Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/58Za1i03O9FOWkVzaholE0nhm_w.roa
File: 58Za1i03O9FOWkVzaholE0nhm_w.roa (raw, json)
Hash identifier: r5YE/CDJEK/ucp48ocxx9i4h5/FhuUD+FBHmQz7zXGM=
Subject key identifier: E7:C6:5A:D6:2D:37:3B:D1:4E:5A:45:73:6A:1A:25:13:49:E1:9B:FC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08CD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/58Za1i03O9FOWkVzaholE0nhm_w.roa
Signing time: Tue 29 Sep 2020 09:52:28 +0000
ROA not before: Tue 29 Sep 2020 09:52:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2253 (0x8cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E7C65AD62D373BD14E5A45736A1A251349E19BFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:0a:cf:fb:6d:5c:3c:15:81:e2:63:51:b2:
77:54:d1:3a:bb:1f:2f:42:0d:29:ed:85:79:16:bc:
4f:ee:01:22:78:81:0e:e0:b9:20:0a:38:d9:f3:bf:
94:64:72:22:4e:4a:be:44:23:cf:34:d5:a7:12:31:
07:70:8b:0b:a0:33:54:ea:3b:42:7b:53:42:17:06:
e1:c8:79:02:20:7d:87:c5:5c:44:3b:df:fc:54:1e:
59:c0:5b:5c:a4:33:5b:7b:f5:19:e0:ec:fb:96:49:
dd:d8:0b:35:01:70:ea:bf:50:1c:47:fc:80:1e:a0:
54:1b:c7:fd:6c:04:00:0f:b6:4f:a3:b1:67:08:c5:
21:0e:74:49:7a:34:9a:13:10:b1:7d:93:6f:18:bf:
c2:db:78:0a:11:39:27:ed:2a:d9:56:8f:0e:17:fb:
d5:8a:8e:a7:ad:14:5d:6a:7f:d0:12:56:fb:85:5a:
20:d8:61:f4:35:04:27:a9:22:2b:b5:42:2f:48:e9:
89:75:c7:8d:79:3a:52:45:5a:42:bd:73:ff:85:77:
12:6b:88:f1:28:1a:5b:6b:06:07:b4:fb:e7:33:f0:
b2:22:ab:42:2f:68:3b:e1:27:4e:aa:0c:23:69:05:
8f:15:36:fb:2b:6d:ad:8c:83:ee:ab:41:17:71:c7:
6f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C6:5A:D6:2D:37:3B:D1:4E:5A:45:73:6A:1A:25:13:49:E1:9B:FC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/58Za1i03O9FOWkVzaholE0nhm_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.72.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:c1:3f:d7:d1:b8:72:28:6e:76:27:26:cf:bb:55:f7:cf:40:
f3:d1:c5:7e:37:fe:9a:9e:ef:39:12:99:8a:ea:a4:f4:62:90:
95:5b:ba:ce:d6:ab:8c:28:04:84:75:73:72:90:b3:49:a7:4f:
77:fc:7d:3b:39:d6:20:4b:9a:a4:8b:a6:d4:62:c2:4f:b5:80:
43:10:a4:11:1a:d4:74:93:db:42:b7:87:e7:59:5b:f2:88:e3:
42:c7:a8:93:73:13:17:1f:f6:66:61:26:c1:d0:de:de:6b:e6:
65:de:77:5e:22:79:22:ee:3c:f0:54:6d:c7:22:69:3b:7f:d2:
8f:71:29:8f:33:ad:36:33:82:de:68:3c:a4:40:d4:fd:67:18:
6a:02:bb:94:46:b7:d2:8d:e6:6c:42:bd:b6:37:b8:a7:ef:11:
f8:62:2e:9c:bd:1e:65:d6:77:82:af:ea:e9:1f:12:6c:00:b9:
16:b0:45:e1:63:29:97:3d:94:29:92:12:d3:84:95:8f:be:d9:
08:ad:4a:6e:62:7b:54:92:8a:db:08:31:ad:e8:d4:fd:9f:06:
6b:52:84:81:0e:67:45:ac:a3:16:56:b2:cc:7b:f7:3d:c1:bd:
f8:6c:2c:52:1a:15:4b:71:7d:a5:90:35:ae:d0:da:ac:19:ae:
46:b9:1e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org