Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oX4rHh0Q1ViIyh3vQOXdLCLzsk.roa
File: 0oX4rHh0Q1ViIyh3vQOXdLCLzsk.roa (raw, json)
Hash identifier: 3PHGn5WIwhnjup0WQfq2CwRXUI/Anph68ieIcTW3Gsg=
Subject key identifier: D2:85:F8:AC:78:74:43:55:62:23:28:77:BD:03:97:74:B0:8B:CE:C9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08AB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oX4rHh0Q1ViIyh3vQOXdLCLzsk.roa
Signing time: Tue 29 Sep 2020 09:52:18 +0000
ROA not before: Tue 29 Sep 2020 09:52:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 106.105.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D285F8AC7874435562232877BD039774B08BCEC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:8a:55:52:de:b2:19:a9:9f:df:e5:c8:ed:
8d:a4:56:ba:ce:e1:66:25:31:8d:7d:9d:69:db:1f:
d5:6b:ed:10:05:39:e9:ec:03:e1:23:e3:43:58:cb:
f4:51:ef:42:9a:23:3e:3a:2c:55:ba:9d:ba:86:53:
94:eb:54:74:23:89:16:cc:85:8b:cc:3d:0d:10:98:
91:02:51:7a:ea:24:1f:7b:e9:a0:3e:33:d5:f0:61:
41:7d:67:f5:c4:0e:0d:90:de:e1:5e:05:16:c0:e5:
4a:02:a6:70:54:f3:46:ea:90:dd:ad:85:28:e3:d9:
7a:48:82:3e:d1:46:f7:1f:35:ca:f7:92:f2:35:73:
a6:11:b5:95:82:8d:66:72:f6:e0:62:4f:6c:0e:7b:
d2:1b:74:57:be:c0:14:a6:fb:ec:4a:f2:2c:47:aa:
7a:ee:e8:15:a8:9b:0e:21:f9:86:04:bf:81:23:43:
68:a3:3c:92:2c:db:91:f1:2b:7a:33:44:c5:c9:b4:
51:78:d5:94:50:20:a0:fb:e8:fd:86:14:7e:a2:f5:
e2:77:63:63:f5:7f:65:82:02:94:54:ea:0d:a7:c5:
54:77:64:01:73:51:42:15:46:74:aa:cb:c4:5b:b3:
ec:89:8a:69:f6:32:a2:72:1d:15:ee:6c:fc:8f:df:
8b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:85:F8:AC:78:74:43:55:62:23:28:77:BD:03:97:74:B0:8B:CE:C9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0oX4rHh0Q1ViIyh3vQOXdLCLzsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/19
Signature Algorithm: sha256WithRSAEncryption
6d:41:0f:69:53:a4:3e:73:af:dc:09:23:a2:75:bf:8f:bd:7b:
6a:72:c5:68:23:d2:ac:e2:9f:d5:28:9b:8e:1a:64:85:9c:f7:
5b:53:0d:eb:30:c6:42:4c:ef:b5:72:02:69:9b:00:8e:ef:75:
fd:4a:b2:6b:df:d8:bc:61:82:1e:d1:30:02:2f:7d:62:3c:44:
bd:eb:27:2e:72:f7:68:01:bb:6c:a9:a2:98:fb:10:71:c4:a3:
f1:b3:1f:35:01:58:b1:17:17:97:20:87:52:03:71:63:d8:bc:
9e:ce:23:e9:28:a3:9a:ce:4f:50:b1:c6:75:91:ef:42:03:9e:
38:c8:3a:7b:15:62:db:d4:ee:5e:53:31:24:ad:62:fa:17:8e:
e9:6e:e1:0b:53:ea:a7:84:34:64:40:be:da:17:4b:65:fb:53:
63:82:02:97:da:3e:c9:01:b3:18:a5:5a:69:59:8d:87:74:58:
dd:67:17:bb:c2:ae:ff:ef:04:ec:13:5d:28:de:24:2d:e3:7a:
1b:66:dd:9b:ff:26:d8:34:b7:a7:fa:64:94:bd:62:6a:4d:cd:
38:5e:00:60:51:2e:44:2c:63:57:a7:31:39:1f:93:d4:dc:d1:
c9:45:d1:5f:af:be:2a:f1:8b:e4:f5:ca:58:59:88:0b:2f:93:
99:a2:f3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org