Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qv24FJei_G28DISzva64Yfo39rY.roa
File: qv24FJei_G28DISzva64Yfo39rY.roa (raw, json)
Hash identifier: Thx/wuoE9XLO2bdKFptwBcqS+bmEjIiGjYr95o+1iw0=
Subject key identifier: AA:FD:B8:14:97:A2:FC:6D:BC:0C:84:B3:BD:AE:B8:61:FA:37:F6:B6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 087B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qv24FJei_G28DISzva64Yfo39rY.roa
Signing time: Tue 29 Sep 2020 09:52:04 +0000
ROA not before: Tue 29 Sep 2020 09:52:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2171 (0x87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAFDB81497A2FC6DBC0C84B3BDAEB861FA37F6B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:67:e0:df:fe:48:60:a3:2c:9e:2d:c9:1e:
3a:32:53:7c:88:a7:53:a4:e1:ba:71:86:b2:a1:cc:
83:78:4d:af:bf:5b:a8:64:de:44:15:38:1f:c5:79:
39:ad:dc:d4:c1:bf:01:42:be:a1:8e:8b:49:ab:e7:
ae:76:15:70:71:60:29:26:0b:29:2d:5b:49:1f:8b:
b6:1b:72:5c:d5:a3:30:49:94:1e:92:1b:64:1a:28:
65:34:36:f2:26:59:3c:ec:a0:a1:62:ae:c0:25:eb:
8a:b9:7b:56:e6:46:9e:bc:dd:c6:d1:b0:87:0f:12:
60:7d:1d:6c:19:a4:e9:76:74:4e:ca:5d:bd:02:d3:
53:e4:66:44:bd:86:9b:06:d8:13:b5:89:1c:c6:04:
56:c6:48:29:34:df:0e:e3:d5:5d:6f:32:4f:a6:b6:
70:a8:e7:0c:f6:d8:21:d9:d6:b3:56:31:8b:46:e9:
92:e7:61:fb:72:e7:6f:59:10:51:86:03:e5:3b:b3:
27:a0:5c:65:37:4b:4d:43:f6:02:ed:df:4a:04:03:
b3:aa:b7:14:f2:11:55:c8:ba:88:e7:72:a7:78:6e:
cc:b1:77:2e:02:1a:78:58:96:4b:6a:d5:d6:e6:25:
28:99:3c:d7:a2:cd:bd:63:ab:5d:d6:bf:08:d1:10:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FD:B8:14:97:A2:FC:6D:BC:0C:84:B3:BD:AE:B8:61:FA:37:F6:B6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qv24FJei_G28DISzva64Yfo39rY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ba:f3:1e:2a:35:7b:dc:4f:b5:39:0e:cd:27:48:2d:27:e5:44:
10:34:17:8f:e6:8b:3f:97:4c:c3:da:bd:28:e7:d7:7c:28:73:
bb:29:4a:81:2f:e6:ae:33:ef:73:ec:52:60:d9:1a:44:9b:f7:
5e:95:f4:e6:87:72:53:c0:cc:79:f6:ab:1f:9e:de:d6:bb:85:
b0:9e:85:c9:98:d6:8a:69:96:db:ab:1b:f6:be:79:a8:4e:a5:
b4:0e:eb:4c:65:70:d2:f1:21:13:cc:00:6b:03:d1:b2:18:d2:
f8:e5:4c:98:5b:7b:09:03:d2:4e:56:65:02:72:98:1d:00:de:
ca:16:4c:bd:95:42:d5:47:c1:1b:ae:6c:df:1b:ce:15:99:ca:
78:9e:f9:31:03:a1:b2:15:df:b7:2c:23:23:7c:ab:d7:de:0c:
ea:43:f0:61:bc:81:c1:9c:cd:01:28:5d:c2:aa:02:26:02:d1:
84:f5:60:3f:9a:ac:bc:38:09:f0:b2:16:80:86:1d:7d:e5:a5:
af:92:ea:3c:04:22:d0:c1:fc:ca:f7:68:3c:50:27:b5:68:b7:
ca:c8:a8:fe:7c:f7:a5:2a:5a:50:f3:61:7e:b9:69:11:54:7b:
4d:5a:40:f6:70:ae:a2:3a:c0:47:14:04:7b:a0:62:6c:e2:34:
7c:8d:54:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org