Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sA2lrUCMA4ZnneR-NU4PUWSBuSE.roa
File: sA2lrUCMA4ZnneR-NU4PUWSBuSE.roa (raw, json)
Hash identifier: e3rP94dbQhjOsfHHYDqjm4spWquITaDaDQuOk10jo1c=
Subject key identifier: B0:0D:A5:AD:40:8C:03:86:67:9D:E4:7E:35:4E:0F:51:64:81:B9:21
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CB7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sA2lrUCMA4ZnneR-NU4PUWSBuSE.roa
Signing time: Sun 07 Feb 2021 11:44:44 +0000
ROA not before: Sun 07 Feb 2021 11:44:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3255 (0xcb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B00DA5AD408C0386679DE47E354E0F516481B921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:49:ba:0d:15:d2:f7:0e:ef:dd:ac:f0:1e:
c5:80:81:20:15:e9:b8:ca:5a:87:30:5b:39:0a:ac:
0e:1a:1e:23:11:1b:6f:b9:44:38:c7:da:f7:97:bf:
ea:f6:ae:e3:57:b4:99:90:07:23:96:c2:0b:ec:6d:
af:23:ef:85:fb:39:f9:06:72:78:43:9e:9a:d1:f4:
31:b9:2d:13:6b:02:c4:69:e0:ac:55:0a:3e:da:1d:
3e:5f:cd:a9:30:8f:11:72:36:d9:2b:02:bb:fd:cb:
5b:42:61:cf:f8:cb:96:2e:f1:60:32:33:48:a7:22:
af:81:70:0d:c7:af:9c:aa:7f:ed:f2:78:e7:fe:24:
74:d4:d3:ce:c3:d2:00:b5:12:6e:a8:74:b4:d5:45:
e9:fd:e0:d3:cc:30:41:3c:dc:04:72:8f:8d:53:78:
23:6c:62:04:a0:ce:8a:41:07:b3:ac:c8:d4:86:f9:
9e:a1:fc:8e:e9:29:5c:ee:30:2e:83:e0:04:a9:48:
f8:12:19:15:f7:e7:16:99:7e:e2:94:dd:00:1a:8b:
a0:60:96:61:78:ea:66:dc:cf:a7:ec:05:7d:2c:99:
c0:39:3a:28:3c:9c:69:d2:b4:2a:46:e6:17:a2:e8:
74:fd:e8:45:9d:a3:8e:41:a4:16:71:18:49:a3:36:
f7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0D:A5:AD:40:8C:03:86:67:9D:E4:7E:35:4E:0F:51:64:81:B9:21
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sA2lrUCMA4ZnneR-NU4PUWSBuSE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:6b:34:3b:48:be:07:01:ad:9b:78:ce:36:01:30:0c:05:2e:
57:03:95:e3:74:07:48:39:22:9b:ef:b9:d5:8e:ee:65:58:b8:
38:ff:87:e9:cb:26:93:43:c5:c1:4d:18:a6:c4:71:bf:00:0d:
d9:9b:90:55:a8:f7:20:a8:9c:1f:c4:02:12:09:d8:66:7c:e5:
d7:fb:31:fd:0f:eb:c1:34:e4:43:4f:68:bb:ec:47:28:a6:ea:
43:a1:a0:6e:7a:db:8f:a4:51:4e:60:c5:43:51:c4:fe:e3:d4:
54:8e:35:35:34:1e:fc:e9:a2:ff:a9:a0:96:46:0f:0c:36:18:
f3:38:a2:31:81:d4:ad:11:35:b5:29:5a:c2:9d:10:7b:8d:e1:
27:aa:81:3a:09:8a:74:62:92:7c:0e:e9:8c:87:ab:5c:14:0c:
53:2d:4b:75:2b:c4:f7:05:ea:44:ed:28:03:a7:33:16:f8:b1:
1a:3c:82:93:63:85:78:22:8b:46:14:6c:8c:97:8e:47:a8:b0:
3e:5f:54:ea:c2:1b:04:52:d5:4b:41:c4:ae:e8:da:ee:92:8f:
1d:b2:e5:02:19:a9:58:0d:16:31:97:3f:2e:53:ce:06:10:c5:
a4:aa:62:6b:f8:d3:e6:db:53:bb:dd:ba:31:ad:d7:2f:04:c7:
41:1b:91:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org