Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6WyqSpu9WnMjHWVvz9eOv5cOd0Y.roa
File: 6WyqSpu9WnMjHWVvz9eOv5cOd0Y.roa (raw, json)
Hash identifier: NwzkQnJs1WTDReKfaDX2FwuuZzu3CndyD2qF64xkDiY=
Subject key identifier: E9:6C:AA:4A:9B:BD:5A:73:23:1D:65:6F:CF:D7:8E:BF:97:0E:77:46
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E3E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6WyqSpu9WnMjHWVvz9eOv5cOd0Y.roa
Signing time: Wed 29 Sep 2021 02:43:21 +0000
ROA not before: Wed 29 Sep 2021 02:43:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18049
IP address blocks: 106.105.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646 (0xe3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E96CAA4A9BBD5A73231D656FCFD78EBF970E7746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:5c:81:35:04:e3:cf:8b:48:8f:ed:9d:21:
2f:7d:be:98:e5:3f:bf:1a:be:54:05:79:2d:59:a8:
19:b1:27:d1:40:50:9e:35:fc:d1:46:00:8b:9b:39:
11:14:f2:17:a8:ab:a4:01:24:8f:ba:8e:f8:b4:dd:
ff:e8:5a:a9:a0:d0:1c:6b:98:a1:91:92:b5:78:5a:
09:41:a4:54:4a:27:45:09:99:37:3c:91:99:28:43:
4b:62:bf:3c:74:fb:4e:f9:c7:23:47:a2:b4:81:4f:
7a:99:a8:c2:1b:c4:8d:8e:af:de:e7:23:c8:36:6a:
3c:ed:90:7d:35:c3:4d:70:ab:fd:32:aa:b0:f6:dc:
0c:1c:e1:9e:7a:c2:d3:a9:aa:bf:37:8f:a6:9f:7e:
45:8e:3c:99:93:86:ec:ae:2b:ab:0b:43:ba:d5:ef:
d1:5f:40:f3:4a:83:50:40:79:9c:f6:b2:df:22:3a:
a7:e3:3e:06:6a:1e:23:fb:9a:71:3a:61:db:72:8e:
7b:3e:b6:e3:4d:6b:66:1d:3d:e0:14:05:d4:fa:b2:
9e:9c:5a:68:96:e1:5a:6e:b4:a4:70:88:d6:ad:e7:
21:72:63:71:ef:a7:9f:74:39:b0:86:86:7c:2f:57:
57:e2:58:cd:d5:89:28:85:6e:08:61:21:f8:dd:72:
db:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:6C:AA:4A:9B:BD:5A:73:23:1D:65:6F:CF:D7:8E:BF:97:0E:77:46
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6WyqSpu9WnMjHWVvz9eOv5cOd0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.0.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:64:a3:f0:0c:ca:ea:c7:5c:e1:8c:a0:10:03:ee:ea:2f:ef:
2e:a1:44:66:fa:ed:ea:04:1d:5e:18:6b:1a:70:d3:c4:41:53:
b0:0c:b8:8c:77:2d:4f:ae:a2:e0:6f:00:4d:32:7f:db:58:55:
dc:3f:59:24:90:c2:77:b5:9e:3c:6a:de:3d:2e:2f:f0:e0:ea:
9b:28:47:a5:5b:54:5c:86:d7:b2:75:05:88:1f:18:7a:b4:ed:
eb:b9:8e:cc:9f:5c:c8:de:fd:f1:e1:25:d8:f8:02:d6:12:59:
5a:86:8d:0f:6e:60:aa:d9:f7:d4:40:45:63:99:bc:72:bc:92:
47:7c:87:e0:e1:a9:38:2b:8a:ee:59:18:20:cd:02:d7:13:18:
f9:6b:34:94:b7:fc:b6:47:f9:e8:11:2f:29:6e:8e:93:e9:2a:
42:12:8c:62:14:15:cb:c9:9c:50:2d:b3:9a:73:19:fc:8b:63:
c2:cc:4b:41:74:e4:47:44:d3:74:17:2e:66:22:81:3d:96:ec:
ab:0a:57:1c:b3:f9:db:12:b0:63:3a:d1:9f:61:50:18:85:59:
7f:f5:27:13:ae:eb:0c:00:c4:54:91:9d:88:f3:07:dd:0a:8f:
68:6b:ba:5a:e8:0d:f3:53:bb:6a:b5:51:05:4b:11:c6:d3:5b:
25:24:1d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org