Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vmR7jfmat2dv9GY6WJ_GPKgPj7M.roa
File: vmR7jfmat2dv9GY6WJ_GPKgPj7M.roa (raw, json)
Hash identifier: ypgzUuPR9oU5+1je5gNTDWLNSaK2IAogrm1qRzKK1yU=
Subject key identifier: BE:64:7B:8D:F9:9A:B7:67:6F:F4:66:3A:58:9F:C6:3C:A8:0F:8F:B3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E30
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vmR7jfmat2dv9GY6WJ_GPKgPj7M.roa
Signing time: Wed 29 Sep 2021 02:43:16 +0000
ROA not before: Wed 29 Sep 2021 02:43:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 211.78.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3632 (0xe30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BE647B8DF99AB7676FF4663A589FC63CA80F8FB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:46:ed:11:81:2f:d9:16:95:cd:28:3d:2d:
14:64:97:56:c6:a5:f0:2a:6e:ca:bf:46:fa:96:09:
92:fb:e9:27:ab:8f:7a:55:67:8c:4d:04:27:5b:8e:
18:84:60:8d:36:c0:25:22:c8:95:0f:57:44:76:73:
33:3c:78:02:27:90:9f:7a:ea:77:ec:e7:89:b8:ea:
4e:70:f2:e8:06:59:53:c5:c7:26:f8:42:74:13:8a:
ce:17:3a:ff:f9:ef:f5:74:f0:31:b5:1a:9c:1d:47:
b0:67:1c:8c:0b:65:3d:e3:e0:49:f8:62:61:1c:e0:
3f:71:d4:5f:e4:24:51:4a:18:14:57:64:3c:4f:50:
cb:ca:41:6b:c2:31:1f:34:b5:c6:9a:f7:d2:36:86:
5f:81:13:2b:8a:ac:59:19:0c:f9:87:be:59:f1:70:
25:35:d5:39:36:b5:08:41:68:85:43:ba:8a:94:bc:
c6:9a:5a:b0:24:ea:49:4a:7e:e8:c4:f5:82:07:41:
42:2e:51:b7:1c:6d:46:0d:68:94:f2:f8:ae:15:5d:
a5:3f:1c:55:ca:a3:74:33:45:e0:3f:25:f3:33:b0:
53:3a:0b:aa:4a:bf:98:d7:85:20:0d:6f:7d:9e:a2:
8c:c7:41:4e:80:a2:c3:86:aa:69:3c:a4:6c:98:ef:
54:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:64:7B:8D:F9:9A:B7:67:6F:F4:66:3A:58:9F:C6:3C:A8:0F:8F:B3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vmR7jfmat2dv9GY6WJ_GPKgPj7M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:e5:c6:c8:5b:ad:f3:72:8c:c6:f1:7e:56:d2:a2:f5:28:25:
ab:bd:9b:35:d1:e5:69:82:8f:37:f8:68:07:2e:88:8f:6c:d1:
42:b6:c5:c8:c4:73:34:90:2a:ad:4b:16:3a:d8:46:7b:41:8c:
7e:d9:54:7f:2f:aa:66:d6:f5:9c:e4:66:39:83:06:9d:a6:5d:
e9:88:4e:4d:49:a3:b2:18:09:a1:37:fe:62:d4:b1:65:5a:17:
4c:38:a4:55:9b:24:36:61:db:75:52:3d:08:9c:0b:62:39:32:
b7:79:88:b9:58:20:b7:6a:b0:f6:01:33:4a:44:e9:90:35:80:
29:fb:4a:a4:5d:bd:04:f9:35:4c:34:03:44:d7:ff:7e:b0:58:
6b:50:cc:4a:6f:bc:25:3c:92:de:47:c6:b6:09:7f:65:53:aa:
65:29:32:28:e3:ed:0d:af:6a:00:6e:80:0b:8d:c6:e5:54:06:
cc:ed:b9:e9:4a:67:2d:82:3d:7c:fc:72:7f:c3:da:25:b6:af:
82:14:52:2a:35:38:92:12:09:b5:93:73:37:99:c4:33:31:a4:
05:65:4f:0d:61:80:84:1d:80:83:7b:5d:7b:f7:b6:15:4c:f9:
e6:d1:8b:f5:01:45:1f:2f:e1:00:e2:34:10:67:44:16:db:c8:
ad:d3:ab:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org