Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2lkPYWR4fXB3bYWeZ98QoOJLiIc.roa
File: 2lkPYWR4fXB3bYWeZ98QoOJLiIc.roa (raw, json)
Hash identifier: tj73am/oATBXdNhHSi/csSKfc6A6GqNlfmxQ/wFGxf0=
Subject key identifier: DA:59:0F:61:64:78:7D:70:77:6D:85:9E:67:DF:10:A0:E2:4B:88:87
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E0E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2lkPYWR4fXB3bYWeZ98QoOJLiIc.roa
Signing time: Wed 29 Sep 2021 02:43:09 +0000
ROA not before: Wed 29 Sep 2021 02:43:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 106.104.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3598 (0xe0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA590F6164787D70776D859E67DF10A0E24B8887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e3:51:58:e8:47:2b:eb:99:dd:c4:38:af:69:
10:ac:c6:b5:04:64:93:92:4d:9f:5c:2d:1a:7e:69:
2f:69:a6:00:cb:67:92:ec:0e:cb:13:91:f3:a9:e1:
f0:03:47:6b:4d:8e:62:d7:21:e6:64:a4:c7:d3:ad:
7b:9d:f3:f1:9d:e3:10:9c:55:a9:31:68:1b:c8:4b:
d4:da:a3:f1:34:e0:bc:40:01:98:8d:02:07:cb:2b:
57:2d:10:51:02:31:0b:18:dd:f2:e5:76:d5:4d:95:
98:ef:f4:9e:b4:82:88:76:b8:ce:06:6d:cd:cb:a7:
c7:a9:0b:21:38:f3:22:d8:66:28:34:c7:82:d7:76:
10:d7:9d:7d:4c:dc:8b:ca:4a:42:35:8a:77:ca:88:
75:05:5a:d5:99:a7:2e:aa:15:b6:13:74:80:47:05:
fa:29:85:19:32:aa:3b:e6:94:84:26:c0:7b:69:43:
b0:40:b7:f2:e5:8e:10:ec:13:5f:21:83:93:9e:1b:
56:7a:99:11:68:5c:bc:65:62:b2:53:b8:33:50:c1:
a5:d1:20:d8:ad:27:d5:2c:fb:91:cb:eb:98:cb:77:
d4:ce:74:0f:a8:75:fa:76:da:c1:c7:64:e7:b0:29:
c0:8f:5f:58:9b:11:59:a4:9f:59:e9:8c:be:82:3b:
f1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:59:0F:61:64:78:7D:70:77:6D:85:9E:67:DF:10:A0:E2:4B:88:87
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2lkPYWR4fXB3bYWeZ98QoOJLiIc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/14
Signature Algorithm: sha256WithRSAEncryption
81:1a:06:45:30:5d:aa:a6:c2:7a:52:c8:6e:e9:28:a4:19:25:
65:68:0b:b1:96:0d:d8:a4:6e:d8:de:b4:43:be:7a:70:27:f4:
9e:34:22:ec:4b:9a:77:67:1d:90:99:eb:2f:6d:bb:26:11:5c:
96:c1:92:e5:18:d5:7a:af:20:21:47:bd:8a:60:28:6b:a0:c1:
d6:b7:5b:21:b9:20:f4:5a:4d:73:a4:90:ce:77:73:f0:38:a2:
4c:52:cb:b6:4a:1f:1b:19:5c:60:23:fc:1a:74:da:7e:c3:2a:
58:53:cd:90:12:46:39:2f:e9:46:c4:13:8c:3a:24:c3:f9:20:
ee:c0:45:01:7b:67:62:7f:74:5c:7a:06:a1:5f:06:12:51:5d:
62:1d:16:ea:c5:13:4e:16:29:ae:05:3a:9c:4f:c2:4b:81:e4:
71:b6:60:12:55:9d:dc:b7:6f:90:16:2d:9d:a0:46:14:d3:0c:
79:68:76:c2:ef:2b:01:ea:ef:81:65:3f:7e:6d:d9:7a:5c:2b:
1e:3c:89:33:90:f0:69:25:08:86:4d:be:5a:5b:24:fb:03:9b:
19:ba:9e:82:93:65:b7:7e:38:c1:fb:e7:0d:15:3a:1c:9a:d8:
5a:ee:42:70:cb:3f:43:7a:b9:b0:ad:06:8b:00:a6:a2:b5:df:
ad:6f:0f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org