Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pzWuKaZ7JdSchTL0oDOwzEvzQ7s.roa
File: pzWuKaZ7JdSchTL0oDOwzEvzQ7s.roa (raw, json)
Hash identifier: /0jYyswT50RLKYlQtUkY0jG7LbE78xLSIsoKfvluMy8=
Subject key identifier: A7:35:AE:29:A6:7B:25:D4:9C:85:32:F4:A0:33:B0:CC:4B:F3:43:BB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EC7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pzWuKaZ7JdSchTL0oDOwzEvzQ7s.roa
Signing time: Wed 29 Sep 2021 02:43:58 +0000
ROA not before: Wed 29 Sep 2021 02:43:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131586
IP address blocks: 175.183.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3783 (0xec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A735AE29A67B25D49C8532F4A033B0CC4BF343BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:03:7b:a7:2f:a3:1f:2f:c0:d9:bc:94:d0:a2:
f9:fa:ad:ad:c3:78:2e:db:61:e1:cc:2a:e9:03:0f:
e6:bc:d6:fe:8b:ce:80:e6:1c:16:42:26:f5:79:2c:
06:cc:56:8a:d0:59:52:57:cf:70:3e:3d:bc:3d:77:
7c:ec:02:a6:64:67:b0:bf:01:27:cb:05:65:1e:b5:
5a:c7:0a:48:42:95:a1:98:26:24:e8:05:c2:97:c3:
38:9f:30:fb:84:59:a0:2b:13:1a:90:fd:59:26:98:
ce:a9:a7:74:98:2b:fb:02:b3:55:7c:2c:56:19:90:
34:b6:55:13:87:4b:54:d2:27:74:82:7c:cc:04:a6:
d3:cf:ce:00:8b:bb:28:e3:fc:c8:f0:fa:23:8b:8e:
7e:27:fd:ac:2f:a8:9f:06:ee:a9:9a:9a:a8:31:63:
06:d3:0c:2c:6e:7b:bc:4b:94:0d:19:fd:2c:8b:44:
8a:55:44:28:05:a9:6e:5f:8d:4d:b6:e6:a1:fd:07:
2f:be:33:47:50:30:02:aa:2d:50:e5:52:bf:0d:cb:
a5:8d:f4:ac:b1:ab:21:9b:0d:2e:93:cd:3d:4f:33:
7d:91:02:c9:01:0b:8a:e1:30:a0:5a:da:b6:7a:57:
b4:9f:7a:fb:24:11:89:cc:2d:44:f5:0d:21:ff:f1:
39:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:35:AE:29:A6:7B:25:D4:9C:85:32:F4:A0:33:B0:CC:4B:F3:43:BB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pzWuKaZ7JdSchTL0oDOwzEvzQ7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.136.0/24
Signature Algorithm: sha256WithRSAEncryption
be:b0:c9:82:d7:4e:96:3e:c2:d3:44:a4:bf:da:dc:48:43:65:
1c:4f:f1:97:2d:18:fd:84:c4:3a:2e:93:6d:a8:72:f1:a2:43:
bf:57:d2:5b:fa:37:e4:ab:8f:9b:82:d9:57:d1:19:5e:90:61:
3c:ec:95:a2:2e:79:27:6b:a7:c4:85:e9:2f:53:94:70:e3:69:
c4:06:bb:ae:a3:51:74:7e:e1:a7:d5:5f:3f:86:fe:c8:fa:92:
b3:a3:10:16:80:ed:87:6f:96:c7:1d:8b:ff:cf:34:39:86:63:
ea:56:07:43:0c:6e:c4:7d:33:dd:ef:6e:de:a4:63:ed:c6:77:
f5:fa:b3:2b:7f:f6:5e:a2:07:a9:f8:ee:ae:60:fd:5a:0a:bc:
d2:8f:1f:28:8c:40:02:51:f5:0a:6e:b6:33:87:15:05:74:2d:
25:b7:31:99:8d:59:d2:58:76:ba:11:6a:7a:36:d2:b3:bb:70:
98:49:71:9d:c8:09:12:fc:48:4d:8d:0d:13:44:9e:9b:2e:ee:
0e:17:9e:5b:77:6a:01:69:ca:f5:50:3f:5b:30:a1:a2:e6:a8:
63:f7:75:e9:5c:1a:86:c9:8b:2c:20:da:ac:b5:ec:55:bb:94:
ac:b5:ff:bf:8d:ee:d9:46:20:35:bb:26:8f:96:3c:87:60:53:
7c:b5:ab:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org