Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/u5KTPhRofF5r4_Vq7GbUwBqbzVc.roa
File: u5KTPhRofF5r4_Vq7GbUwBqbzVc.roa (raw, json)
Hash identifier: wyeX27STVkNlu1Id+ex/+Sb+PaA9ALX1EbXFQarr0ZQ=
Subject key identifier: BB:92:93:3E:14:68:7C:5E:6B:E3:F5:6A:EC:66:D4:C0:1A:9B:CD:57
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ED4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u5KTPhRofF5r4_Vq7GbUwBqbzVc.roa
Signing time: Wed 29 Sep 2021 02:44:02 +0000
ROA not before: Wed 29 Sep 2021 02:44:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 175.180.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3796 (0xed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BB92933E14687C5E6BE3F56AEC66D4C01A9BCD57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:70:16:7e:ac:6e:04:57:76:c3:40:2a:48:04:
4e:20:0b:1d:cf:50:d8:e7:74:9c:d2:4a:2d:7d:49:
f6:d0:9b:1f:b6:90:cc:fd:d9:78:09:aa:eb:30:e4:
e3:36:5a:a9:ef:9c:01:04:97:27:f4:5a:d7:2c:05:
ba:81:77:87:59:d0:af:df:84:ab:06:9c:c5:1c:f2:
00:f3:ba:63:28:eb:90:f9:1e:4c:c3:f3:40:d1:11:
f3:42:7b:be:2c:a7:67:a4:6f:33:45:2f:31:41:6d:
3f:2c:73:b9:54:36:bd:10:be:c9:d4:21:3e:d8:f6:
6b:c5:fd:ee:1c:2a:9c:b7:5a:d9:52:ab:63:97:81:
d4:b2:27:23:43:b1:fc:6b:a7:c7:cf:64:69:4d:60:
e8:af:f1:55:9d:a3:40:31:12:8b:1f:09:3c:7c:3b:
0e:2d:a6:11:51:db:1d:70:d2:43:64:f7:76:0a:2a:
5f:5b:b7:a5:02:d5:38:a0:82:5c:5e:18:1c:49:9a:
94:05:23:0d:80:72:c6:d7:cc:55:ff:1a:15:ab:7a:
e7:53:aa:f8:c7:f8:b3:1f:50:d9:b6:1f:20:a5:0d:
19:08:0b:81:46:4e:56:bd:86:2f:f4:f8:13:e0:6e:
ac:a1:b3:bd:ed:7d:06:65:3a:92:19:cf:f8:31:21:
5b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:92:93:3E:14:68:7C:5E:6B:E3:F5:6A:EC:66:D4:C0:1A:9B:CD:57
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/u5KTPhRofF5r4_Vq7GbUwBqbzVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:ab:92:c8:3f:e9:60:7a:26:bb:14:d1:7e:83:e5:6e:c1:5c:
12:44:80:92:94:32:d1:04:a0:19:e5:11:0a:6b:31:ab:97:92:
d4:e7:99:cf:15:6e:34:0d:4b:8e:1a:51:9e:a8:f4:de:9d:3d:
45:08:fd:34:ac:73:bb:9c:d1:11:a5:ce:a9:e2:95:1d:69:4b:
f6:6f:bd:9f:0d:9c:f1:58:42:09:05:3c:03:22:76:03:8e:08:
a5:e4:ad:cb:c6:01:61:de:53:ba:9b:24:02:32:af:0e:d4:8a:
0a:0c:2e:c4:e6:85:6d:71:35:42:c0:ee:ef:8f:9d:95:2c:c5:
c5:03:e3:68:49:c8:32:46:d2:33:45:4e:a7:7d:6a:1e:23:4c:
63:f8:4d:21:7d:d6:52:41:fb:bb:75:be:76:a8:93:2b:18:2d:
43:50:75:c2:b4:1b:54:8b:61:d8:8f:a2:67:ac:85:2c:f7:ab:
db:4f:14:74:17:b2:ba:c4:89:fe:32:27:8c:f0:9b:f8:a5:fe:
0c:8a:5e:63:be:1e:ac:14:c7:cb:cd:01:2f:ad:be:fa:f6:56:
91:12:28:c0:f8:fa:c2:0a:fb:4d:ba:a4:b4:45:9b:31:b7:8f:
5b:82:8a:9d:a3:04:03:56:ce:3d:f2:32:d7:ee:56:0f:0d:9d:
14:9f:49:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org