Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tYkA9_K8Lpcm1dkFhz_7dx9UBI4.roa
File: tYkA9_K8Lpcm1dkFhz_7dx9UBI4.roa (raw, json)
Hash identifier: lgW8EeHD+NU9+xMitWkZnKgx2oolOV/CuaOAD1P19hY=
Subject key identifier: B5:89:00:F7:F2:BC:2E:97:26:D5:D9:05:87:3F:FB:77:1F:54:04:8E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C47
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tYkA9_K8Lpcm1dkFhz_7dx9UBI4.roa
Signing time: Sun 07 Feb 2021 07:26:08 +0000
ROA not before: Sun 07 Feb 2021 07:26:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 210.244.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3143 (0xc47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:26:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B58900F7F2BC2E9726D5D905873FFB771F54048E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:ae:bf:82:e8:96:26:aa:75:10:12:34:73:
46:8a:fd:5e:73:e4:73:4f:d2:a1:ea:dd:f1:2a:32:
66:c4:d9:9f:67:92:50:f4:bb:52:fc:a8:ec:17:57:
ac:b4:e8:9d:61:92:7c:77:fa:66:6b:1a:d2:62:6e:
13:eb:2f:94:ad:a3:f2:6e:97:c0:5f:36:a5:6c:11:
03:c1:29:79:24:f6:44:2f:ec:1b:53:ba:7a:f2:7f:
bf:04:a1:17:04:fd:26:75:16:b5:f7:fa:40:94:aa:
a5:90:a7:7d:de:07:09:5e:31:b5:1d:b4:59:42:8a:
99:db:79:f8:ea:83:c3:0c:38:dc:37:dd:35:c7:75:
24:28:88:f4:75:e2:2c:a1:90:80:8d:30:5d:eb:58:
bd:c7:53:90:68:11:81:33:7a:44:f4:d7:58:73:4a:
9f:8f:29:54:5c:3a:c7:09:e6:14:5b:27:4d:dd:19:
87:59:79:77:0d:94:da:e4:4e:29:a8:42:1c:ae:53:
74:bc:7b:92:dd:99:c9:38:bf:8a:b9:45:ef:45:a7:
d9:12:7d:bf:a0:33:6f:ce:92:1b:15:19:cc:10:0c:
cb:81:67:29:8f:2e:02:64:03:85:11:85:34:dc:1d:
b1:48:e6:60:34:95:c3:b4:35:cb:3d:cb:77:c7:6b:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:89:00:F7:F2:BC:2E:97:26:D5:D9:05:87:3F:FB:77:1F:54:04:8E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tYkA9_K8Lpcm1dkFhz_7dx9UBI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.84.0/22
Signature Algorithm: sha256WithRSAEncryption
23:52:57:56:07:51:6a:73:ff:3e:da:13:df:0a:96:92:18:10:
dc:1e:f7:cd:b9:34:10:59:8c:6a:59:f3:89:28:ea:4f:36:b0:
c4:af:3e:a5:7d:12:cb:09:f7:6c:9c:62:da:41:93:b1:fe:e0:
e0:bc:a8:eb:25:e2:51:d1:6f:df:39:35:92:07:c9:7d:69:96:
72:03:79:47:94:96:15:f7:6d:ce:fe:39:51:58:9d:3f:76:68:
60:22:8a:c8:87:10:fb:15:5f:bb:7a:d7:d9:79:7e:91:0a:92:
33:17:ef:25:ff:db:6f:66:c7:17:40:b2:97:84:75:4d:b2:37:
3f:f1:69:19:f1:4a:ac:3e:a6:73:77:1a:3a:01:2a:9f:eb:7c:
b2:12:54:c5:ca:db:04:a6:25:ab:47:c1:58:8b:02:cb:0d:39:
73:9e:78:08:c1:90:27:f7:ee:42:38:96:22:f3:93:1d:d0:db:
a8:6d:75:cf:82:7b:9e:1d:93:95:1e:1c:56:df:0b:33:11:6c:
8a:f4:3b:f8:ac:13:f7:14:b9:d7:a0:7f:8e:4d:57:57:d6:6e:
54:59:53:f2:21:d6:85:6f:b6:fc:2a:e0:f0:f0:ed:38:b2:b9:
1a:1c:92:b5:4a:4c:d2:c5:a5:92:55:bb:a7:ed:5b:50:e2:1f:
9c:6f:81:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org