Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zxrvuSmPMB72DVEOR1p4qusdgIU.roa
File: zxrvuSmPMB72DVEOR1p4qusdgIU.roa (raw, json)
Hash identifier: VRiAnleyyRAVAhGGOr+/FqLnNNJ2ZU7VPypijjjWdgk=
Subject key identifier: CF:1A:EF:B9:29:8F:30:1E:F6:0D:51:0E:47:5A:78:AA:EB:1D:80:85
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0D31
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zxrvuSmPMB72DVEOR1p4qusdgIU.roa
Signing time: Sun 07 Feb 2021 11:50:24 +0000
ROA not before: Sun 07 Feb 2021 11:50:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 123.204.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3377 (0xd31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:50:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF1AEFB9298F301EF60D510E475A78AAEB1D8085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9b:e2:a2:70:69:9d:26:45:39:1a:f2:7f:b8:
96:7b:23:15:b2:9f:9d:2a:bb:62:9b:3d:68:58:de:
4a:ca:71:5e:d7:47:90:cc:b1:73:f3:b8:1d:38:00:
a7:7b:8d:9a:44:7f:59:86:3e:b6:9a:38:1b:1e:3b:
60:5c:ff:28:0d:96:ff:5d:58:31:fa:66:d7:56:1d:
9e:a6:43:f6:58:40:da:e5:48:42:1f:a0:a4:51:fd:
bc:7c:33:99:1b:38:f4:dd:8f:a0:d9:66:cb:77:4e:
f6:40:a8:76:52:e2:ae:7d:f5:38:48:3a:af:3c:64:
3b:71:26:a1:27:77:7f:c5:45:40:fd:2f:a8:97:ec:
8d:6e:be:2b:99:4c:bf:f8:2c:f3:8b:ce:17:f2:65:
86:0e:3e:bb:30:d3:32:86:c6:a8:f8:db:ae:e1:b2:
3f:a9:63:9a:ec:e2:48:19:d2:5d:4c:d9:a2:46:9d:
22:52:51:7a:bf:b4:74:ac:5d:01:3d:af:2c:8e:ed:
9c:67:1a:bf:06:fe:2b:4b:2c:93:8c:7c:61:1f:f4:
9e:a4:51:a5:6f:d2:d9:da:18:a2:db:7c:35:4c:56:
40:87:64:71:7d:09:41:66:b2:63:72:d2:46:b2:18:
fc:f7:5d:eb:da:16:a0:5a:c0:8e:71:b4:90:cb:60:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1A:EF:B9:29:8F:30:1E:F6:0D:51:0E:47:5A:78:AA:EB:1D:80:85
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zxrvuSmPMB72DVEOR1p4qusdgIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/16
Signature Algorithm: sha256WithRSAEncryption
98:d1:ff:a9:34:da:7e:02:eb:1e:93:e8:2f:08:c5:17:87:48:
b2:e4:df:cd:f7:31:bc:e8:bd:b0:78:4c:cf:06:86:81:c5:14:
3b:f0:31:ae:38:1c:dd:52:f8:c6:3d:b9:b0:d5:f2:a0:91:0b:
f2:ac:92:db:c8:f8:ea:3e:e2:01:53:ac:bc:3a:42:69:dd:35:
1f:de:f2:bf:ba:bc:bc:eb:3f:08:33:9e:4a:3c:b9:0a:4d:ae:
a3:e6:43:68:12:5f:fa:1b:13:05:ab:39:b1:f6:9c:f9:0e:4e:
80:f6:8b:06:4c:9a:ef:48:e8:c1:13:c2:f6:dd:23:27:45:2d:
74:1e:4b:c4:cd:19:7d:d4:15:6c:14:32:d4:4b:59:2f:bc:ca:
1c:e2:3d:47:e2:28:5e:6c:2c:4f:cc:a9:b0:bf:18:f8:77:52:
af:f1:48:fc:03:2b:f5:54:70:24:b0:1f:5d:67:fb:4e:bf:d5:
d7:0c:29:09:c3:c0:60:2b:c4:c7:85:68:7d:32:25:36:cf:5d:
7c:3f:76:14:c4:60:d7:ca:ea:e8:dc:dd:8b:d6:4a:2c:c7:47:
78:ea:71:5b:02:e0:6d:65:09:f6:17:21:2a:4e:35:54:4d:d5:
66:64:df:e6:9c:de:3f:28:d2:e1:cf:2e:91:19:99:8a:ef:de:
08:36:70:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org