Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vQtkyJq4j7xgl8jdXyQa0SLs0xY.roa
File: vQtkyJq4j7xgl8jdXyQa0SLs0xY.roa (raw, json)
Hash identifier: dAH02zlVa6BeczHhLj1s2Jhmo3Ktif0Aq/LAr1gxH0c=
Subject key identifier: BD:0B:64:C8:9A:B8:8F:BC:60:97:C8:DD:5F:24:1A:D1:22:EC:D3:16
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0909
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vQtkyJq4j7xgl8jdXyQa0SLs0xY.roa
Signing time: Tue 29 Sep 2020 09:52:43 +0000
ROA not before: Tue 29 Sep 2020 09:52:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2313 (0x909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BD0B64C89AB88FBC6097C8DD5F241AD122ECD316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9e:9a:f5:d6:98:75:b8:45:7a:ad:43:4b:ab:
99:67:65:c5:1c:17:56:48:32:ae:df:85:e3:4d:0e:
4f:2d:41:17:4a:68:43:1e:01:e3:6f:73:86:1f:13:
55:20:28:8e:4c:58:be:6e:48:4b:69:46:e8:4f:5f:
d9:a9:6f:1e:0a:6d:ae:e4:6a:0d:ef:1e:fd:21:11:
41:5d:e5:62:a4:4c:cc:ce:80:b5:8d:57:7b:8a:4a:
a8:06:fc:fc:73:6c:70:61:03:09:0d:f8:c4:64:b6:
cf:c3:19:aa:8f:18:31:0c:e9:eb:c6:e4:d1:a0:9f:
e3:45:b0:69:10:ef:5b:9d:d2:55:42:2d:88:14:88:
b5:9a:e9:6d:33:35:d7:30:ef:b6:89:54:b4:7d:2d:
26:54:6f:c1:c4:82:b1:d6:42:10:85:7d:7c:65:7d:
ee:86:f7:0a:32:c7:40:8e:cf:16:7d:7a:f5:39:dd:
45:0f:74:4e:cc:7f:33:1d:16:af:d2:45:a0:2f:ca:
66:61:e4:a4:5e:7d:4d:91:d5:a5:0e:95:a1:33:69:
7e:e3:bf:42:4e:79:c5:62:5e:c3:69:96:3a:51:c1:
d7:8e:0f:85:27:13:75:a6:21:c4:45:7d:17:ed:b6:
ec:7d:85:a5:a7:0a:a9:91:3e:fd:b4:f6:f3:78:ee:
2e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0B:64:C8:9A:B8:8F:BC:60:97:C8:DD:5F:24:1A:D1:22:EC:D3:16
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vQtkyJq4j7xgl8jdXyQa0SLs0xY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:59:e6:24:d2:7f:6b:de:b6:31:40:43:68:e5:e5:77:4c:81:
2c:36:88:db:66:cc:5f:9b:e7:70:26:8a:6c:fa:ca:99:92:7f:
bf:29:02:fb:5b:2f:e9:cb:34:b4:da:65:e2:c7:36:83:8c:65:
46:23:56:3f:41:9f:3b:dd:f7:9b:5c:f6:cf:f3:d9:43:d9:67:
ba:29:5f:7e:35:c5:5f:a8:8d:e7:29:7e:17:a3:99:2d:db:bb:
11:df:6b:98:6a:80:9a:e8:c8:d8:66:8d:d2:f4:21:9b:27:03:
c2:b6:3d:be:6c:19:bd:9a:eb:f7:38:8c:d4:20:b0:eb:b6:2c:
7f:1e:36:bd:ab:17:35:33:36:ec:ce:c7:fc:9f:9a:f1:0d:3e:
8e:9b:98:b9:ae:db:90:c1:d0:e4:67:4f:2f:f9:19:8e:1c:ff:
9b:02:09:f6:84:d6:de:52:76:47:c4:87:a4:2f:34:88:67:a6:
90:35:3f:8a:cf:0e:8c:1f:16:23:5c:8b:36:e1:2a:b8:6c:cc:
65:72:81:40:e8:49:65:04:8a:cc:e8:d7:69:2f:11:29:b7:6a:
d3:73:d9:31:55:42:23:f7:1d:7b:5b:26:d2:f1:51:52:09:ce:
48:7a:46:e2:11:06:b3:5e:da:f4:54:c6:c9:a0:8a:d2:1d:55:
02:4a:ff:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org