Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0XrkOchH1OELGiAWHg6PAWx5LtA.roa
File: 0XrkOchH1OELGiAWHg6PAWx5LtA.roa (raw, json)
Hash identifier: 0mIY1DyymimVnqQHIz9cR9w8jViMkxNYmsGLhC0JB1M=
Subject key identifier: D1:7A:E4:39:C8:47:D4:E1:0B:1A:20:16:1E:0E:8F:01:6C:79:2E:D0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CA3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0XrkOchH1OELGiAWHg6PAWx5LtA.roa
Signing time: Sun 07 Feb 2021 11:44:20 +0000
ROA not before: Sun 07 Feb 2021 11:44:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3235 (0xca3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D17AE439C847D4E10B1A20161E0E8F016C792ED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ad:b5:6e:9c:73:db:7c:7f:fd:d3:4d:41:27:
2b:b1:26:4c:43:4c:55:24:52:93:d2:18:39:f9:a9:
4a:93:b8:d3:5c:ab:7a:81:b8:a1:a5:b9:84:35:9c:
ba:16:cd:cc:8b:fa:12:e2:c1:99:88:10:f8:90:16:
15:2c:84:f2:33:3b:cc:e4:11:65:27:c5:56:52:86:
e9:0f:52:43:67:c9:a2:63:4c:88:ea:33:8e:01:ad:
6f:c2:8c:5b:8c:28:51:ff:3a:1f:d0:f0:eb:74:26:
69:49:37:77:94:1f:25:04:13:12:f1:b8:5b:5c:cc:
f1:f0:6d:69:e6:2e:87:80:31:0b:a8:cd:22:50:b7:
a0:51:99:9c:9c:14:ac:78:61:d6:a3:c6:1d:f0:82:
77:0f:b6:bc:bb:16:0c:3b:ce:4d:ae:cd:10:c6:62:
f5:ad:36:77:bf:21:41:27:f3:11:bd:a4:32:66:f0:
22:0e:f7:a5:26:49:d1:29:f7:99:e6:96:1d:6e:57:
76:69:59:fe:0f:c6:24:f3:09:69:b0:0e:1c:09:93:
b3:e2:02:81:0b:89:46:0f:10:66:a8:f3:ff:83:a6:
24:79:74:72:49:48:91:a4:f0:07:52:e9:f8:93:1d:
92:45:15:7b:06:c6:38:bc:fe:ca:14:fb:64:53:07:
e3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7A:E4:39:C8:47:D4:E1:0B:1A:20:16:1E:0E:8F:01:6C:79:2E:D0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0XrkOchH1OELGiAWHg6PAWx5LtA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.240.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:64:97:0f:f6:6c:f0:98:b9:de:23:91:81:f1:b8:52:70:64:
9b:14:06:8a:6a:13:ea:14:ad:9e:a2:4e:ba:a4:0c:e4:45:8a:
49:88:bb:d0:e1:e4:0a:a2:f0:79:ad:c5:e2:48:92:d5:71:2c:
af:24:db:95:de:2e:35:1a:2e:66:1a:9d:20:45:c9:88:72:07:
75:82:f7:93:27:84:4d:58:74:46:3a:ac:18:bf:b9:bf:2a:d4:
85:19:d0:51:8e:05:f5:9f:6e:31:70:18:83:5f:0d:ac:83:da:
53:d7:0a:95:da:1e:9d:a1:71:f9:5b:16:73:35:49:e3:3c:d2:
f4:cf:68:d1:23:11:a5:0e:ca:72:d2:8f:a5:92:78:12:c1:0d:
05:ce:6a:9b:ba:e7:b9:4c:11:d2:69:d5:68:99:7e:35:d0:fb:
71:65:5f:56:55:c9:e7:4c:3a:fa:5f:30:5a:8f:10:da:e5:34:
4f:4c:27:3b:2b:52:0c:71:c3:51:0f:42:76:11:d0:4e:de:d3:
bf:e6:cf:0b:ba:23:79:e0:7e:8e:5d:9f:86:43:f3:b8:79:f5:
8a:7f:d1:82:ad:e5:0a:1e:3b:e1:6b:66:8d:0b:e8:72:e2:9b:
ea:fb:f4:ef:f9:bc:ad:ff:04:26:83:dd:b6:b5:45:be:07:48:
02:6d:14:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org