Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/bQXK1fkFkbxMJvu8oQrEPVExlP0.roa
File: bQXK1fkFkbxMJvu8oQrEPVExlP0.roa (raw, json)
Hash identifier: aT0SVjWACo/gZuZbnlhvsyF1tF/krMQOPJ8EhzpIEDI=
Subject key identifier: 6D:05:CA:D5:F9:05:91:BC:4C:26:FB:BC:A1:0A:C4:3D:51:31:94:FD
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5644
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/bQXK1fkFkbxMJvu8oQrEPVExlP0.roa
Signing time: Tue 09 Nov 2021 09:18:34 +0000
ROA not before: Tue 09 Nov 2021 09:18:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 43.227.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22084 (0x5644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Nov 9 09:18:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6D05CAD5F90591BC4C26FBBCA10AC43D513194FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:99:38:a1:73:83:51:f0:f7:d2:8f:35:86:
d4:3b:22:e8:5e:a5:5e:69:32:96:ad:2c:79:b0:0b:
68:35:54:f7:7a:a5:cc:74:d7:27:dc:58:be:07:6a:
f5:4d:9c:54:db:e3:c3:83:5f:cc:c6:84:13:18:48:
5c:ed:f6:67:e4:8d:87:25:fc:f4:ee:38:0b:24:d6:
62:df:c9:68:25:e8:6a:88:fb:12:64:25:5b:7c:e3:
40:f0:55:f7:ea:de:b7:28:84:0a:ab:70:04:e3:77:
72:d9:53:6c:c7:b5:1a:48:e6:9f:06:55:42:60:f8:
a4:48:67:1c:7e:14:7b:5d:17:7b:c8:17:dc:e4:57:
67:24:27:ed:17:4e:ee:2d:7b:be:ae:80:ff:9c:0f:
85:e4:4d:5c:22:72:50:4c:9a:ff:3d:1e:48:a3:6f:
4b:05:0f:67:b8:7e:ab:24:1f:2c:5b:a4:24:a1:d2:
6a:30:b0:ed:03:f8:60:7e:47:d7:b3:29:43:22:d0:
d0:22:cf:74:d0:b9:4b:98:73:78:e3:dc:73:c6:7e:
57:3c:06:a6:92:a4:95:0f:da:cc:3d:72:6e:be:61:
eb:64:37:1a:fd:e1:a4:a9:93:06:99:14:9f:ec:fc:
3d:36:49:01:d2:97:18:84:5a:63:56:6a:78:b0:c6:
4f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:05:CA:D5:F9:05:91:BC:4C:26:FB:BC:A1:0A:C4:3D:51:31:94:FD
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/bQXK1fkFkbxMJvu8oQrEPVExlP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.24.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:71:97:ae:08:3e:3c:ae:2a:71:68:f1:20:91:8c:e6:99:74:
1a:a1:35:e1:98:fa:61:26:06:3e:b0:48:d4:54:e8:dd:3c:08:
7f:e7:33:a5:ff:25:49:ba:bb:0f:43:4f:d0:02:b7:10:a0:09:
2e:be:0c:a4:ea:54:22:57:4a:e9:84:13:05:d2:80:30:ed:4c:
17:b8:7a:89:b6:7f:1f:9b:52:5e:4a:48:55:dd:03:a1:ac:49:
39:72:2d:93:77:a6:db:0c:c2:72:aa:5a:5c:79:45:d1:85:aa:
e7:31:48:a4:f6:d9:db:be:c8:18:b8:07:22:d2:f8:a8:43:5c:
99:ae:04:45:ae:3e:f0:fe:54:34:98:33:07:ef:63:ab:d7:74:
fc:58:9e:2d:06:1d:8d:7c:cf:33:90:0e:e1:09:da:63:6e:3d:
c5:09:ef:ce:71:7c:b8:c3:46:38:68:1c:83:7b:67:f6:50:ae:
ab:fc:d2:4a:04:b4:13:b3:a9:63:70:5c:15:2c:92:40:41:6b:
55:03:01:c4:9b:96:2f:52:de:b1:0f:66:63:e7:f1:90:d3:e6:
60:88:e2:e4:0c:d7:8c:ba:f6:9c:0e:f3:50:80:a6:bc:e2:d8:
eb:fa:e8:45:13:e4:5a:62:0c:24:cc:eb:01:9e:d4:d1:74:82:
0b:85:84:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org