Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bymQRXACUpEBgbsL18AOl92WfU.roa
File: 3bymQRXACUpEBgbsL18AOl92WfU.roa (raw, json)
Hash identifier: Mi2oRG3+fpyiG6PCr9n5g0eoJ0UsSlxH36BxWQ/SYzA=
Subject key identifier: DD:BC:A6:41:15:C0:09:4A:44:06:06:EC:2F:5F:00:3A:5F:76:59:F5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E3A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bymQRXACUpEBgbsL18AOl92WfU.roa
Signing time: Wed 29 Sep 2021 02:43:20 +0000
ROA not before: Wed 29 Sep 2021 02:43:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3642 (0xe3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDBCA64115C0094A440606EC2F5F003A5F7659F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:e8:ff:70:0d:76:8c:92:10:3a:a8:c8:48:
ab:2e:54:04:79:69:57:2b:16:3a:68:f0:f1:47:67:
1a:b1:80:6b:30:26:c8:10:88:26:61:05:2d:e7:2a:
2a:22:f3:14:b8:a8:1c:25:74:64:9a:f7:cd:1c:0a:
20:72:ce:06:a2:5f:30:ca:b9:25:5f:5f:46:4f:8c:
3b:2a:4c:e2:f8:1a:0d:b2:9e:0b:30:6b:8b:7c:07:
b5:d5:e8:d5:52:7c:0b:76:18:b7:8e:36:11:2d:8c:
fa:5f:c1:d6:1a:f0:21:fc:39:59:b0:07:cf:af:ff:
de:0e:05:3b:65:3a:7e:3a:9c:3a:c7:14:6f:2e:35:
3d:45:0a:22:94:bb:ec:97:ab:ea:bc:69:75:fd:09:
c5:9f:27:56:a5:53:d7:ef:dc:3e:6b:af:00:84:47:
67:cc:b5:2a:05:95:d5:28:f9:c3:55:bd:9d:00:b1:
a3:2a:82:0c:70:85:61:ff:9d:c8:84:d2:5e:22:40:
6d:84:d5:58:82:c2:ed:af:8f:3f:78:c6:bb:ce:ea:
5f:b3:c8:e2:e4:83:30:02:ca:dc:ec:44:45:aa:82:
a2:23:fb:26:82:df:f7:95:12:15:99:73:53:c4:51:
13:f1:0a:e1:8b:81:96:5e:40:be:40:54:70:3f:8a:
db:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BC:A6:41:15:C0:09:4A:44:06:06:EC:2F:5F:00:3A:5F:76:59:F5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bymQRXACUpEBgbsL18AOl92WfU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.192.0/20
Signature Algorithm: sha256WithRSAEncryption
94:f4:91:15:a4:4a:1a:9d:fb:4b:24:8d:7d:99:fb:f0:eb:5a:
d0:ba:e7:65:85:e8:83:15:c7:86:d3:75:96:f4:d1:48:b6:5b:
6b:f1:94:85:86:85:20:87:62:ac:f5:3f:89:ec:c2:07:02:7f:
33:00:97:70:a1:70:71:e2:e6:a4:8d:40:c8:b1:65:95:2a:54:
f5:59:6b:6a:88:e0:ac:c5:52:6c:ca:eb:94:48:f3:a2:2a:5f:
0d:54:78:d8:f2:b0:2d:bc:ed:86:7c:22:f4:3e:a8:46:d4:48:
8b:53:09:97:73:c7:6b:eb:14:74:e2:55:4d:4d:50:c1:7f:d5:
bd:b3:98:bf:2c:1c:ba:0e:d2:89:e8:85:64:bb:a3:f6:9e:95:
d0:59:f2:3a:17:4c:86:5a:9e:e1:c7:8b:5b:7c:4d:42:98:11:
d5:8b:e6:23:fd:20:01:47:ad:55:ff:a5:94:59:20:ef:51:12:
c0:d9:b7:17:ca:21:38:04:f8:9d:42:99:b4:a0:02:51:4e:3a:
97:18:17:c0:de:0a:27:9e:04:bf:09:c0:69:1a:74:3c:5c:12:
66:c1:f0:35:56:54:2c:f8:67:0d:81:6d:77:0b:8b:d9:fb:fe:
09:5f:4e:02:c7:1e:57:34:32:e4:14:0f:f3:9a:33:6b:61:77:
50:25:e3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org