Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1u5tPix_HvI3cWB-_Cu8e0hIAA8.roa
File: 1u5tPix_HvI3cWB-_Cu8e0hIAA8.roa (raw, json)
Hash identifier: uipSRGFQZQ2ZjNV9DTROCtcsE0jI8g2Gsjp8DLyytz0=
Subject key identifier: D6:EE:6D:3E:2C:7F:1E:F2:37:71:60:7E:FC:2B:BC:7B:48:48:00:0F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0EC5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1u5tPix_HvI3cWB-_Cu8e0hIAA8.roa
Signing time: Wed 29 Sep 2021 02:43:58 +0000
ROA not before: Wed 29 Sep 2021 02:43:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.106.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3781 (0xec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D6EE6D3E2C7F1EF23771607EFC2BBC7B4848000F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6c:5b:9c:d8:d0:fa:3c:cc:66:59:7e:6a:ba:
66:95:57:8b:2a:c8:35:5c:6c:e5:7f:ca:0f:b8:22:
92:f8:ab:78:17:29:84:ef:1d:96:76:a7:48:fe:29:
1c:08:52:cb:4b:90:5e:d1:05:32:be:d3:60:3a:23:
c3:e9:17:ae:b5:93:dd:7d:5b:7a:5d:6b:be:86:a9:
a4:ba:5a:39:0d:ef:f4:e8:fa:3c:10:fb:b5:ba:49:
de:d5:a6:ab:88:2e:83:09:ee:d9:0d:fa:da:70:60:
12:5a:ef:de:b0:91:7a:90:b0:e9:75:07:a1:ce:f4:
a1:b1:9b:43:2c:83:7c:08:a6:ea:d6:61:98:df:43:
0d:9f:e6:3e:fa:55:6b:cd:ad:7e:b7:b0:6e:68:7b:
a4:5d:24:9a:f2:45:a3:0a:c9:af:a5:ae:8e:10:f7:
e7:7d:64:a5:93:02:f2:62:cc:0e:7b:4a:57:30:2a:
9a:aa:3a:b9:ad:32:5b:40:a8:ce:46:22:9e:8d:a2:
95:8d:40:f7:84:5d:08:61:94:c0:65:fb:22:b5:65:
2e:76:58:9c:a4:9c:99:63:47:82:e9:28:ad:10:15:
bc:fc:db:09:0c:be:f4:ac:92:dd:3b:4b:ec:cd:27:
55:d3:fb:67:1d:38:13:74:57:61:e3:e3:ef:cd:fb:
34:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EE:6D:3E:2C:7F:1E:F2:37:71:60:7E:FC:2B:BC:7B:48:48:00:0F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1u5tPix_HvI3cWB-_Cu8e0hIAA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.197.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c1:cb:a0:e8:78:be:21:f6:68:f1:76:80:58:55:03:d1:b9:
bf:22:8c:52:62:86:e6:7e:e5:9f:70:f4:e2:72:73:ee:57:3c:
b3:67:99:89:c0:53:53:29:8a:ca:c3:04:3c:f7:0a:46:d5:72:
a8:ba:4b:24:a6:f1:a0:b2:bb:e0:9e:69:c4:db:be:d4:0f:48:
61:76:c5:fd:32:88:b3:35:55:5c:01:27:03:ad:8d:8c:cf:24:
eb:b0:01:20:6d:d5:bf:cb:7b:26:58:ff:db:bf:ce:13:aa:b2:
c4:6f:cb:43:3d:6b:c0:13:35:b8:8a:a8:5f:72:a4:5c:da:05:
8d:29:1b:d4:e5:ce:79:af:5a:2b:63:5e:da:2d:18:a3:f9:a6:
5d:5f:74:df:dd:c2:db:89:ff:f6:46:12:3b:79:51:60:51:39:
8d:69:d4:0f:59:8b:d0:d4:a2:da:1d:be:3b:3f:ee:f6:52:50:
00:2e:29:fa:27:89:cc:3f:7c:41:4b:9d:4e:13:67:e8:af:55:
b2:21:2a:1f:9d:90:8c:bb:90:92:26:2a:4c:f3:75:6e:d3:ca:
a4:ac:e9:6d:c6:f5:1d:4b:1c:c4:12:de:87:af:fe:64:22:8e:
23:c6:91:58:a0:8e:7e:ed:14:0a:ff:e4:7e:11:29:ef:34:53:
76:05:0b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org