Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rTInzup-pP5QDbm84k_dkcpQwBc.roa
File: rTInzup-pP5QDbm84k_dkcpQwBc.roa (raw, json)
Hash identifier: D58okx3EPpa4Kz6tCANWImrjV22jJyDIWbUSTubYFJ0=
Subject key identifier: AD:32:27:CE:EA:7E:A4:FE:50:0D:B9:BC:E2:4F:DD:91:CA:50:C0:17
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 087F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rTInzup-pP5QDbm84k_dkcpQwBc.roa
Signing time: Tue 29 Sep 2020 09:52:05 +0000
ROA not before: Tue 29 Sep 2020 09:52:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.70.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2175 (0x87f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AD3227CEEA7EA4FE500DB9BCE24FDD91CA50C017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1c:83:d4:86:c2:95:38:76:f0:a3:89:9c:db:
24:87:2a:e3:bd:46:47:55:0d:da:c7:26:73:b4:06:
91:79:ce:77:20:88:39:dd:7a:83:c5:bd:6f:a6:b8:
83:2f:72:f4:8c:a4:cd:40:8e:c3:96:c4:43:c4:9e:
9c:bc:81:2b:32:53:31:48:ef:22:8e:9e:1a:47:fa:
ec:1c:8d:bd:22:8a:8f:4c:a1:3e:90:9c:4d:78:5b:
dc:a7:57:24:24:e4:c3:a1:75:bb:49:dd:3d:79:5a:
b0:41:34:6f:cf:82:04:87:22:e1:f7:68:f1:af:5d:
35:45:10:0d:3f:c5:ec:19:dd:c0:29:da:7c:08:ca:
c0:b7:e7:42:2a:cd:82:5b:c7:82:5c:10:6c:6c:bb:
6c:ed:c8:76:2f:a9:ee:61:c2:93:ba:87:c5:07:bb:
2b:ac:f2:6c:2b:c5:25:16:f0:8d:fb:7c:28:e1:28:
e1:c1:45:06:d5:58:cf:60:6c:d0:80:2d:1a:dd:93:
ce:30:4a:c4:cc:02:29:7a:3f:59:43:4b:69:be:a2:
98:36:85:46:5d:ad:e2:c8:0d:2b:05:a7:d8:b2:52:
3d:96:2a:d0:b4:b7:0d:6b:e0:80:d8:a5:bd:8f:f6:
7b:e8:34:9a:95:b3:cc:62:60:c4:3d:f7:32:07:58:
24:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:32:27:CE:EA:7E:A4:FE:50:0D:B9:BC:E2:4F:DD:91:CA:50:C0:17
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rTInzup-pP5QDbm84k_dkcpQwBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
94:57:94:51:a4:2b:1a:f5:e4:bd:48:48:29:53:6c:a8:db:e2:
08:bd:16:e2:ba:07:69:03:a3:15:59:aa:78:5c:c1:85:df:b4:
fd:a6:5a:42:4f:de:e7:3f:18:43:04:88:ac:42:ea:e1:7b:3d:
c7:53:ce:90:21:b0:1e:f1:6f:62:ce:55:c0:73:ff:9a:38:ef:
b5:a9:3e:08:b0:89:13:99:fb:12:4b:dd:d2:f6:02:11:20:75:
4f:c0:52:5b:96:5a:ba:48:e6:77:64:a7:ab:bf:0c:24:ec:d1:
c3:74:5d:53:6b:96:51:72:21:04:be:63:ba:56:16:f2:90:7b:
f1:dd:a7:5c:9a:f1:e2:1d:ec:f0:f9:86:1a:2e:35:45:26:3d:
30:7a:3b:6d:21:b8:b2:ed:54:16:59:e4:53:38:58:d6:37:68:
31:0f:c1:14:c0:12:e9:88:13:0f:a9:51:20:de:cc:2f:64:7a:
57:4e:55:c0:0b:75:5d:dd:dc:a5:50:d5:26:d3:40:14:27:09:
ce:fc:31:65:a2:3f:c8:9e:f3:d0:bb:01:be:76:9b:27:9a:92:
75:2f:63:14:f4:d1:17:2c:f0:7d:0a:0f:92:39:c2:20:cc:6e:
db:56:26:a6:95:eb:ee:86:1f:86:96:3b:13:98:ad:67:86:3b:
33:f2:be:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org