Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1HbSfqSmhAKqKtxSl11ARveisQo.roa
File: 1HbSfqSmhAKqKtxSl11ARveisQo.roa (raw, json)
Hash identifier: F8WHYQrFgKXobLTCpjeyeGoTRfmUHeoBnOfEAQe03Qs=
Subject key identifier: D4:76:D2:7E:A4:A6:84:02:AA:2A:DC:52:97:5D:40:46:F7:A2:B1:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C9D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1HbSfqSmhAKqKtxSl11ARveisQo.roa
Signing time: Sun 07 Feb 2021 11:44:13 +0000
ROA not before: Sun 07 Feb 2021 11:44:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3229 (0xc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D476D27EA4A68402AA2ADC52975D4046F7A2B10A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a1:25:06:33:83:b8:98:06:8c:f0:d9:98:1b:
53:d3:d7:3d:f2:8c:a8:fd:9c:50:d1:25:77:30:c4:
79:45:65:b4:f7:66:44:98:a3:8f:1c:0d:22:5e:49:
ac:5a:be:2e:2e:72:1c:4d:8e:3a:5b:bb:61:be:cd:
7b:80:b3:83:76:69:99:8d:f4:cd:17:a0:f9:2d:d3:
e5:e5:5d:ec:70:12:0d:78:ee:5b:28:1d:34:8a:f5:
f2:6e:95:98:55:39:83:27:e6:74:6a:9a:5a:d8:a0:
b9:bd:79:04:79:f5:ad:e3:cf:07:43:67:7f:18:f3:
77:60:51:2a:34:f6:e7:5b:cd:60:a2:02:c4:d0:54:
f1:65:78:b5:0c:b4:57:c2:3c:90:ed:ce:26:73:14:
81:31:fa:2b:18:10:91:de:a4:e8:a7:b1:94:fe:30:
16:76:6e:1e:a4:56:ee:73:07:7c:1a:09:a3:38:1e:
73:43:41:bf:27:3f:22:91:b9:31:5f:a9:42:e1:ce:
8c:2e:2a:13:ef:25:78:ec:f9:b7:ee:9f:bd:61:0b:
40:da:8a:bb:31:e9:33:f3:f3:ea:42:bd:a7:df:71:
92:5c:dd:d6:5a:40:e3:e1:29:d9:6d:ad:9f:f5:40:
ff:dd:f1:9e:26:62:d4:58:f9:38:85:9e:57:ba:49:
9a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:76:D2:7E:A4:A6:84:02:AA:2A:DC:52:97:5D:40:46:F7:A2:B1:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1HbSfqSmhAKqKtxSl11ARveisQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.175.0/24
Signature Algorithm: sha256WithRSAEncryption
20:54:94:17:7f:ea:b9:df:44:7e:39:4f:6c:7e:b7:e5:c4:a9:
0e:00:64:eb:44:c7:e4:b5:0c:63:1e:a5:fa:9e:56:58:36:89:
09:e5:e9:0b:ee:04:c3:5b:c0:d2:ae:fe:6a:25:30:53:b1:ac:
c6:8b:09:86:38:f2:ee:42:f9:16:d2:d7:25:db:51:5a:c9:76:
a4:0c:79:8c:40:6f:6a:fd:aa:2d:c7:03:2b:94:8e:69:c6:7c:
53:dc:a4:8c:ce:56:ef:a6:f2:24:2c:d5:a3:06:d0:35:29:8d:
c2:f0:b1:4c:23:18:2a:66:95:1e:8d:6e:59:d2:2e:f2:75:d8:
55:07:22:d4:62:30:de:f4:b7:ca:8b:9b:80:f6:48:68:9b:5d:
33:ce:39:79:50:88:3e:d4:3a:af:30:83:22:f6:4e:62:b1:ad:
7b:48:aa:44:81:66:7e:99:f9:9b:07:3a:f0:c2:e4:af:7b:c9:
3e:cd:35:b5:7d:32:f4:d9:b3:72:dc:9b:f7:6c:68:89:1a:d0:
40:15:80:53:d9:e0:bd:c3:ef:ca:01:78:55:fe:1b:6b:44:20:
98:a9:2b:a2:1e:d1:91:ba:e0:e7:18:35:13:4f:f7:cf:3b:4f:
b0:a4:b3:fb:aa:ff:3a:ab:c8:35:01:70:4a:f8:69:64:c5:f2:
1a:36:72:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org