Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufbEIsTUgrTMsF7fqbd7ho0eRc0.roa
File: ufbEIsTUgrTMsF7fqbd7ho0eRc0.roa (raw, json)
Hash identifier: hbXv82a43jY3O8fsj5CDUZX/wFNnN+24lZy2P7SmMFs=
Subject key identifier: B9:F6:C4:22:C4:D4:82:B4:CC:B0:5E:DF:A9:B7:7B:86:8D:1E:45:CD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DF1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufbEIsTUgrTMsF7fqbd7ho0eRc0.roa
Signing time: Wed 29 Sep 2021 02:43:01 +0000
ROA not before: Wed 29 Sep 2021 02:43:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 61.56.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3569 (0xdf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B9F6C422C4D482B4CCB05EDFA9B77B868D1E45CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6e:f6:58:e0:85:03:21:18:4b:26:69:7c:97:
6d:d3:45:15:8b:0d:6d:a7:3a:f5:33:8a:86:19:d8:
85:86:8c:ae:d2:43:c5:f9:18:58:d5:60:c0:c2:2a:
29:db:a5:30:e9:06:b4:e7:7c:a5:0c:b4:d4:ff:38:
7b:90:02:df:81:43:cc:70:93:de:b5:2e:fe:ed:ce:
82:cd:2b:81:40:57:53:b9:40:7c:ef:13:6f:37:e5:
7e:69:36:a4:1f:15:4d:5a:0a:74:de:b9:8d:7b:49:
82:8d:74:00:f5:9f:50:5c:46:2a:19:5d:13:33:cc:
cc:6e:f7:d8:2c:cd:15:c4:6c:a5:66:89:2a:82:e5:
29:94:4f:10:61:08:09:3d:0e:3e:5f:ac:60:84:e1:
89:51:ee:d3:49:fa:39:ad:37:4c:3a:fb:19:02:5b:
93:b9:02:26:94:3e:6b:07:61:6c:72:6c:bd:b2:b0:
97:24:0d:96:14:31:92:c5:a2:da:fa:cc:26:29:95:
ac:df:28:66:32:4b:67:3b:9a:67:ec:c7:e9:66:cd:
43:81:4b:da:02:3b:b2:e3:fc:4b:1a:6a:10:8f:cc:
9b:44:87:cd:04:07:52:5d:c2:cb:15:68:37:e4:64:
c0:f3:0a:15:0d:be:70:ec:b6:be:d0:2b:22:a2:12:
df:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F6:C4:22:C4:D4:82:B4:CC:B0:5E:DF:A9:B7:7B:86:8D:1E:45:CD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ufbEIsTUgrTMsF7fqbd7ho0eRc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.192.0/19
Signature Algorithm: sha256WithRSAEncryption
98:d9:cf:37:36:fe:f7:77:9e:6a:c2:bf:41:f7:fe:a9:af:bb:
85:0a:58:46:b7:fe:52:99:89:4f:17:89:7b:f2:38:f3:20:4a:
bf:26:bc:33:f0:6c:26:82:5c:64:dc:de:68:ab:49:05:25:36:
53:31:87:74:b7:89:be:7d:15:2f:17:b1:f8:5f:82:3c:96:69:
f0:bb:11:08:a4:8d:a7:23:8a:2a:6c:64:95:65:23:e4:ee:5e:
16:01:d8:7c:97:06:c3:e8:04:a7:4a:3c:e2:f5:47:eb:d4:6c:
79:49:10:90:f3:ce:4d:03:f7:f9:0e:36:a2:99:8c:21:c8:95:
48:6b:74:9d:6d:c5:83:06:95:6a:fe:9d:25:0d:7a:6b:d8:6f:
26:ff:bb:7e:4d:93:8c:87:04:6c:e0:ad:75:d9:c2:93:9a:60:
7c:30:bd:bd:d8:1e:a4:3b:45:42:f0:45:b0:3c:78:16:4a:62:
26:f4:dd:52:b2:ef:56:60:6b:11:79:07:52:a2:8d:a3:55:f0:
e9:d8:f9:53:f2:d9:87:6a:ed:23:4d:35:ad:15:3f:63:8f:75:
64:98:f4:b9:e2:c9:9d:f9:41:c9:9e:e8:91:c7:0f:20:c9:a0:
7b:e7:cd:cc:51:69:b2:af:0f:f2:ff:14:5b:69:c7:a8:bc:8e:
4f:ee:75:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org