Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/mmU4WdmxjCO47_-d6cWq8ugcfzw.roa
File: mmU4WdmxjCO47_-d6cWq8ugcfzw.roa (raw, json)
Hash identifier: g2aaniucfha6tG2M+y6PP/0OOf9v9z0O0hX/+QJhwig=
Subject key identifier: 9A:65:38:59:D9:B1:8C:23:B8:EF:FF:9D:E9:C5:AA:F2:E8:1C:7F:3C
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0793
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/mmU4WdmxjCO47_-d6cWq8ugcfzw.roa
Signing time: Tue 29 Sep 2020 10:06:19 +0000
ROA not before: Tue 29 Sep 2020 10:06:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4783
IP address blocks: 210.67.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939 (0x793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 29 10:06:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9A653859D9B18C23B8EFFF9DE9C5AAF2E81C7F3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e1:7c:a8:78:83:1a:7f:03:36:29:bb:e7:15:
c9:ff:1b:dc:be:26:93:ad:6d:95:b3:df:93:88:be:
75:07:b3:da:9a:32:ed:9b:67:2a:d6:f6:a2:2b:2a:
82:24:37:50:72:86:40:d2:87:06:ba:37:d5:57:e9:
3c:3f:6c:f9:a8:c8:2f:3b:bd:35:ed:51:f6:9d:96:
0e:dd:dd:53:57:56:fb:1a:c2:3f:07:d0:65:84:87:
0d:38:b3:c3:cb:7d:d0:eb:07:3b:0a:3e:dc:48:d4:
8c:d2:b1:ce:6c:50:f3:ac:7c:12:8e:5b:a0:a7:e5:
30:1b:0d:76:a8:47:25:cf:de:5b:43:7f:47:57:51:
a4:bf:64:dc:76:69:68:a0:2a:7e:17:de:76:f7:90:
91:7a:2a:47:37:d4:dd:b7:0b:6a:ae:d3:5a:12:d9:
f0:f3:62:69:ec:fb:0c:f0:08:92:25:0a:90:53:42:
b8:a4:be:74:f9:1c:aa:c2:3a:2f:09:d0:04:c0:91:
2f:8f:8d:48:7c:f5:ab:9a:8a:82:78:f7:3d:d2:54:
d0:2b:4d:2f:0e:93:c8:3e:f7:0d:92:40:3b:ce:9a:
64:d2:56:85:62:a0:14:de:48:ba:ba:d8:cd:9c:83:
b5:de:8a:b0:ce:2c:46:b6:dd:0c:07:41:54:36:0b:
0c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:65:38:59:D9:B1:8C:23:B8:EF:FF:9D:E9:C5:AA:F2:E8:1C:7F:3C
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/mmU4WdmxjCO47_-d6cWq8ugcfzw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.128.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:b8:6b:84:2b:b6:e0:27:69:8e:9a:a1:8f:01:ab:d3:74:eb:
e0:40:9a:25:7b:82:d2:ff:80:fb:36:d2:4e:06:94:ba:90:85:
cc:84:6a:a5:6a:dc:de:5e:68:5f:54:26:9b:8f:8c:2b:87:fb:
8f:2e:a1:f8:31:ba:ad:34:0d:97:1c:4c:32:da:25:ca:ca:09:
50:46:ab:62:65:b0:8a:c1:47:59:54:18:fc:bd:5e:9b:90:33:
bd:2e:12:95:eb:93:a2:5e:09:e6:8b:45:73:db:84:d0:1c:33:
f2:5c:23:bc:31:f3:7f:0f:00:d8:5a:04:27:a3:71:90:08:23:
8a:4a:e5:9c:83:4c:cf:6a:8a:30:22:c5:14:a2:fb:0f:ca:83:
45:f5:39:b4:bc:37:c8:d1:5f:00:91:d8:41:b6:05:27:09:a5:
4b:06:67:2e:7a:63:da:cd:b6:1f:32:71:2e:25:20:e5:e8:a1:
19:08:18:f6:45:85:bd:23:bf:37:b8:a5:0b:78:fd:58:84:e8:
a0:50:0d:63:42:db:5c:e9:e1:80:21:6b:9e:f0:aa:4e:41:5f:
b1:aa:1c:4c:86:6d:d1:19:8e:8d:ac:b0:d9:94:aa:06:22:f2:
61:35:98:64:43:d4:d5:e4:1c:da:96:99:eb:0a:48:c9:d2:79:
d1:ee:59:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:05 2023 by rpki-client on console-ams.rpki-client.org