:05:3d:00:57:
16:cc:e6:21:58:a9:a1:7d:d9:d6:27:01:63:04:69:
95:f8:08:ef:3a:18:ba:93:e8:6b:4d:76:c3:bc:7f:
7d:e8:f7:42:ea:56:16:93:00:e4:0b:99:30:f8:7d:
b5:20:4a:94:08:b6:2e:7d:4a:ef:02:7c:b2:4e:fc:
4d:0d:b5:37:23:9f:98:d6:c7:58:af:06:e5:62:2a:
ba:97:10:17:82:10:da:ba:5c:0a:f1:1f:e7:f6:d3:
a7:9a:77:00:79:2f:b9:a5:04:b9:39:da:4c:04:0c:
3f:f4:a6:3c:aa:8d:4a:d5:63:82:bd:cf:cb:08:92:
46:c1:b2:7d:17:44:1f:d3:77:48:43:c4:87:a9:d9:
89:77:4e:51:75:e0:31:25:2b:33:fc:60:00:6b:c9:
21:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CA:48:00:82:99:AD:43:FD:5B:CE:62:19:FD:A6:9F:40:E3:7A:F9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pspIAIKZrUP9W85iGf2mn0Djevk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.228.0/22
Signature Algorithm: sha256WithRSAEncryption
14:b4:9d:86:50:84:b8:97:1c:22:36:91:c1:67:d6:af:75:92:
10:a8:7f:d1:1e:88:02:35:1d:1a:e7:91:49:99:3a:a4:78:d0:
57:51:b8:ec:6c:3c:f1:b5:f2:e4:3a:8f:7a:9c:01:0b:3c:da:
51:81:a2:16:5a:ee:26:5a:b7:00:52:00:d3:2c:27:d0:02:d4:
78:d0:7f:d4:cc:5b:a3:bb:39:4b:72:8b:99:3c:70:52:3f:56:
d8:88:6c:e1:4a:19:b2:8c:26:76:d9:8e:cc:6c:30:f3:ab:92:
df:ff:fd:19:b0:8d:18:80:57:f6:81:28:f1:b1:cd:bf:f1:94:
29:64:b7:ff:8a:78:65:82:dd:2d:ef:23:60:f5:9c:4a:4a:e3:
b1:5c:3e:4e:a4:5f:4d:05:98:ef:54:f7:f4:7b:8e:4e:5f:e7:
8a:be:25:6b:f3:38:07:d7:63:77:17:34:7c:aa:8e:22:36:33:
c8:e8:2c:fa:50:ba:3c:be:3f:c5:94:02:35:a9:ec:92:e5:81:
86:f8:aa:2c:59:60:e3:39:91:aa:b0:bd:7f:2f:f2:b0:03:43:
33:5c:e9:2a:8d:29:85:7d:4a:f6:5c:a3:d0:f1:3b:ea:97:bd:
b5:af:e6:0a:76:a1:ea:81:8b:47:09:e4:9e:3c:4f:30:ac:03:
f7:c3:9e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org