Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-KqfFmiDvqhh39ClOWsqeWnHIVs.roa
File: -KqfFmiDvqhh39ClOWsqeWnHIVs.roa (raw, json)
Hash identifier: TxFg46mlPL2M+qjOzQWElbvepQeAHRAGbvdeIiaQfAY=
Subject key identifier: F8:AA:9F:16:68:83:BE:A8:61:DF:D0:A5:39:6B:2A:79:69:C7:21:5B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E68
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-KqfFmiDvqhh39ClOWsqeWnHIVs.roa
Signing time: Wed 29 Sep 2021 02:43:33 +0000
ROA not before: Wed 29 Sep 2021 02:43:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131584
IP address blocks: 106.105.176.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3688 (0xe68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F8AA9F166883BEA861DFD0A5396B2A7969C7215B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:b0:d0:9b:bb:65:0e:1b:7f:f8:31:1e:38:
17:17:5d:e5:cc:6f:d7:ed:8e:e5:03:67:25:cb:82:
67:92:2f:ff:34:71:bb:6a:c9:3e:72:92:64:e3:b0:
4c:8b:ab:7b:73:da:63:90:6f:fc:63:45:25:db:ef:
0b:d0:88:02:1b:b9:85:11:30:da:95:ff:e5:a7:04:
ba:a7:a6:ec:e4:b5:29:58:b4:a0:cb:46:d6:f5:83:
ca:53:c1:be:be:d0:5e:4e:87:81:fd:97:c2:4c:c8:
44:f8:f6:60:80:27:a1:bf:97:e1:c2:ee:f2:51:1e:
61:db:75:f8:6e:71:a1:f5:3a:99:86:9b:cc:e9:bd:
c9:f6:9c:7f:97:70:e2:42:ea:4a:73:94:ea:88:48:
0e:02:c0:ba:3e:3c:34:32:59:08:ad:f2:a4:ea:23:
c1:dd:54:41:27:b0:de:50:9f:34:39:48:8c:0d:04:
9f:03:b4:4a:4e:d7:61:77:73:e7:3c:54:9a:84:8c:
85:71:0e:de:44:36:0b:61:63:c4:e0:f8:81:3a:c7:
4f:cc:a1:a8:9e:bd:87:45:5d:7c:65:82:93:60:3a:
8f:c2:17:65:77:1e:28:8b:d8:a3:58:46:47:ae:32:
33:4c:a5:1c:e1:bf:ff:bf:1d:2e:c2:64:a3:4b:2e:
2c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AA:9F:16:68:83:BE:A8:61:DF:D0:A5:39:6B:2A:79:69:C7:21:5B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-KqfFmiDvqhh39ClOWsqeWnHIVs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.176.0/23
Signature Algorithm: sha256WithRSAEncryption
91:5e:f2:7f:a4:5c:7e:9d:5e:7f:f3:ff:8f:aa:f1:66:8f:ab:
89:2d:5e:88:53:b8:e2:9a:6c:18:1e:0b:0f:ed:52:5d:86:21:
8e:4e:21:cf:02:3d:02:53:b6:90:ca:47:7b:98:1f:fc:d5:dd:
50:b5:c2:04:2a:bb:17:2c:e4:e8:12:cd:79:97:69:3e:f9:0f:
11:2b:8b:22:f6:8d:51:3a:0a:ff:2b:77:1b:42:a9:18:f8:59:
c6:3b:68:b0:30:8e:9f:84:78:2e:d9:6a:b0:e0:0d:ae:a1:90:
f1:67:4c:fc:06:ae:72:e3:fb:91:09:d8:23:bd:da:02:e9:c4:
52:38:0b:3a:dc:d1:18:94:76:98:01:f3:eb:4f:21:1a:2c:3c:
49:42:fb:68:32:62:98:7c:d1:f1:c0:af:65:39:9d:d2:92:d9:
2a:b4:4f:fc:13:cb:2e:77:23:4c:21:79:56:d7:d3:1a:75:5e:
a7:5b:f3:a3:34:28:86:41:29:f8:b1:e6:3a:29:12:49:4e:a8:
42:ba:4f:b1:7f:fe:fa:cf:36:9c:45:5b:4b:1a:a2:eb:8c:af:
00:50:b2:aa:6c:fd:e6:c2:82:4f:fe:19:d3:fe:c6:7b:42:ef:
fc:ad:df:21:8d:d3:01:2c:b4:a8:88:11:21:c1:f4:47:e9:95:
90:21:dd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org