Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2W4r3kLOoBFmKzV6jGcxcMJyqCU.roa
File: 2W4r3kLOoBFmKzV6jGcxcMJyqCU.roa (raw, json)
Hash identifier: a3N8VeHV42WHjtyGJ6jcEndJ4CFnp2K3t2e9OpihHjQ=
Subject key identifier: D9:6E:2B:DE:42:CE:A0:11:66:2B:35:7A:8C:67:31:70:C2:72:A8:25
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 085A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2W4r3kLOoBFmKzV6jGcxcMJyqCU.roa
Signing time: Tue 29 Sep 2020 09:51:56 +0000
ROA not before: Tue 29 Sep 2020 09:51:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 106.105.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2138 (0x85a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D96E2BDE42CEA011662B357A8C673170C272A825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f2:23:66:bf:23:37:1a:1d:e7:76:6f:72:9e:
fa:35:30:0e:9c:35:bf:5c:19:8d:29:f6:56:8e:82:
d7:38:2c:ed:45:a9:10:0c:fb:aa:ad:27:c3:3c:60:
1b:b9:90:45:b5:10:5c:5b:bc:ec:63:03:aa:86:a9:
45:12:60:11:1b:6c:ec:aa:0b:5a:d4:f8:27:ac:81:
5b:f0:1d:09:d4:ab:88:dc:a9:a7:a0:1e:31:39:44:
e7:1b:bb:a1:f7:0c:d7:90:0b:1d:af:a3:9a:4e:c5:
cb:02:d5:f9:86:4f:f0:bf:47:03:b4:6d:48:35:01:
cf:07:2b:a6:ce:57:c6:34:b4:06:c0:28:ba:4b:21:
a9:df:6c:29:25:b3:e1:53:36:fa:5e:91:53:d6:6f:
5e:9f:19:11:c4:b8:78:34:fb:52:cd:3c:e2:29:5d:
bd:1b:dc:4f:10:85:d0:15:51:f2:88:58:4d:3e:39:
55:9c:dc:8b:7f:b6:99:94:af:9d:77:32:69:9e:5b:
94:d2:3e:4a:86:cd:ff:03:17:a9:c2:c6:72:ff:bd:
61:26:c1:ad:e7:d0:4c:e3:66:44:d4:be:14:a7:1e:
68:eb:d6:a3:31:1e:b5:7c:61:ab:7e:93:75:b5:f2:
fd:19:91:c2:36:a7:b6:14:25:0a:de:7f:0a:a5:12:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6E:2B:DE:42:CE:A0:11:66:2B:35:7A:8C:67:31:70:C2:72:A8:25
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2W4r3kLOoBFmKzV6jGcxcMJyqCU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.179.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:58:61:8f:52:ef:d0:44:c1:07:fc:0f:3a:1e:a6:0d:69:d8:
e5:53:ac:4f:01:de:24:90:95:a2:15:4b:27:78:90:56:bc:61:
69:37:a1:99:e1:ca:09:08:a8:8f:45:9b:32:3c:a0:20:ce:0a:
f6:33:77:d2:ec:b0:01:0f:a8:e9:0f:04:79:c5:ea:ce:fe:2b:
8a:b6:b9:65:88:64:9c:8b:7c:7e:1d:81:5a:8e:d0:e7:59:89:
d9:b8:a3:1c:45:24:54:c5:77:1d:72:52:5e:a5:a5:79:c2:6e:
4c:6e:e0:25:a7:7d:4f:b5:b9:fe:5b:24:04:88:b7:d5:9f:a2:
d5:9f:d8:a3:87:8c:e9:bb:51:f9:49:58:6b:6c:83:75:79:c0:
e8:7f:26:71:da:08:b9:1e:44:fc:d1:d3:aa:7a:32:db:89:14:
9d:cc:f3:3e:dc:3f:1f:ec:f2:db:ab:0d:de:46:20:c0:3d:72:
01:48:29:11:dd:bc:dc:a1:19:69:ee:74:8d:ab:96:f8:cb:2d:
54:87:0d:b0:ac:39:0b:98:e9:ce:05:9f:d4:a8:ad:4b:62:0a:
3b:30:c1:99:df:53:f2:62:ea:03:da:06:f8:a6:f9:27:60:91:
5e:c6:70:be:6a:e0:b5:3f:86:8b:2f:14:8a:5a:2f:ae:93:59:
97:ef:51:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org