Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpehVPxdfmYciUPv3YatYojyG3k.roa
File: qpehVPxdfmYciUPv3YatYojyG3k.roa (raw, json)
Hash identifier: NHVTRRK8iUen49aaUYMuVlEY+15yIqHtt/UPCa1tQl0=
Subject key identifier: AA:97:A1:54:FC:5D:7E:66:1C:89:43:EF:DD:86:AD:62:88:F2:1B:79
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B61
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpehVPxdfmYciUPv3YatYojyG3k.roa
Signing time: Sun 07 Feb 2021 06:03:32 +0000
ROA not before: Sun 07 Feb 2021 06:03:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2913 (0xb61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:03:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA97A154FC5D7E661C8943EFDD86AD6288F21B79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:82:e6:3b:fa:7b:52:10:56:12:3a:38:03:15:
29:0b:0b:77:75:0a:04:aa:e3:8d:89:16:b3:65:e1:
15:60:01:a3:6b:36:f6:f6:e4:b0:eb:64:23:0d:c5:
2b:d2:30:33:cc:fa:dc:46:4c:d7:b6:44:f2:a5:a9:
eb:9a:53:d9:e3:91:91:a8:bc:48:f1:d4:eb:0d:93:
fb:3a:49:3c:53:33:9c:8c:b1:ca:eb:8b:ed:ad:4a:
fc:d9:bb:29:a7:7a:5b:7b:17:42:79:a6:2b:91:f8:
d6:ae:ca:4e:0d:d2:04:16:c2:83:eb:12:59:68:44:
40:91:62:7d:6d:de:07:de:0e:61:a7:43:b6:55:17:
49:87:f9:38:d2:9f:f6:f2:c5:10:6e:43:33:e8:ff:
02:22:2b:b9:d1:97:39:77:7b:ba:5c:6e:db:50:4d:
96:a5:fe:8e:c1:0c:dc:5a:b8:7b:61:bd:45:ff:78:
85:1c:29:d7:0d:c0:66:4e:b1:95:8d:42:0b:94:f3:
02:68:51:f0:ba:83:9d:30:81:46:fc:38:55:1f:7b:
86:db:de:a0:3c:18:64:c8:ec:b2:d7:15:81:68:52:
d6:06:7f:86:06:33:d4:83:2b:28:f6:68:e0:fd:8d:
09:f2:78:04:11:c4:4d:bd:d7:d7:f7:62:35:40:11:
64:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:97:A1:54:FC:5D:7E:66:1C:89:43:EF:DD:86:AD:62:88:F2:1B:79
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpehVPxdfmYciUPv3YatYojyG3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
7a:f1:c4:31:25:b3:95:5f:cb:91:a9:73:7d:bd:fe:a5:98:7e:
40:f5:f0:07:55:7e:25:49:ee:fb:d5:23:f0:65:0b:96:c9:c7:
e3:14:8e:ab:6c:f6:d5:10:09:95:5a:f2:90:8e:f6:3b:28:50:
57:ce:40:44:1e:5d:ff:47:ca:4e:69:09:42:8d:53:d3:7a:59:
b1:5b:e6:95:11:fc:8b:6a:7a:ed:ec:a9:1b:99:ac:49:c2:74:
6f:42:70:2c:c8:83:8e:ef:ac:38:69:74:05:5b:31:b7:71:9f:
43:19:0a:b1:54:24:a4:34:ef:7c:83:37:7f:4c:c4:3f:4c:76:
89:44:53:3e:8f:32:36:e9:92:f4:ae:c6:b2:df:3c:40:26:0f:
63:87:59:5c:2c:a9:2e:a1:02:2c:a5:48:cc:a4:35:4e:d9:53:
bf:69:ea:51:25:e1:d3:5e:a4:5c:da:2b:fb:a1:73:50:29:7a:
59:9e:8f:eb:58:71:ef:50:d2:1b:2a:f7:13:4a:72:ea:91:6e:
ca:d0:f3:28:c6:dd:7b:fb:64:a3:cd:f9:8f:de:e8:d9:03:d7:
ef:33:16:bb:70:0d:43:48:d5:08:d2:9d:d6:d9:ba:9b:52:ce:
5d:78:3e:ad:dd:7f:da:db:1b:05:bc:7f:a9:fc:d5:2d:84:41:
15:48:5a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org