Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4exXrNmUkoJ5Mq6mSiLk9WUSFI.roa
File: u4exXrNmUkoJ5Mq6mSiLk9WUSFI.roa (raw, json)
Hash identifier: rc4HCdaIkyCVZiQRnxwnXgVjMUj2MeOs94mWQlJAWWU=
Subject key identifier: BB:87:B1:5E:B3:66:52:4A:09:E4:CA:BA:99:28:8B:93:D5:94:48:52
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0865
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4exXrNmUkoJ5Mq6mSiLk9WUSFI.roa
Signing time: Tue 29 Sep 2020 09:52:00 +0000
ROA not before: Tue 29 Sep 2020 09:52:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.210.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2149 (0x865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BB87B15EB366524A09E4CABA99288B93D5944852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4f:23:72:c6:91:74:b5:5c:af:56:e0:3a:07:
b6:fe:17:1a:0f:99:04:c7:b0:8c:64:4b:db:c3:51:
35:5e:48:39:e0:d6:3c:53:db:8e:92:c3:a8:81:c9:
13:ef:03:2e:c3:c0:58:5e:bd:35:57:2f:33:b9:86:
46:ba:e7:6f:03:4c:c6:47:94:f4:09:9d:b8:03:26:
d5:00:a1:05:9e:95:95:d7:98:10:2d:65:6f:50:69:
46:08:54:1f:77:ec:65:ce:97:1f:ad:e0:73:1b:f5:
1e:ff:a0:69:4c:b6:25:9a:71:ab:e2:4e:c2:23:a7:
da:65:bd:d2:d3:61:13:a0:01:3c:02:f6:c6:7f:ae:
db:ef:19:8b:49:7f:c4:0b:f6:a4:88:ca:5c:72:ff:
bb:3a:a8:e5:1c:57:23:d7:53:b0:8b:90:c9:e5:e9:
14:4b:da:74:db:06:d3:55:a8:78:ca:ea:39:90:cc:
73:7d:5e:a9:d2:9f:9d:83:1c:2e:f4:1a:63:7d:05:
31:3f:9b:e2:bf:4c:93:b0:69:ac:c2:b6:28:5b:ab:
4e:17:03:34:42:cc:17:ff:89:32:3d:6a:7a:3f:ca:
39:9a:55:f1:03:de:81:4b:de:26:da:fe:e4:88:c7:
fc:5e:d7:7b:57:fb:b0:e1:0b:9b:7f:7e:82:33:ff:
1e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:87:B1:5E:B3:66:52:4A:09:E4:CA:BA:99:28:8B:93:D5:94:48:52
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u4exXrNmUkoJ5Mq6mSiLk9WUSFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:64:62:72:f4:46:c7:78:16:e3:7f:41:31:77:69:bd:ee:d1:
61:70:34:8b:5c:4d:0e:c0:7d:27:a5:2e:45:21:98:02:31:98:
88:a5:1d:cc:85:e3:d1:58:40:06:99:43:68:f2:c9:59:23:97:
37:5d:b7:1f:05:2a:fa:52:91:a2:5b:ff:4d:1a:0a:15:5c:f8:
5b:c1:b0:c6:02:e1:a3:f8:9c:a3:d9:05:7a:f5:fe:da:33:7a:
dc:ce:6d:f2:47:43:09:07:07:20:60:e0:03:be:c1:89:8f:78:
a2:54:65:e1:e4:99:37:2c:8d:5d:1a:2d:c5:3c:6b:92:5c:4d:
21:bf:e5:f7:31:b7:41:b6:5d:ee:ce:00:be:70:72:82:06:d7:
19:47:90:90:d4:d7:ef:d6:5b:be:49:d4:f5:81:52:61:6c:72:
40:6e:84:fe:df:7e:6f:86:f7:61:e2:60:63:25:83:16:71:90:
b3:79:d2:b0:6d:bb:9b:fa:ee:16:02:4a:f5:cc:89:fc:f6:a6:
2e:c4:ec:8f:97:b3:60:d2:42:ef:52:92:2c:2d:5f:83:62:9e:
d1:9d:6c:25:8b:13:8b:3d:e1:99:44:93:b7:c8:08:62:42:37:
6b:34:16:dc:8c:5d:14:9d:b7:f5:59:c1:c5:37:98:a6:1b:2b:
f6:88:62:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org