Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X1pRNbyYCSsgQnBXqpiY5o7BqY.roa
File: 5X1pRNbyYCSsgQnBXqpiY5o7BqY.roa (raw, json)
Hash identifier: BbBaHnC7eB07C7pgtekSc06y8cta/E1e7OBx1yl3LnI=
Subject key identifier: E5:7D:69:44:D6:F2:60:24:AC:81:09:C1:5E:AA:62:63:9A:3B:06:A6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E0D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X1pRNbyYCSsgQnBXqpiY5o7BqY.roa
Signing time: Wed 29 Sep 2021 02:43:09 +0000
ROA not before: Wed 29 Sep 2021 02:43:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 106.104.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3597 (0xe0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E57D6944D6F26024AC8109C15EAA62639A3B06A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:dd:36:60:46:f7:0e:93:29:73:08:8f:50:50:
fc:16:93:4a:c1:06:54:4f:3f:42:83:49:88:c1:20:
d4:77:f9:f1:63:1e:bc:1d:e2:df:bd:00:11:6a:05:
63:31:a6:78:8c:44:51:82:45:f9:71:84:56:7c:89:
31:77:95:55:75:2f:6b:8e:01:2b:9d:21:4c:08:fc:
ae:c3:0c:ee:9e:36:a1:c6:47:b8:b5:db:d9:dc:53:
37:5c:47:37:57:84:3f:0b:f1:6b:ff:26:cd:20:28:
21:c6:5d:a1:9b:36:07:8b:38:f8:21:eb:7f:ed:24:
32:b0:c4:c9:06:d4:2a:4f:4d:3b:0c:a8:2a:ff:70:
07:8d:6a:5f:8b:d0:9f:7f:23:6d:dc:6b:e0:33:d7:
16:e1:92:c5:56:9c:f7:05:c1:6f:a8:0b:4e:f5:34:
94:f4:ac:22:2a:f1:63:c8:dd:81:e9:60:ef:d8:44:
0a:9b:08:56:d3:4f:2e:8b:b5:e6:32:51:5f:ab:2b:
b1:8c:49:67:34:d5:18:da:a8:37:b0:68:28:db:b8:
b9:17:e9:aa:fd:d8:23:7e:59:a5:e4:4b:fa:71:93:
91:91:13:ba:79:6d:86:60:65:8c:05:4a:8c:82:e5:
4d:a3:5e:42:b9:74:91:5f:a4:c7:cb:e8:2e:6c:f0:
19:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7D:69:44:D6:F2:60:24:AC:81:09:C1:5E:AA:62:63:9A:3B:06:A6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X1pRNbyYCSsgQnBXqpiY5o7BqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/14
Signature Algorithm: sha256WithRSAEncryption
94:54:bc:56:a3:13:9a:85:b2:9f:56:93:38:fc:78:10:69:1f:
de:d2:30:85:0a:eb:20:af:2c:a7:c0:7e:21:24:f0:cf:dc:08:
24:d8:94:a6:e3:36:8e:81:79:e9:e6:83:4b:d3:15:34:06:2a:
ed:a9:9d:5b:ef:dc:9c:f6:7b:22:14:f4:93:84:e9:72:ff:c8:
27:2c:3d:3a:37:ad:73:cd:80:9a:48:0e:4c:79:2d:7c:50:ef:
d3:61:bb:16:78:da:e8:4e:ab:2b:fe:05:53:8b:18:14:e8:3d:
41:37:eb:5f:13:85:e4:cc:16:f6:52:5f:e7:7c:f6:3a:47:5a:
3c:7e:4f:6f:17:f2:42:18:d1:35:6f:0e:d8:1c:7e:ad:43:c4:
b5:23:f6:2a:98:ec:77:97:48:2e:56:58:19:38:a8:54:b9:49:
7c:f8:22:8e:f1:32:99:4d:c4:f7:a0:c3:03:bc:1c:d7:cf:fe:
bf:84:18:37:70:73:13:ff:e5:c3:e1:c1:c4:1a:72:c3:c6:46:
e7:cb:85:26:a2:c6:fc:a3:f6:28:be:a7:54:76:e2:c7:74:2c:
57:f6:62:b8:c8:17:29:15:2f:28:33:66:c2:4c:b4:b6:fd:e8:
c9:f6:9d:42:5a:2b:ff:1b:c4:42:83:5c:bf:17:da:a2:d2:98:
f5:9c:e1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org