Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufA6kiQE28gfKGXocfPW_3Jx0_g.roa
File: ufA6kiQE28gfKGXocfPW_3Jx0_g.roa (raw, json)
Hash identifier: miVZBFBAwtaZoNVnoyC6PZPvxR7ZdgjdaxWbQMj8KTc=
Subject key identifier: B9:F0:3A:92:24:04:DB:C8:1F:28:65:E8:71:F3:D6:FF:72:71:D3:F8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E0F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufA6kiQE28gfKGXocfPW_3Jx0_g.roa
Signing time: Wed 29 Sep 2021 02:43:09 +0000
ROA not before: Wed 29 Sep 2021 02:43:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 112.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3599 (0xe0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B9F03A922404DBC81F2865E871F3D6FF7271D3F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d9:c1:9b:e1:8d:3c:a9:eb:bd:65:e8:59:8a:
b7:45:eb:cc:17:f4:2f:87:02:a7:f6:12:dd:f8:07:
e1:06:18:3a:fd:38:a6:60:71:85:d6:f3:47:84:2a:
c9:08:e2:ca:29:7e:4c:d5:1a:5d:de:ae:c1:14:ca:
f6:5c:79:bd:95:33:9d:ba:f6:f6:14:f4:6e:a9:b7:
c4:09:61:2c:46:3d:e2:6c:5f:b5:0b:d0:49:0f:a9:
c9:72:72:69:fe:10:7e:97:e9:49:0b:1e:de:b7:15:
0f:f1:27:aa:a1:9e:2f:68:fa:aa:af:c8:97:c6:60:
19:76:0d:65:3f:5b:d8:96:4a:38:47:d5:56:91:98:
f3:a5:bd:f2:49:e4:06:a9:50:be:e7:94:16:bb:c0:
a4:0e:01:f1:e5:99:cf:a4:6a:bd:72:fe:42:8d:88:
4d:69:55:9a:92:1d:71:9e:61:15:bb:58:0a:63:0b:
f5:7b:38:13:36:52:51:2a:bb:a7:ed:d7:16:d7:bc:
40:4d:66:fc:36:bb:ef:da:9d:f2:c7:00:cf:54:8a:
1d:f7:f7:40:28:11:23:b5:b4:3a:76:2e:9a:3a:26:
ac:f8:20:4c:b9:d3:e9:12:62:5b:85:55:18:70:2c:
40:1d:04:40:56:6e:ab:e1:ab:28:f3:74:84:87:2b:
f7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F0:3A:92:24:04:DB:C8:1F:28:65:E8:71:F3:D6:FF:72:71:D3:F8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufA6kiQE28gfKGXocfPW_3Jx0_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
16:9b:b0:9a:09:db:a3:d5:2c:48:57:06:36:b0:41:dd:3e:39:
b0:13:1d:70:9f:01:ac:45:e5:23:66:93:4b:46:7c:82:e3:3e:
61:86:27:53:04:b2:b0:24:4f:07:b5:8f:4e:0d:d4:ab:57:85:
54:ad:ec:3a:2a:07:11:9e:ea:ef:ae:df:26:70:8b:4e:85:01:
7d:fe:f2:7c:30:d1:20:fb:72:8f:ce:f2:0f:c3:dc:94:98:b0:
42:18:4d:18:0a:2e:c0:98:b8:3e:2c:ee:83:4b:04:59:e2:c4:
ca:27:d8:fd:5b:1e:98:66:70:97:88:53:f8:6c:a3:1e:75:40:
d6:c7:72:1f:4c:d0:b7:b6:b0:a8:16:b5:50:a7:47:5f:0b:ad:
42:da:fd:c5:c2:3f:ea:68:03:3a:0a:01:97:a2:74:98:68:ad:
0d:89:da:c6:f3:79:b2:da:e4:27:8a:d8:9d:2b:41:4c:5c:fd:
70:23:6b:d0:80:78:52:4e:52:c7:36:cd:83:62:a1:d2:42:69:
73:7a:07:06:c4:02:bd:73:9b:f9:46:72:e1:57:6d:c9:96:4e:
f6:68:55:84:d6:4d:fd:9c:6c:0c:bc:55:af:13:bf:30:68:16:
dc:bb:1f:88:e1:4d:fd:4b:39:7e:c2:9a:ef:e2:43:ef:cc:37:
5f:7d:d9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org