Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/5cyMKVQREQrX2FS8Dlo3H1ygXww.roa
File: 5cyMKVQREQrX2FS8Dlo3H1ygXww.roa (raw, json)
Hash identifier: aZOLxRjLzioLKlLRk6XodNbeYvGKGU4AfdbPdy7AnNY=
Subject key identifier: E5:CC:8C:29:54:11:11:0A:D7:D8:54:BC:0E:5A:37:1F:5C:A0:5F:0C
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 555D
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/5cyMKVQREQrX2FS8Dlo3H1ygXww.roa
Signing time: Mon 25 Jan 2021 08:35:13 +0000
ROA not before: Mon 25 Jan 2021 08:35:13 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 43.227.26.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21853 (0x555d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Jan 25 08:35:13 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=E5CC8C295411110AD7D854BC0E5A371F5CA05F0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:a0:ad:6c:51:71:d7:0a:d6:f3:1a:e9:56:
4b:1c:bd:a6:c0:8a:84:df:08:34:fb:c7:57:b8:d3:
a7:9b:7c:62:61:90:b9:ab:de:ff:01:1c:0e:33:f2:
8c:f0:80:18:69:56:30:f7:fc:68:56:94:7c:90:2c:
98:95:7b:42:70:7d:43:42:5d:31:d7:c0:a9:6b:8f:
65:20:4d:ed:36:13:ac:e4:af:bf:44:ad:6c:88:24:
f1:17:7d:7b:d0:07:6e:4b:5d:32:52:60:49:46:fd:
41:74:91:68:4a:2b:c2:cc:e8:28:f9:8c:cf:a9:3e:
a7:d2:fe:d5:14:7f:4a:1e:8f:f2:97:2a:42:dc:4d:
c8:cb:52:93:49:0d:5f:35:2b:7a:3e:64:c1:db:13:
20:41:28:8b:b6:17:79:2a:2c:6a:ec:f8:5f:73:57:
1c:86:9b:6f:3d:73:d9:74:d2:c9:bd:6c:5a:4a:16:
c2:95:c1:b8:d4:4a:35:0e:64:48:e2:ce:28:99:ba:
05:01:e1:c1:02:7c:47:a8:44:7f:54:c5:a1:fe:97:
ac:f2:ab:c4:20:70:f4:35:f9:c2:f9:9a:62:45:0e:
1d:f8:14:5a:f1:cd:43:f9:fb:36:a5:c9:b2:f9:4f:
6b:78:d0:ce:04:6d:19:3e:49:05:8f:d7:9c:0e:08:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CC:8C:29:54:11:11:0A:D7:D8:54:BC:0E:5A:37:1F:5C:A0:5F:0C
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/5cyMKVQREQrX2FS8Dlo3H1ygXww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.26.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:80:c1:76:6c:aa:cb:cc:d7:79:13:e1:89:49:d3:c6:5d:1e:
74:f4:db:af:ee:94:ed:83:47:51:6b:e1:f6:fd:2d:ef:b3:1a:
49:f0:55:f1:e0:1e:4b:ab:0a:b8:e6:aa:a8:93:ea:9b:c1:1a:
ec:c2:dd:68:68:53:08:fa:d5:13:5d:85:ab:99:be:db:b7:97:
e6:c6:c9:3e:ae:3d:3b:2a:8b:99:13:8a:43:33:f5:2f:ee:50:
09:f4:c7:62:99:78:17:f4:b4:03:6e:69:78:08:85:09:51:c5:
ed:db:fd:89:c2:ff:9a:46:6a:4a:48:aa:08:74:da:8f:cc:13:
f0:27:a8:61:ab:59:b9:6a:24:3b:4a:13:2f:70:38:f7:c2:d7:
dc:aa:e3:b3:1a:8d:a5:63:70:6b:8c:80:53:66:9e:2a:25:f2:
49:67:4e:bb:de:ff:ab:18:e7:09:2c:c0:7f:05:41:95:46:6f:
2f:57:82:81:eb:a9:b4:e5:e1:60:41:96:0e:ee:88:a8:c7:0b:
d1:e6:05:99:ef:83:ec:1e:0c:c2:26:9e:0b:0c:25:6c:89:b3:
88:46:47:8d:f5:84:0e:c4:d7:84:e0:71:15:33:a6:cc:d2:bf:
30:99:dc:f0:6f:68:df:24:96:c0:cb:1e:8c:ac:db:31:5f:ce:
2f:94:f3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org