Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q7YHJhjUnCdUFzgcQA-sSBQSBLY.roa
File: q7YHJhjUnCdUFzgcQA-sSBQSBLY.roa (raw, json)
Hash identifier: +r42yR/MVA7KrcbBvJ4W8y4cxyzy5pFIb5TES6Fwi4I=
Subject key identifier: AB:B6:07:26:18:D4:9C:27:54:17:38:1C:40:0F:AC:48:14:12:04:B6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DE6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q7YHJhjUnCdUFzgcQA-sSBQSBLY.roa
Signing time: Wed 29 Sep 2021 02:42:58 +0000
ROA not before: Wed 29 Sep 2021 02:42:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3558 (0xde6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:42:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=ABB6072618D49C275417381C400FAC48141204B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:9c:c7:ae:e0:7b:a2:74:84:c0:be:a7:cf:
a3:38:12:19:b9:18:20:0f:e1:5f:45:c9:10:65:b6:
27:ad:15:4d:29:ee:7a:8a:4c:1b:7d:ac:a8:e2:e1:
08:24:a9:24:ff:b8:72:b4:a0:a6:91:46:44:21:c6:
75:26:ba:a8:0c:d6:54:1d:72:e3:f2:46:c0:7b:3f:
b9:a2:d5:27:49:84:8e:da:52:5b:b6:b3:c9:06:1d:
8e:a3:a2:6a:96:8a:7d:ba:bd:bc:33:e3:a6:ed:6c:
98:e9:0a:35:1a:3a:da:31:6b:bb:10:00:25:41:ba:
ac:e1:20:f6:7f:35:6c:b4:f6:7a:bc:a0:00:92:2e:
e5:fa:98:fc:8b:88:8c:32:94:ae:06:15:04:d2:9a:
d5:fc:72:88:46:f9:24:2f:e7:14:3f:65:fc:57:ad:
b0:d2:2d:31:cf:40:a6:0f:c7:72:5f:ea:2c:86:0f:
f5:b3:3b:bf:94:14:81:2e:4a:4a:2e:fe:24:96:d8:
83:7a:fa:b4:93:ee:13:13:ff:0d:71:e8:14:5c:fd:
1d:9b:e4:f6:30:ea:9e:78:0d:27:a1:af:2d:6c:de:
1f:b1:e0:74:42:e6:4b:b9:6e:6d:1b:00:dd:a5:f4:
7b:a1:04:0e:6f:95:2d:82:4c:86:f4:28:a3:58:87:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B6:07:26:18:D4:9C:27:54:17:38:1C:40:0F:AC:48:14:12:04:B6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q7YHJhjUnCdUFzgcQA-sSBQSBLY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
ca:07:11:88:cb:cf:38:8b:6a:02:0d:3d:f4:a6:f7:eb:61:bf:
b3:98:56:60:02:84:eb:71:35:dd:55:87:9d:73:4e:b2:a3:8e:
3f:57:d1:44:cd:e8:0e:2c:d5:f3:d9:7f:33:ed:3e:98:6d:2a:
73:13:b5:8e:67:ec:93:04:c9:6a:7e:d0:81:e8:22:90:13:47:
c6:fa:de:08:b6:f8:41:bf:6c:71:0d:9b:1e:f6:96:de:6a:be:
62:74:f1:3b:0a:17:ef:99:50:44:d2:4e:5e:53:58:4b:7d:51:
6b:ce:cf:6b:cc:c2:03:2e:90:d0:d5:77:c6:73:c8:2a:bb:55:
85:54:ed:9d:cf:9a:fb:b8:a6:ab:19:5a:dc:b5:8c:5c:d9:43:
2a:a1:5c:fb:3a:0d:be:84:d9:37:22:6a:fe:b8:4b:8d:cf:0a:
e9:34:b4:fd:fe:79:c2:7d:5f:be:e3:8c:7e:bd:53:95:fa:46:
3e:56:21:77:7b:ff:cc:19:32:a6:0d:0b:0f:6a:f3:53:4d:c0:
72:d8:c9:27:fa:5d:d0:85:34:bc:b5:01:25:3a:54:73:b3:65:
62:4e:c7:a2:3e:7b:d3:c3:07:13:3e:6b:d8:da:5d:1d:34:d0:
b1:a2:a3:ef:46:7d:b7:c3:44:82:49:46:be:57:b0:6a:79:d8:
bf:cd:f2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org