Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/5p_uEs-EN0A9KDDrRgQhCSAwQbo.roa
File: 5p_uEs-EN0A9KDDrRgQhCSAwQbo.roa (raw, json)
Hash identifier: c8McDXUzhC1rpG3cHqKGv1r/vcu9yE2vj4gI+rDy8BE=
Subject key identifier: E6:9F:EE:12:CF:84:37:40:3D:28:30:EB:46:04:21:09:20:30:41:BA
Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Certificate serial: 08B3
Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/5p_uEs-EN0A9KDDrRgQhCSAwQbo.roa
Signing time: Sun 07 Feb 2021 12:35:10 +0000
ROA not before: Sun 07 Feb 2021 12:35:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18183
IP address blocks: 202.5.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Validity
Not Before: Feb 7 12:35:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E69FEE12CF8437403D2830EB46042109203041BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e3:3d:68:a4:f1:a9:4b:5b:36:65:45:b9:a9:
32:6a:19:c6:4e:a5:78:e4:4e:da:0b:a8:cb:fc:29:
57:48:60:80:2d:b2:58:fc:6a:f1:48:19:72:13:ce:
fb:a7:66:d1:30:f9:74:93:6a:dd:45:ba:b9:75:85:
f9:8f:6d:8c:00:55:c6:97:2a:2e:6c:3b:89:47:55:
07:35:91:b7:7b:e8:c9:6f:3a:a1:e8:c2:90:1c:cd:
ef:63:1f:ad:85:2b:d5:3e:2e:2e:c0:66:66:23:c3:
57:79:b8:ae:e0:13:11:58:10:55:64:a6:74:27:20:
53:4a:65:71:8b:01:47:6b:78:93:6f:22:3f:ad:02:
6a:4e:83:d6:2a:42:ee:dd:67:0e:99:2e:b2:1f:1f:
d5:53:f3:b3:c3:74:68:3a:fb:8e:a0:d4:b6:25:d7:
8a:84:14:3b:5d:48:9d:eb:69:3c:ac:ea:dc:9c:06:
20:bb:3e:c0:97:4a:c5:24:51:f5:13:8e:fc:17:22:
53:23:e0:73:5d:a9:5b:9c:a8:2f:b5:c2:eb:42:b0:
16:ef:a5:69:aa:9a:c2:50:f6:6d:15:75:a3:55:8e:
79:07:8f:c1:8e:14:39:38:ef:c9:b8:15:7d:30:5d:
ce:33:c6:ab:ad:0c:fb:96:f9:f8:dc:88:01:06:40:
a4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:9F:EE:12:CF:84:37:40:3D:28:30:EB:46:04:21:09:20:30:41:BA
X509v3 Authority Key Identifier:
keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/5p_uEs-EN0A9KDDrRgQhCSAwQbo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.5.12.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:a5:f0:e3:42:0a:d2:82:63:0d:2a:42:c5:3a:7a:2b:2e:94:
41:e1:b8:31:8a:3f:58:a7:e8:59:5d:62:19:be:59:8c:63:ed:
61:14:43:c9:9a:c5:9c:70:8d:71:62:ce:6d:94:2c:29:d1:16:
c5:0e:74:18:98:8c:b2:2d:09:a1:af:d7:01:01:44:32:69:e6:
4e:66:96:0f:e7:2b:a5:b0:88:0b:ee:a7:fc:15:d2:04:d1:b9:
f1:ec:ca:b5:93:52:60:c8:c6:0b:02:b1:08:0a:56:f0:37:66:
f4:35:81:6f:53:8f:7a:00:07:04:cc:2e:53:67:21:35:3b:97:
77:fa:05:0e:8c:2a:20:3d:9f:cc:34:ee:f8:94:8b:0f:1b:2e:
af:89:ba:5f:07:35:17:a6:ce:df:53:ec:7e:88:70:a5:60:95:
0c:a0:73:c7:48:51:04:cc:ac:6e:97:48:a3:46:84:15:a4:41:
c8:99:23:f4:0a:20:63:49:53:a3:9b:25:21:46:ce:31:19:27:
15:4b:56:6f:81:fb:93:c6:04:e5:61:d3:eb:81:85:0e:df:99:
0e:5e:d2:f7:02:6c:be:fe:21:35:40:aa:14:8c:06:98:3c:c6:
52:d9:3b:7a:a0:c4:c0:0e:28:84:2c:ec:e1:d4:b5:64:31:27:
c3:49:cf:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org