Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/v0rXl758K4zlVTA7a_pQP-fz77M.roa
File: v0rXl758K4zlVTA7a_pQP-fz77M.roa (raw, json)
Hash identifier: k2CazBe0qQw0YCJt6TTYdM5mia1HJpjzCmGfCTMXH4U=
Subject key identifier: BF:4A:D7:97:BE:7C:2B:8C:E5:55:30:3B:6B:FA:50:3F:E7:F3:EF:B3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E26
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v0rXl758K4zlVTA7a_pQP-fz77M.roa
Signing time: Wed 29 Sep 2021 02:43:14 +0000
ROA not before: Wed 29 Sep 2021 02:43:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3622 (0xe26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF4AD797BE7C2B8CE555303B6BFA503FE7F3EFB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2a:1d:a8:55:e8:1d:b5:d4:54:22:0f:25:50:
fa:d2:85:c8:52:2b:53:83:3b:86:4c:ae:bd:0b:97:
a6:7d:16:72:f5:30:20:8b:60:53:7f:7a:a9:3f:42:
a7:83:af:41:3a:5b:15:53:2a:13:f6:8f:ec:f4:09:
6d:92:1c:4f:31:9e:dc:27:a7:30:94:8a:c4:12:d2:
e8:7b:ec:7a:bf:b3:39:82:74:01:a9:0b:99:60:7e:
a2:f6:aa:3d:f3:98:e8:c5:29:b8:56:21:c9:da:21:
90:eb:7d:d2:77:43:ab:ec:89:1c:e2:81:b7:bd:b7:
94:61:2f:b8:79:0d:8f:3f:11:26:7a:9b:62:7c:cc:
d0:cb:e9:21:d0:bd:44:bb:8a:24:2b:cb:5e:ac:e1:
19:47:71:c0:39:ca:6e:fb:fd:ab:f9:4d:e7:f2:2a:
d0:d5:f2:27:3d:f8:fb:97:ef:b7:4f:39:91:72:3b:
ed:32:14:35:e6:02:d9:9c:ca:7f:35:c7:8a:8a:5e:
84:fb:20:74:a1:3c:f4:dd:29:b8:57:be:1a:88:4e:
ba:54:0c:fa:32:3d:63:17:6b:f0:16:33:f4:c5:17:
89:b8:41:8f:b2:81:aa:8b:c1:5a:84:43:99:ae:d6:
ba:6f:01:f9:b2:ef:27:32:0b:ba:2e:a1:d7:4d:3c:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4A:D7:97:BE:7C:2B:8C:E5:55:30:3B:6B:FA:50:3F:E7:F3:EF:B3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/v0rXl758K4zlVTA7a_pQP-fz77M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
48:3e:90:75:20:6e:2e:01:b2:80:12:96:ea:8e:62:fd:99:50:
f9:b5:2e:30:d6:de:fd:df:c5:41:20:e9:da:28:0d:ae:db:da:
a0:7d:36:08:84:9d:30:6c:31:cf:19:48:31:6a:f0:d6:2a:50:
3a:4f:bd:56:dc:6c:97:5a:cc:c7:b3:df:ad:de:79:6e:42:b3:
fd:6b:44:44:4d:32:84:1a:16:1d:6a:96:48:f4:f4:eb:ce:09:
25:6b:91:e4:1b:18:ba:50:4a:51:96:d8:71:f0:47:e8:de:36:
60:72:b8:d8:1b:51:26:83:1e:45:d3:e8:05:71:ef:a3:d6:fa:
bb:0b:c7:9c:db:c3:3b:7b:c4:3b:53:b6:1a:e8:a4:eb:dd:19:
2b:46:76:e2:7e:93:6e:b0:04:13:4f:0a:9c:90:6e:ee:38:97:
b4:31:24:26:35:2d:f7:d9:3e:bc:99:52:33:1c:47:e5:bd:ea:
4f:b7:91:64:38:09:6e:0c:fb:99:b9:6e:1b:0b:0c:88:64:d3:
90:84:dd:ed:38:60:33:c8:02:06:46:0c:8d:f7:57:1d:92:7c:
9e:3f:a7:5c:11:33:64:06:80:84:be:d9:c1:5d:e3:8e:1c:89:
73:6f:2b:4b:68:5f:ba:ec:26:69:bb:ea:f3:3e:1a:88:a9:2d:
5b:4c:10:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org