Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/BcHz2MZ0m6NeQgMu13Cbq-tnpWE.roa
File: BcHz2MZ0m6NeQgMu13Cbq-tnpWE.roa (raw, json)
Hash identifier: ZUHuc/vUk/g7dSWgaAKZAU/tSjLZh1ANhHNL06A91yU=
Subject key identifier: 05:C1:F3:D8:C6:74:9B:A3:5E:42:03:2E:D7:70:9B:AB:EB:67:A5:61
Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Certificate serial: 0775
Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/BcHz2MZ0m6NeQgMu13Cbq-tnpWE.roa
Signing time: Tue 29 Sep 2020 10:05:09 +0000
ROA not before: Tue 29 Sep 2020 10:05:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18183
IP address blocks: 202.5.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Validity
Not Before: Sep 29 10:05:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=05C1F3D8C6749BA35E42032ED7709BABEB67A561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:d5:53:87:8c:cb:23:da:ab:a7:6c:b6:49:
3e:70:7f:70:2c:1c:0d:b0:84:d1:ab:a2:57:38:72:
b3:10:2f:e4:42:d8:40:3c:9c:4b:79:ad:e4:4f:10:
3c:86:36:a7:0b:47:f0:b6:d6:da:a2:7c:1b:87:f6:
99:7a:d7:0d:26:15:1a:55:18:91:be:6a:d8:2b:14:
06:da:b5:bf:7d:0b:6f:20:d9:a6:24:2d:24:79:23:
47:fc:f4:fb:9f:10:58:ce:42:6d:13:ef:92:eb:dc:
85:e6:4a:31:af:e3:c8:27:87:e0:b7:61:70:08:4f:
8e:6d:6e:b3:11:ed:ea:62:14:f7:f8:64:45:f8:67:
99:f3:a4:67:15:ed:af:33:6c:0b:8a:fc:69:f0:44:
84:15:d3:18:62:3c:b3:dd:c3:6e:0f:29:a1:1c:2c:
fd:34:0f:74:01:d0:1e:8d:1e:91:43:da:d8:29:ac:
84:82:d1:e5:1f:14:95:32:6d:cb:2d:84:fe:b5:98:
47:e3:07:2d:62:4e:ab:00:0d:3f:67:fa:6b:44:e5:
1b:bf:6b:75:9e:a8:04:90:18:f3:6b:4a:0e:9c:af:
af:e0:6c:ed:79:84:2a:d3:7d:c6:b3:94:c5:14:22:
69:98:64:54:83:5b:58:82:c2:5b:9f:57:61:64:fc:
a3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C1:F3:D8:C6:74:9B:A3:5E:42:03:2E:D7:70:9B:AB:EB:67:A5:61
X509v3 Authority Key Identifier:
keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/BcHz2MZ0m6NeQgMu13Cbq-tnpWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.5.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:8c:c3:3d:17:7a:b6:bf:1b:17:9a:58:2c:f1:72:08:fe:67:
87:71:24:7f:3f:fb:c2:b5:b3:d3:c1:03:cc:3c:91:d7:57:33:
5b:ad:6a:87:90:4c:7e:37:1e:8c:d0:4f:a3:a3:0a:95:5a:fa:
f4:e0:49:b7:a7:56:c1:d7:db:81:a5:00:6b:27:66:84:e4:b9:
5d:a5:9d:83:1c:58:ed:32:c7:d0:7b:65:11:09:30:63:e6:fc:
c7:f5:6c:ae:3b:4d:14:fb:cf:10:ec:07:6b:62:13:ca:f3:5d:
09:d8:94:f1:af:fd:7b:c1:8e:d6:30:37:a9:20:7e:87:e2:b6:
ac:a7:0e:f9:dc:44:6f:cf:c1:ea:bd:34:f1:15:09:7a:b5:ca:
cd:ab:60:a5:6f:c8:73:49:01:d5:68:08:cb:f5:4c:5e:ea:f3:
4d:bf:cf:ab:04:90:34:a4:d6:8c:1c:0d:61:4c:be:d2:b1:58:
93:b8:ec:3d:4d:c4:29:a7:64:ab:80:7c:0b:5f:13:28:72:82:
07:76:3a:29:68:8f:00:a3:7c:3d:eb:22:5c:e2:64:91:b5:51:
b4:d1:b0:77:46:2c:7e:44:9e:b2:a4:5a:2f:ce:2d:0a:f9:2f:
de:c0:22:93:0e:ba:4b:84:21:54:a7:b7:ee:71:d6:dc:e8:8e:
75:50:8f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org