Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1J3AREFYT5Jk-HIRcCcXS6degA.roa
File: q1J3AREFYT5Jk-HIRcCcXS6degA.roa (raw, json)
Hash identifier: 4aunxYUtk4jp1vjEQyRAxs7N4JYU+JIEPC1yHqu0lfA=
Subject key identifier: AB:52:77:01:11:05:61:3E:49:93:E1:C8:45:C0:9C:5D:2E:9D:7A:00
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B77
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1J3AREFYT5Jk-HIRcCcXS6degA.roa
Signing time: Sun 07 Feb 2021 06:20:11 +0000
ROA not before: Sun 07 Feb 2021 06:20:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 210.64.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2935 (0xb77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:20:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AB5277011105613E4993E1C845C09C5D2E9D7A00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2d:f1:05:a2:4e:6d:ac:4f:4e:0f:ef:f0:7d:
18:a7:d7:14:74:5e:5c:06:b4:05:5c:0f:2f:68:cc:
0c:20:63:4d:65:31:21:f5:36:0c:5e:6d:b7:27:a1:
0c:bb:28:cc:a6:b3:32:54:71:7c:17:c9:89:4a:fa:
9c:2c:69:7c:87:f8:51:b3:2a:72:ba:19:d2:78:6a:
a1:9a:e2:63:c2:e7:01:c0:0f:18:08:b2:70:0c:9a:
91:2d:95:ef:67:17:f2:32:e9:32:47:ae:5e:7d:fa:
90:a1:35:ed:85:6f:c0:43:37:f0:d1:3b:34:0e:1c:
f0:86:3e:48:21:4d:ce:33:85:46:97:14:a5:37:74:
c9:0a:be:9c:f7:85:6a:a3:04:0e:e9:a0:68:ef:79:
da:b3:ac:f9:c5:d8:10:de:5f:1b:80:b9:b0:26:b4:
50:d6:86:2c:8f:81:f4:fd:c6:05:1d:41:c3:1f:ca:
cc:4f:c4:43:3a:f0:c3:ad:4e:7b:9d:02:dc:60:f1:
aa:27:23:98:cc:c8:8d:8d:6e:ee:eb:58:36:8c:40:
dc:55:d7:15:33:92:72:d0:f8:2f:4e:ab:7f:bf:e1:
e2:7d:dd:e1:e1:09:77:a8:09:83:a1:85:09:db:bb:
4d:93:70:c4:64:91:2e:76:ba:5a:25:04:23:74:7f:
cd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:52:77:01:11:05:61:3E:49:93:E1:C8:45:C0:9C:5D:2E:9D:7A:00
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1J3AREFYT5Jk-HIRcCcXS6degA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:85:d9:ea:07:2b:6a:40:32:97:7e:25:9b:ac:72:8d:47:97:
73:16:86:67:a5:59:45:10:bd:b2:dc:75:83:4b:5d:79:88:5d:
84:d3:e0:cb:b7:67:29:c4:c2:48:07:ee:0d:f8:16:5e:f6:5c:
d4:02:a0:67:4f:59:66:16:0d:8d:7c:c3:02:8f:a9:b2:60:73:
03:0e:a1:0c:22:03:a2:f7:c8:0e:b3:c9:e7:1e:5a:06:65:1c:
73:3e:e0:b6:38:e8:78:26:46:cd:63:1b:5c:a9:84:20:6f:2b:
a7:52:f0:25:af:3a:47:c2:3b:dc:f9:03:9b:46:34:5f:9b:7a:
01:f8:38:a0:14:7b:b5:75:6f:80:57:34:6c:59:ec:2a:62:55:
6b:c8:35:72:cc:c6:0d:af:90:57:4d:48:76:ff:97:fa:c4:27:
4d:6a:fb:a3:0f:2b:66:b2:1d:c4:77:a2:02:70:17:e6:21:c2:
30:cb:cf:42:b6:63:d6:aa:50:88:eb:56:19:ae:2e:6c:f6:06:
50:3f:12:98:6e:ca:4c:f9:7a:80:7d:bd:1f:cf:6e:19:2a:f7:
8b:88:b5:05:6d:1d:30:3b:5f:6d:c9:9d:09:c2:41:c9:2a:cf:
ca:d4:87:ad:04:d8:f8:8f:81:86:e1:7e:e9:4a:ce:eb:ec:c4:
7e:6e:d3:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org