Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/48r4W7rUBZLcV7Av07jVujba3Tc.roa
File: 48r4W7rUBZLcV7Av07jVujba3Tc.roa (raw, json)
Hash identifier: qRdxgqO9tVikdDBWHETzJzCqd/9tDmkFp8q9VDJDfQs=
Subject key identifier: E3:CA:F8:5B:BA:D4:05:92:DC:57:B0:2F:D3:B8:D5:BA:36:DA:DD:37
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E80
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/48r4W7rUBZLcV7Av07jVujba3Tc.roa
Signing time: Wed 29 Sep 2021 02:43:40 +0000
ROA not before: Wed 29 Sep 2021 02:43:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.107.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3712 (0xe80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E3CAF85BBAD40592DC57B02FD3B8D5BA36DADD37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0e:c2:9f:40:67:51:fe:4f:07:d0:79:06:38:
ac:ab:11:84:12:75:9e:9a:af:48:d4:17:39:c0:56:
83:84:23:f0:66:32:dc:82:26:9b:27:c4:f7:0b:8c:
ed:dc:56:db:67:19:b5:91:fe:f7:2a:85:c0:db:9c:
8e:a5:b3:e8:ab:04:7d:a5:b4:b4:c1:d1:be:79:4e:
d1:af:3b:43:11:f5:32:0d:81:c6:62:05:d4:bd:c9:
12:ad:10:bb:6a:d7:eb:de:e9:82:d4:6e:01:2c:0c:
04:e2:05:29:47:79:c3:ef:17:b3:fb:48:21:3b:17:
33:7c:4c:00:bb:1b:f2:30:2b:c3:60:be:d9:69:65:
f3:58:d5:2b:50:e1:94:fb:3d:ff:ef:b9:d7:12:d6:
e7:f1:6d:45:64:97:6b:b6:94:0c:b5:23:ce:f2:2a:
3a:34:ac:05:7f:12:26:fb:b9:89:52:30:87:81:de:
3b:c2:f0:d1:e4:d1:c7:1d:0e:35:0b:c3:3d:85:0e:
9b:23:77:3f:81:e4:30:dd:f7:59:3e:12:fa:37:ab:
e3:8a:f6:6e:a2:40:05:87:d7:8b:d6:d4:4a:ff:61:
d4:d4:66:0f:3a:88:e8:e3:4f:f3:3a:a9:0b:a8:26:
16:cb:2f:c0:6f:ff:f5:cb:1e:37:83:ff:dc:ba:49:
3b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CA:F8:5B:BA:D4:05:92:DC:57:B0:2F:D3:B8:D5:BA:36:DA:DD:37
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/48r4W7rUBZLcV7Av07jVujba3Tc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.240.0/20
Signature Algorithm: sha256WithRSAEncryption
9b:ec:1b:a1:f7:3f:76:d6:c1:f5:cb:ac:a5:6a:66:0a:ed:2b:
5c:b0:cc:a5:22:63:7f:45:f6:3b:bd:e6:9d:50:df:da:0b:f3:
3c:56:48:12:17:67:1d:16:af:46:f4:46:c3:62:bb:4a:b4:bc:
ff:b6:e8:56:c3:e3:08:7f:79:09:5e:95:73:d6:e9:e8:60:43:
ae:31:dd:6b:38:5c:14:ad:e0:24:fc:a8:89:7a:9c:93:99:a8:
83:02:20:db:76:6b:08:ac:2f:c0:f1:a1:1f:76:f5:ff:39:63:
71:3c:63:f6:64:f9:67:b1:3c:74:25:ae:4e:cc:3f:74:d3:41:
ac:1d:77:98:33:f6:f4:5c:ce:fa:82:42:94:c8:a0:93:68:1d:
e9:28:59:f1:68:66:e7:e5:ad:17:ba:26:30:a6:67:eb:59:1b:
de:a2:ba:88:2c:0a:6c:e7:45:07:7d:8b:98:19:d2:7d:b9:a2:
8f:b5:99:ae:16:f2:65:61:38:01:16:cb:98:09:9f:19:08:1e:
d2:01:c6:49:dc:f3:c3:d3:11:16:cc:c9:a6:b8:7f:60:4d:30:
56:b6:1a:e0:20:17:5c:ab:63:df:cf:98:b3:b3:b8:f9:ec:41:
ca:2b:26:35:7f:a2:b4:a5:8e:4a:27:5a:0f:e9:55:9a:56:1a:
bd:32:4f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:58 2023 by rpki-client on console-ams.rpki-client.org