Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sU14vGObFWwV9devshwBa1vO6Yo.roa
File: sU14vGObFWwV9devshwBa1vO6Yo.roa (raw, json)
Hash identifier: IoR717NV35PCpvP6j2S2YjUGSYPzO68xi0pFT+TCTzE=
Subject key identifier: B1:4D:78:BC:63:9B:15:6C:15:F5:D7:AF:B2:1C:01:6B:5B:CE:E9:8A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BB9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sU14vGObFWwV9devshwBa1vO6Yo.roa
Signing time: Sun 07 Feb 2021 06:31:33 +0000
ROA not before: Sun 07 Feb 2021 06:31:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001 (0xbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:31:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B14D78BC639B156C15F5D7AFB21C016B5BCEE98A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:02:85:d2:f1:4a:f0:24:fb:eb:6b:9c:04:
3d:c3:1b:d6:cb:de:d5:8d:37:52:56:ea:0e:95:0b:
b9:e9:38:73:0c:1e:a7:d4:bc:66:63:a8:e2:af:70:
98:75:5a:9a:2a:c2:e1:de:cc:a9:65:28:5d:30:c7:
8a:3e:32:8e:e1:34:c5:13:65:35:bf:51:49:de:0d:
2d:c0:cb:6d:a7:50:74:18:7e:57:d4:f9:2e:8f:3c:
01:96:15:87:46:c2:3f:1e:2f:63:46:f0:bb:5e:97:
fd:8f:eb:ba:85:61:f8:6d:40:9b:38:98:de:1a:15:
d6:9b:6c:44:19:2b:3b:fb:27:13:00:4e:73:d7:0c:
09:00:d3:bd:f7:ff:d4:85:12:9e:f2:35:15:82:bf:
c3:9e:29:e5:28:9f:ad:ed:2a:de:c0:1b:f1:37:34:
a2:00:6d:53:60:9d:35:24:79:d6:d0:35:21:f5:dc:
d3:d0:ec:fd:44:76:01:7a:4f:f7:a1:17:62:79:fd:
88:9a:e8:d2:c4:e6:8b:30:54:1d:53:7f:46:e7:72:
00:ac:ab:b9:9e:89:86:01:9b:aa:02:6b:df:0d:70:
da:0c:41:8f:ab:47:e3:13:9c:85:51:4a:f4:45:f1:
ed:66:03:c7:0e:96:a4:fb:fc:5f:ce:c5:a0:96:17:
51:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:78:BC:63:9B:15:6C:15:F5:D7:AF:B2:1C:01:6B:5B:CE:E9:8A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sU14vGObFWwV9devshwBa1vO6Yo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0f:b5:5a:58:5b:2b:bc:fe:28:a4:e0:60:9e:42:42:b8:d2:5b:
8a:70:88:bc:98:57:da:f6:4b:56:a2:b3:d5:a7:f9:e4:3a:72:
af:ca:35:60:d2:0c:7d:ed:4d:35:fc:52:a4:cc:58:1c:49:47:
5d:e1:ef:e7:3d:9a:3b:c4:d0:b4:32:cf:6a:82:77:bf:8f:21:
f2:c2:46:e7:cd:f5:5f:8c:51:f4:eb:41:11:87:8c:f4:4f:42:
59:5f:f4:ce:30:aa:62:e1:1e:39:c9:99:7a:e4:42:6c:3f:39:
d5:d5:39:92:6f:ab:ec:a6:2a:a7:01:41:70:bd:a9:a7:0f:27:
f9:ec:77:e1:e4:7b:21:f3:0e:c3:23:1d:34:30:3d:c0:a7:20:
44:cf:a0:d1:49:d7:dc:46:90:23:49:de:33:cb:50:0e:42:fd:
d4:9d:3d:ce:28:92:72:6e:23:3f:02:93:d1:7d:de:01:69:4b:
ae:08:8a:d6:eb:73:78:ef:97:6d:1e:2a:71:a4:e7:3f:51:65:
bc:31:19:51:1d:ce:f5:04:35:76:1a:ea:d2:22:f6:4c:3f:bb:
a9:94:3e:94:28:4a:e9:ff:47:c7:15:90:b7:65:b9:b1:1d:d7:
dd:e0:54:4d:4b:a0:64:49:e0:80:9e:b2:bf:e7:62:ab:36:cb:
0d:c3:a9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org