Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rlcQS-Vbw-lYVnRVn7uHI8RThOQ.roa
File: rlcQS-Vbw-lYVnRVn7uHI8RThOQ.roa (raw, json)
Hash identifier: t6JQw0DjUrp5tDoBjVoGsezsy2GqFFpyeOm0NOgfFLM=
Subject key identifier: AE:57:10:4B:E5:5B:C3:E9:58:56:74:55:9F:BB:87:23:C4:53:84:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D01
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rlcQS-Vbw-lYVnRVn7uHI8RThOQ.roa
Signing time: Sun 07 Feb 2021 11:47:48 +0000
ROA not before: Sun 07 Feb 2021 11:47:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3329 (0xd01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:47:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE57104BE55BC3E9585674559FBB8723C45384E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:a4:93:ae:d8:1b:9f:4f:22:d6:bd:e0:a6:63:
98:74:43:cf:d3:02:d3:61:eb:ee:dd:63:55:0e:56:
4a:c3:0c:16:f4:05:fe:22:75:0f:1d:ad:ba:34:c1:
4c:7b:bf:37:1d:41:18:8e:96:2b:e2:4f:b2:50:ed:
c4:ec:03:a4:c6:4a:e5:c0:16:cd:5e:d4:07:ca:93:
7e:b7:f5:85:ee:5e:69:13:e1:72:a1:b2:05:a9:f4:
6c:84:7e:4e:03:d7:51:e5:4b:66:69:ef:81:f5:59:
78:a9:88:e2:bd:79:88:40:7e:b3:22:79:d1:f0:75:
d0:79:5e:9d:4c:46:5d:20:4a:d2:04:87:c8:90:76:
1d:bd:33:b7:20:58:f0:21:c4:2d:25:11:4d:ee:34:
22:63:f6:bd:6d:49:7e:a3:31:09:5f:78:59:11:c5:
a8:b8:ef:6f:a7:5f:ac:0c:6c:16:e7:24:df:26:e8:
da:55:70:cf:6b:09:91:f2:a1:15:45:d2:64:68:4e:
d3:0c:97:35:46:6d:de:b6:5c:e9:0f:41:5a:c5:fd:
59:c6:6c:62:da:5a:ef:e8:0b:c2:83:78:df:ca:f6:
e9:69:c9:ac:73:ab:e9:1c:af:87:be:ea:4e:5d:8a:
ca:0c:93:da:ac:41:24:ba:dd:d9:b8:5a:fc:a2:22:
f1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:57:10:4B:E5:5B:C3:E9:58:56:74:55:9F:BB:87:23:C4:53:84:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rlcQS-Vbw-lYVnRVn7uHI8RThOQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
72:5e:0d:dc:ae:ea:94:dc:ae:de:3e:ab:5d:5f:3d:e9:5b:e1:
5e:92:0d:6d:aa:36:ea:7d:75:6a:af:d9:22:8b:5c:3a:44:2a:
7e:72:b2:70:7d:13:44:0d:ec:df:9a:42:ff:29:74:63:6c:e6:
ef:a9:bb:5a:7b:11:05:b6:44:53:3d:c1:e5:98:8c:e7:aa:3b:
72:02:4a:64:40:c1:7f:07:bd:93:56:53:76:3f:dd:86:0e:af:
02:0d:61:e3:f5:6d:f1:8f:3e:29:99:4c:45:68:14:ec:11:10:
6b:85:fe:ea:f1:e1:fe:bf:67:7c:0d:3f:f3:c4:bd:59:cd:94:
ef:75:82:b3:a6:c4:a7:d2:80:a0:bf:07:1c:25:b2:5b:d6:21:
86:b8:91:5b:0c:1c:b8:29:2e:c1:16:64:6d:64:84:eb:ee:8e:
e6:c9:26:2d:d3:a4:7c:b5:c7:23:ce:de:87:d3:3b:4f:c6:aa:
df:03:ee:02:79:74:e3:40:4c:e7:a6:5f:7c:79:0f:bd:9f:13:
dd:bc:2a:09:5e:c7:f8:4a:5d:9f:e8:a6:4e:17:0a:06:fa:18:
f5:55:cc:c1:6f:f7:35:6e:52:2a:6d:f6:4f:70:7d:2a:e0:e6:
b5:0d:3e:ab:12:60:23:74:3c:1d:0a:e4:72:8d:0d:38:cb:3e:
d5:28:8c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org