Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ylo0fj10veDv_IUf6gXfym2Gcgw.roa
File: ylo0fj10veDv_IUf6gXfym2Gcgw.roa (raw, json)
Hash identifier: eKWmsRn5vwJD87BLUT5Pu3slxi6HiSD122fzNrll8Iw=
Subject key identifier: CA:5A:34:7E:3D:74:BD:E0:EF:FC:85:1F:EA:05:DF:CA:6D:86:72:0C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BC8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ylo0fj10veDv_IUf6gXfym2Gcgw.roa
Signing time: Sun 07 Feb 2021 06:35:09 +0000
ROA not before: Sun 07 Feb 2021 06:35:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3016 (0xbc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:35:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CA5A347E3D74BDE0EFFC851FEA05DFCA6D86720C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:eb:12:8c:1e:7a:22:44:cb:73:de:cb:a9:
59:1d:b2:2d:6c:4b:38:35:4b:05:ba:99:c6:c3:8f:
be:65:e8:fc:3b:46:40:de:b6:aa:a2:99:e1:98:a0:
d4:c9:d0:61:e1:dc:11:57:ce:43:b2:41:4f:c9:6c:
07:b5:bc:1b:90:57:34:2d:30:11:d3:49:9a:57:90:
b0:75:9b:05:8a:4f:59:4a:f3:ac:43:cf:29:c7:1d:
a1:bf:58:2d:e1:68:97:be:46:47:bc:26:17:8e:e2:
32:2b:9f:16:f7:e4:df:05:1d:18:d6:1a:ed:1a:c1:
bd:78:6c:50:a4:61:bc:8d:a3:4f:4b:d3:47:f8:c6:
f0:f8:81:5e:67:41:5a:e6:13:66:91:b0:de:71:f8:
60:cd:4d:cf:67:9c:2c:0f:2c:08:86:43:80:15:3a:
b9:ed:e4:af:14:e2:65:3e:68:2b:d4:d8:f1:05:75:
a3:59:a9:48:36:ee:00:0b:1c:e5:1a:3e:28:53:96:
9e:1c:ad:48:70:fb:76:90:a0:69:4c:e5:be:a6:a8:
67:72:fc:b0:1b:77:f7:a9:37:b4:6f:19:3c:17:da:
42:de:72:82:5a:98:9f:90:34:ed:89:2a:e7:89:e2:
fb:aa:d7:1e:e3:ba:28:df:67:68:f9:c4:6b:a1:b6:
63:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:5A:34:7E:3D:74:BD:E0:EF:FC:85:1F:EA:05:DF:CA:6D:86:72:0C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ylo0fj10veDv_IUf6gXfym2Gcgw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
40:b9:9a:dd:7a:10:8c:2f:da:49:02:b3:0f:eb:37:1b:4f:65:
7a:29:aa:e6:5b:c1:b1:43:8a:ac:53:1b:99:10:40:07:96:a0:
aa:39:92:db:ac:68:a0:ca:92:89:98:da:ee:75:14:89:a4:90:
c8:03:d0:26:e2:5c:d6:29:80:99:40:61:9d:eb:ff:00:5a:23:
e0:51:48:a2:5b:4c:59:ba:86:df:4d:2a:f9:e3:9f:fc:fc:60:
1c:d3:e5:15:d4:55:48:ed:de:f2:f9:70:e4:f3:de:5c:e6:4d:
21:9a:a6:ee:5f:b3:7f:41:ac:a2:d7:1e:4e:10:61:95:b5:4a:
e1:9e:95:eb:54:05:19:c5:74:4a:2d:8b:8b:0a:98:2f:bb:62:
85:ce:3a:a8:c8:e9:54:d0:b7:0e:c5:c0:57:07:d6:3a:b4:dc:
32:17:c2:66:37:be:fe:0e:e9:c1:53:78:cb:f5:ac:07:b1:5c:
40:26:ea:39:24:e2:73:7f:13:55:0a:f3:81:5c:76:bc:c5:f2:
44:9e:f6:35:77:66:95:d7:1d:94:13:81:84:fc:2c:4b:33:08:
a0:cd:10:90:72:f5:4d:4d:0e:f7:38:57:dc:ca:fb:3b:33:f1:
61:ca:f8:87:4e:47:2c:99:9f:1e:03:fe:0d:ea:88:f0:c9:03:
eb:da:f7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org