Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tm1Ls47Z_l9ThTBgN7TdeqP6amQ.roa
File: tm1Ls47Z_l9ThTBgN7TdeqP6amQ.roa (raw, json)
Hash identifier: 8wBAXwEieboWFbYHvjWfy4ofUaTzmc5/5p6aYNEqwAM=
Subject key identifier: B6:6D:4B:B3:8E:D9:FE:5F:53:85:30:60:37:B4:DD:7A:A3:FA:6A:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0868
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tm1Ls47Z_l9ThTBgN7TdeqP6amQ.roa
Signing time: Tue 29 Sep 2020 09:52:00 +0000
ROA not before: Tue 29 Sep 2020 09:52:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.51.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2152 (0x868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B66D4BB38ED9FE5F5385306037B4DD7AA3FA6A64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9c:e0:7b:ab:15:2d:4c:93:a7:42:b4:c5:cb:
34:b1:f1:31:35:f1:a0:d0:9c:d8:4b:df:74:87:fb:
2f:06:06:35:98:18:5c:ba:44:1c:a3:c7:d4:be:6e:
82:a7:b5:f3:ff:c5:87:92:ea:99:cf:b0:cd:64:ec:
a0:49:6c:99:4c:f3:57:d0:62:d5:e4:e1:ef:35:1e:
50:db:e9:79:d0:aa:f6:08:ac:c0:e8:d9:c3:a4:3b:
3d:00:7c:a1:f2:92:b3:1e:c5:4f:58:ac:f7:35:c8:
b0:7c:2f:fa:43:d6:8f:8f:ef:79:65:0c:69:f7:99:
81:d5:4e:c7:11:45:47:59:26:d9:e3:d0:1f:3c:9c:
7a:53:14:08:a6:ce:bc:cf:a1:9d:07:05:f0:01:07:
2c:4c:11:f9:95:88:3a:9d:4f:b3:55:d1:2b:81:44:
03:ab:48:f2:5a:a6:f5:7c:34:49:09:cc:08:c4:37:
6d:4a:eb:13:87:6a:62:69:58:12:a6:7f:5d:a8:b5:
b9:41:4a:b3:94:08:c2:0d:bd:bb:33:1e:6f:41:1b:
56:5c:9d:f4:7f:7f:b7:62:21:35:ac:1b:96:8b:1c:
62:ed:8c:99:27:29:b4:7d:c0:bc:fa:bb:70:67:84:
38:21:ea:d8:b1:6b:11:bc:70:b6:a8:69:5a:8e:12:
8a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6D:4B:B3:8E:D9:FE:5F:53:85:30:60:37:B4:DD:7A:A3:FA:6A:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tm1Ls47Z_l9ThTBgN7TdeqP6amQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.181.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:9b:2e:7d:f9:50:30:fb:70:4b:a9:a5:f6:3f:03:cb:2e:e3:
e9:20:41:9a:ff:56:8a:68:15:dd:f7:2c:3b:90:06:a5:62:63:
aa:db:5c:75:f0:5b:6e:53:1d:c7:a2:4a:72:9b:8e:b2:fa:1a:
0d:52:cf:6d:32:13:71:4c:4f:e2:a5:56:0f:6e:5b:73:34:67:
e2:cb:d9:9a:3c:d9:36:75:82:d2:6a:07:e8:4d:d8:3a:e5:4e:
9c:1d:03:4e:c8:d9:c6:a5:bc:6d:c6:ff:2f:57:b7:c1:87:1c:
74:a3:8c:10:79:1b:97:ab:fb:d6:4c:23:ab:ab:93:66:22:aa:
0c:66:6f:e6:dc:e9:18:31:b9:02:8a:e8:41:ae:61:84:e2:35:
4b:02:22:b1:65:22:73:97:c1:f8:5c:5f:71:21:99:08:0c:ae:
dc:b8:a5:23:c5:cf:e4:ef:f4:20:55:46:33:2e:a7:26:d5:a6:
2d:33:ff:bd:9c:fd:5e:71:f2:5e:84:27:5a:f5:6a:7b:94:24:
65:35:6a:ff:0b:64:04:68:99:22:d4:32:96:53:e6:60:bb:48:
90:a3:63:c8:84:10:21:e1:5f:3d:3b:eb:3a:c1:3d:d5:0a:e1:
37:18:17:32:ef:18:e4:e8:89:bd:61:f7:c8:7c:5f:3e:9d:3a:
bd:7d:2c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org