Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2Ng9U7bjS52pCeIDZ0jAZplAWI.roa
File: q2Ng9U7bjS52pCeIDZ0jAZplAWI.roa (raw, json)
Hash identifier: zFW5zH+e5nSfWDeLyiGxLHwjh87ri5ED7g87eomE9y8=
Subject key identifier: AB:63:60:F5:4E:DB:8D:2E:76:A4:27:88:0D:9D:23:01:9A:65:01:62
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CB9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2Ng9U7bjS52pCeIDZ0jAZplAWI.roa
Signing time: Sun 07 Feb 2021 11:44:46 +0000
ROA not before: Sun 07 Feb 2021 11:44:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3257 (0xcb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AB6360F54EDB8D2E76A427880D9D23019A650162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a9:af:c2:61:ed:75:e7:e1:16:de:39:05:52:
b7:5e:df:f2:8a:1f:be:72:b5:f5:b4:a6:58:52:41:
1c:c4:bf:f7:a8:62:b3:f0:d6:0f:8c:77:c6:8d:78:
1c:90:e3:6d:51:20:18:d8:12:88:84:fb:b4:ee:5c:
c9:41:f7:f1:aa:5a:0a:97:1a:71:da:c1:ce:b4:7c:
ec:03:80:36:4a:3d:ed:f3:6a:57:eb:6a:93:7b:d9:
e7:82:e6:64:88:78:ad:7f:d4:2f:85:27:4a:cb:85:
8a:bf:65:a1:7f:f8:97:16:94:01:11:ad:e3:fb:20:
10:4c:6f:e6:f2:2f:1a:d9:fc:98:58:06:55:43:c2:
24:f5:3c:35:67:64:bb:51:d4:56:cf:3d:f3:e0:ef:
0a:bc:2d:60:72:35:ad:0b:79:e9:f3:5b:61:50:f6:
f1:12:c7:2e:fe:02:c7:06:4b:22:cb:0e:1c:88:18:
a2:78:d5:bc:fc:16:fd:ed:93:19:53:6f:94:4d:eb:
15:ce:83:08:82:1c:ca:00:86:11:cd:e2:b3:23:e3:
a0:e9:4a:b8:fc:49:08:ac:a9:f0:65:42:39:a5:20:
9d:2c:ad:cc:27:c3:2d:36:b7:55:45:45:7e:f9:f8:
2d:7a:df:e9:08:31:ca:14:46:49:3e:31:15:33:aa:
e4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:63:60:F5:4E:DB:8D:2E:76:A4:27:88:0D:9D:23:01:9A:65:01:62
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2Ng9U7bjS52pCeIDZ0jAZplAWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.64.0/18
Signature Algorithm: sha256WithRSAEncryption
bc:fe:29:56:ef:ba:eb:ed:7b:86:c0:52:ae:db:50:b0:62:17:
2b:f7:c9:37:55:9a:08:13:76:e0:43:15:6a:10:a3:2d:43:7d:
ef:17:90:a6:e3:4e:16:4d:5e:d6:39:b3:92:34:30:ea:c3:21:
69:15:39:53:b5:43:f5:04:93:7f:4f:82:08:54:13:7d:70:5b:
05:76:be:58:75:2b:fe:70:da:82:64:f6:12:90:0b:a3:4f:3e:
c2:f9:31:7e:5c:19:db:c9:e8:b2:9b:6e:58:62:8b:86:62:d4:
84:d3:6f:b4:f8:ea:bd:10:b9:33:59:2f:c8:96:20:57:96:1d:
d0:d6:a0:3b:1c:83:6d:65:b2:fd:96:fe:20:42:35:cd:91:fa:
89:fa:85:fd:02:01:2f:89:42:16:34:ca:df:49:7b:4a:34:cc:
1b:a5:23:d4:0a:46:63:6c:c8:75:f2:2c:29:13:8a:80:d7:80:
dc:98:41:f0:f8:71:9c:87:bc:b2:28:1f:8f:9d:2d:77:cf:7d:
00:00:e1:05:3e:12:bc:3d:88:16:fd:5c:f6:57:3b:bf:b4:e8:
af:71:1d:e1:2f:6a:fc:f6:c8:a6:ce:ea:d7:88:30:b2:41:90:
2e:3b:1a:bc:44:b9:22:4c:37:36:cd:10:73:ca:83:08:c9:1e:
69:bc:db:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org