Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qehk9PNr3yMCI3TEYqg18LKeqBQ.roa
File: qehk9PNr3yMCI3TEYqg18LKeqBQ.roa (raw, json)
Hash identifier: og8p+xN1LZj+lbKuSuA9mW0pUvjTxtHeaTaqnKWvghc=
Subject key identifier: A9:E8:64:F4:F3:6B:DF:23:02:23:74:C4:62:A8:35:F0:B2:9E:A8:14
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E43
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qehk9PNr3yMCI3TEYqg18LKeqBQ.roa
Signing time: Wed 29 Sep 2021 02:43:22 +0000
ROA not before: Wed 29 Sep 2021 02:43:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 175.183.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3651 (0xe43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A9E864F4F36BDF23022374C462A835F0B29EA814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d6:0f:bd:69:5e:4f:ed:0c:92:32:f0:c2:c7:
d0:b8:bd:86:80:74:48:47:df:03:e2:c5:69:9c:98:
9e:48:f6:e9:f4:f1:6d:16:e2:3e:9b:32:9c:d6:0a:
03:3b:24:28:8f:0d:b1:55:04:d3:31:c3:a1:42:ff:
fa:2e:cc:3f:87:02:4c:5f:bb:bf:23:b1:a7:fe:f9:
bc:47:db:f3:67:99:04:3a:d3:39:64:9e:18:ac:50:
a1:8d:05:28:2a:7d:ad:ce:03:9b:00:e7:00:22:b5:
55:a1:7c:91:9f:bf:c3:6b:16:02:37:a1:5e:c9:fa:
75:fa:94:ff:7a:75:bc:21:1e:d3:15:af:ab:d6:8a:
73:97:f9:68:30:b1:6b:7b:0f:5f:56:a1:86:9d:0e:
f6:79:77:14:4f:88:4f:dc:78:03:45:15:0c:50:ce:
23:80:3c:16:64:15:66:4a:85:7f:62:64:2a:50:41:
e6:85:8e:e9:a5:f0:6f:3d:68:53:ad:e8:47:07:1e:
4b:cd:bf:1c:d5:3f:d7:e2:52:4b:d0:b3:e4:d9:4c:
b3:72:ea:80:b0:ab:79:6a:e8:23:ca:1a:a7:26:c9:
cd:9e:95:07:72:98:81:5d:bc:5c:a8:bb:bd:12:c3:
b4:17:35:fe:d2:6a:94:be:ed:2a:b4:e5:3e:63:c7:
67:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E8:64:F4:F3:6B:DF:23:02:23:74:C4:62:A8:35:F0:B2:9E:A8:14
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qehk9PNr3yMCI3TEYqg18LKeqBQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a8:39:2d:e0:c6:c9:b8:77:a6:9e:12:ca:f8:81:10:49:21:85:
f6:df:d5:e9:60:70:c5:47:e7:57:11:46:bc:44:aa:be:25:74:
11:ae:b5:64:c5:ff:20:b0:c6:d1:4c:08:ff:f2:2b:07:fe:c5:
38:e0:f2:28:f3:9a:59:b3:eb:79:9b:8b:3a:e1:0e:a5:c8:17:
0e:94:2c:2d:f4:45:b3:55:9f:d1:22:53:af:e8:ef:ac:06:3a:
c3:1e:ff:a7:8a:d1:1a:03:fd:55:44:f7:db:f6:19:e8:9e:91:
af:bc:f1:42:c7:d6:5b:6c:b5:17:88:c2:b9:b2:37:7f:e9:8c:
27:75:83:51:29:3d:f6:68:65:a3:1b:1b:83:dd:a3:ab:8f:af:
88:90:bb:2b:bf:69:e1:e5:a9:f5:7e:e8:5d:e9:f2:88:cc:f0:
09:9e:ec:66:f3:35:4f:a3:02:ed:ae:20:a1:0b:8d:dc:6f:63:
37:32:c0:5e:b4:16:43:1c:a5:71:80:a0:08:6e:75:ef:70:1a:
d4:57:47:7b:eb:21:be:8c:77:ca:48:39:7e:9f:02:a6:9d:f7:
35:72:ab:a4:43:eb:1b:3e:91:40:42:d3:4e:2f:5a:f1:15:78:
91:07:08:75:0b:ee:94:23:35:39:92:3c:10:0e:72:9c:8f:5a:
b8:8f:cd:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org