Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/16p4KpgypMUO_r2omTqG0GyNdOM.roa
File: 16p4KpgypMUO_r2omTqG0GyNdOM.roa (raw, json)
Hash identifier: VVt/YSd3MAsHm020IaLJMTbJbMDi31kCI+kpU8yTDKc=
Subject key identifier: D7:AA:78:2A:98:32:A4:C5:0E:FE:BD:A8:99:3A:86:D0:6C:8D:74:E3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/16p4KpgypMUO_r2omTqG0GyNdOM.roa
Signing time: Tue 29 Sep 2020 09:52:27 +0000
ROA not before: Tue 29 Sep 2020 09:52:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9674
IP address blocks: 106.107.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2249 (0x8c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D7AA782A9832A4C50EFEBDA8993A86D06C8D74E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:52:7f:ab:ab:e3:53:07:d0:6c:c7:ab:1f:ec:
1d:57:57:0d:4a:42:c3:b6:9a:5d:8a:a6:cb:92:a7:
c7:0f:5f:fd:ff:16:f5:cb:88:d1:80:64:16:61:e0:
db:62:23:fe:24:15:07:62:fe:16:99:d9:fe:5c:57:
26:f1:34:1c:53:63:df:b0:25:7b:b2:9b:77:e3:db:
1c:d9:13:e9:f9:e6:c0:e2:fe:b4:d5:07:8b:e6:79:
5c:ba:4d:d4:9a:e3:d5:43:c8:f2:00:9c:a2:58:80:
58:08:14:5e:c5:a9:38:ff:78:b3:3b:92:67:f8:2b:
2a:52:85:af:c0:97:4b:63:64:42:32:4c:90:2f:dd:
71:a3:a9:f1:d1:2b:51:63:ab:6f:1a:60:18:ce:e0:
e9:9f:ab:4a:fe:85:9c:c6:15:7e:ef:f6:6f:24:34:
96:42:c0:64:9e:bc:c6:82:47:b9:a0:be:46:fa:f8:
c4:7c:c2:54:46:16:3c:a9:0d:db:1f:d4:e1:87:86:
ff:2c:b8:65:3d:e4:30:0d:66:0a:10:6e:0a:97:e9:
bf:30:ca:02:47:01:97:d0:6c:e5:7b:0d:c7:45:e9:
cb:a9:36:12:95:0b:ef:ab:a4:bf:47:ed:a1:80:63:
ff:01:bc:1b:9d:41:bb:64:df:41:73:42:bf:00:8b:
5c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AA:78:2A:98:32:A4:C5:0E:FE:BD:A8:99:3A:86:D0:6C:8D:74:E3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/16p4KpgypMUO_r2omTqG0GyNdOM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:6e:ab:44:6c:f5:34:86:d4:8f:a5:88:1d:38:03:e3:4e:38:
f3:6a:1a:04:ad:0f:2e:4b:b2:03:ef:6b:2f:7b:7f:da:6f:11:
2b:fd:fd:b4:25:39:8a:bf:c1:0a:d2:09:76:14:a5:36:ab:4e:
50:c8:c0:c6:08:f2:4f:19:9c:ed:64:e8:a7:ad:a2:a0:7c:6b:
c7:da:ca:2b:90:fc:b2:20:25:6e:08:d1:61:6e:f9:85:9a:1a:
1d:55:e6:88:1c:d9:f0:f5:c9:04:c5:33:c0:3e:c9:b3:57:71:
f7:1d:47:b8:c4:42:b7:31:e9:1c:bc:a1:54:4a:3c:8a:98:82:
c8:ef:58:2c:7b:81:05:eb:05:cc:f9:b7:2c:10:53:58:4e:e4:
45:12:f1:de:c8:69:63:0e:ca:89:35:4c:a6:71:23:df:79:51:
97:96:73:5f:50:9d:2a:f0:06:04:0c:4e:e8:28:e7:be:2c:83:
fb:c0:dd:b2:62:c5:81:ce:bb:83:ee:3f:e4:cd:e8:af:10:3e:
fc:b1:cd:44:ec:e8:e5:40:4a:4a:12:57:b8:5b:f8:12:0c:ba:
71:9b:b9:12:06:fc:3f:c0:73:a8:5b:b5:b1:3a:5d:27:85:8e:
a7:6c:4a:70:1d:ad:be:e2:aa:6e:85:7c:99:a1:24:14:bf:5d:
54:42:9f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org