Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rYnF_qjVBpwVePQcphilG7Q6STA.roa
File: rYnF_qjVBpwVePQcphilG7Q6STA.roa (raw, json)
Hash identifier: hzgj8D2/bx3Lq5afP0c2PbShePl/8VLnBX2mnQAaaX0=
Subject key identifier: AD:89:C5:FE:A8:D5:06:9C:15:78:F4:1C:A6:18:A5:1B:B4:3A:49:30
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BA0
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rYnF_qjVBpwVePQcphilG7Q6STA.roa
Signing time: Sun 07 Feb 2021 06:27:02 +0000
ROA not before: Sun 07 Feb 2021 06:27:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2976 (0xba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:27:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AD89C5FEA8D5069C1578F41CA618A51BB43A4930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a0:ef:d9:32:bb:d8:25:c4:68:c9:b0:59:55:
bc:3a:be:e5:99:62:e2:b3:a1:3d:81:5c:18:cf:72:
65:51:45:15:55:41:a2:d7:42:2c:42:0c:8b:a5:eb:
8e:3a:81:55:df:f2:ab:ff:23:38:ca:21:f4:b1:e4:
ea:39:66:5e:c8:86:15:90:6e:0a:67:3b:b1:e5:0c:
e2:e8:53:39:6b:53:6a:51:f1:af:51:4f:04:20:10:
b1:d4:db:e7:05:f6:76:c6:a2:14:bd:76:56:b2:0d:
06:05:47:f6:dd:69:61:7b:11:78:1f:bd:bf:82:ed:
f5:ec:9f:3f:36:6d:a3:9c:44:7f:62:88:e1:ef:08:
9f:f9:1d:cc:5a:10:a6:aa:a1:3e:12:0a:f8:e5:f2:
54:c8:ee:e0:04:00:1e:b5:78:aa:f8:4f:54:63:3c:
04:af:f8:b1:12:40:87:e5:cf:22:b9:3d:0c:17:ac:
f9:54:91:19:8e:6c:cd:7c:d7:73:39:30:3b:6b:50:
d7:c4:df:fb:fa:c9:a5:a5:04:40:a5:8f:0c:44:c7:
b5:24:74:d9:80:61:ec:06:16:5d:c8:06:a0:1b:30:
89:5a:ab:82:51:b7:ac:91:ea:59:87:53:2e:d1:06:
7a:50:36:71:8c:49:54:57:e1:2f:ba:4c:3a:11:44:
97:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:89:C5:FE:A8:D5:06:9C:15:78:F4:1C:A6:18:A5:1B:B4:3A:49:30
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rYnF_qjVBpwVePQcphilG7Q6STA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
90:a7:40:d3:a9:32:c3:81:0e:0e:da:db:dd:75:3d:07:6a:08:
7a:96:f0:71:b5:27:1a:a3:18:25:9e:57:3d:9a:fa:b3:77:c5:
7f:a2:79:88:53:aa:47:d4:e4:0c:23:b5:fd:99:da:42:3e:62:
7f:c9:9a:33:d9:70:9d:fb:5d:90:1b:ca:19:14:c1:14:c6:58:
f1:09:e3:c4:42:3b:65:6b:81:39:0b:e7:93:6f:ec:b2:f7:bc:
49:f9:b4:4e:1c:b4:7c:72:91:14:be:d9:98:1c:fd:f2:e1:45:
03:8e:86:3f:8c:1e:a3:51:60:b2:74:28:1f:fb:34:1a:41:99:
7e:b2:42:a1:07:6e:cf:f6:79:fa:88:84:95:af:51:87:2b:2f:
48:77:ec:a6:d1:2d:4c:7c:d2:9f:a9:7f:f6:8d:7a:41:e5:42:
57:2d:8e:21:fc:f0:2b:20:d4:e0:60:0b:0d:d9:51:dc:82:34:
94:19:f7:e9:8f:28:96:28:d3:6d:b6:ca:b3:2f:aa:10:1a:c8:
bd:19:f3:6e:dc:3f:09:4c:35:b5:37:b1:c9:ea:75:53:de:d3:
9e:1a:5d:ee:66:0d:ad:7f:45:bb:24:69:c7:6e:dd:e1:a8:13:
42:7d:71:e9:66:e9:bb:93:e3:4a:bf:99:40:ce:20:fd:bd:7b:
03:fe:2b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org